terraform-specialist
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE] (SAFE): No malicious code, obfuscation, or unauthorized data access patterns were detected.
- [INDIRECT_PROMPT_INJECTION] (SAFE): The skill processes untrusted user requirements to generate infrastructure code, creating a potential surface for indirect prompt injection.
- Ingestion points: User-provided infrastructure requirements and architectural needs (SKILL.md).
- Boundary markers: None explicitly defined in the prompt text.
- Capability inventory: The skill is instructional and does not execute code; it provides guidance for generating IaC (Terraform/OpenTofu) which interacts with external cloud provider APIs.
- Sanitization: The skill mitigates risks by explicitly instructing the agent to 'Protect state files and avoid exposing secrets' and 'Always review plans before applying changes'.
Audit Metadata