gitops-workflow
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches Kubernetes manifests from the official ArgoCD repository on GitHub (argoproj/argo-cd).
- [REMOTE_CODE_EXECUTION]: Downloads and executes an installation script directly from the official Flux CD domain (fluxcd.io).
- [COMMAND_EXECUTION]: Executes privileged commands including 'sudo bash' for CLI installation and 'kubectl' for applying infrastructure configurations.
- [COMMAND_EXECUTION]: Retrieves sensitive initial administrative credentials from Kubernetes secrets as part of the setup process.
- [PROMPT_INJECTION]: Vulnerability surface identified via repository-driven automation (Indirect Prompt Injection).
- Ingestion points: External Git repository URLs and directory paths in SKILL.md.
- Boundary markers: Absent in provided YAML templates.
- Capability inventory: Uses kubectl and argocd CLI execution for manifest application.
- Sanitization: None described; assumes trust in the specified Git source.
Audit Metadata