rke2-operations
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the RKE2 installation script from the official 'get.rke2.io' domain and retrieves cluster upgrade manifests from the Rancher organization's public GitHub repository.
- [REMOTE_CODE_EXECUTION]: Executes the official RKE2 installer script using a standard pipe-to-shell pattern for performing version upgrades on cluster nodes.
- [COMMAND_EXECUTION]: Utilizes system-level commands to manage the RKE2 service lifecycle and perform administrative tasks such as certificate rotation and node draining.
Audit Metadata