aws-iam-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill acts as a legitimate tool for AWS environment security reviews, providing users with guidance and automation for maintaining least-privilege access.
- [COMMAND_EXECUTION]: Uses standard AWS CLI utilities to inspect and manage IAM settings (e.g., listing policies, checking MFA status, rotating keys). These actions are well-documented and aligned with the skill's core purpose of security hardening.
- [EXTERNAL_DOWNLOADS]: References official AWS documentation and administrative consoles (docs.aws.amazon.com, policysim.aws.amazon.com). These references point to well-known service providers and do not involve untrusted code or script execution.
- [DATA_EXPOSURE & EXFILTRATION]: While the skill interacts with sensitive IAM metadata, it does not contain mechanisms to exfiltrate this data. Example identifiers and access keys provided in the documentation are clearly marked as placeholders (e.g., 'AKIAIOSFODNN7EXAMPLE').
Audit Metadata