mtls-configuration
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified. The skill provides legitimate technical guidance for zero-trust networking configuration.- [PROMPT_INJECTION]: Instructions are focused on task execution and do not contain attempts to override agent constraints, bypass safety filters, or extract system prompts.- [DATA_EXFILTRATION]: No unauthorized data access or network transmission logic was detected. Configuration templates correctly use placeholders for sensitive certificate data and secrets.- [COMMAND_EXECUTION]: The included shell commands (kubectl, istioctl, openssl) are standard administrative utilities used for legitimate debugging and resource management within the user's environment.- [EXTERNAL_DOWNLOADS]: References to container images and documentation point to well-known, reputable services such as GitHub Container Registry and official project domains (istio.io, spiffe.io).- [INDIRECT_PROMPT_INJECTION]: The skill demonstrates a potential attack surface by processing user-provided goals and inputs to generate Kubernetes configurations.
- Ingestion points: SKILL.md (Instructions section: goals, constraints, and inputs)
- Boundary markers: Absent
- Capability inventory: Command execution via kubectl and istioctl for cluster management
- Sanitization: Absent
Audit Metadata