aws-secrets-rotation
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides multiple AWS CLI command examples for managing and rotating secrets.
- [EXTERNAL_DOWNLOADS]: The Python code interacts with Stripe's official API to rotate keys. This is a well-known service.
- [DATA_EXFILTRATION]: Documentation demonstrates how to upload local private SSH keys to the cloud.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection. Ingestion points: Secret values retrieved in lambda_rotation.py and api_key_rotation.py. Boundary markers: Absent. Capability inventory: Ability to modify RDS instances and make external network calls. Sanitization: Absent.
Audit Metadata