cdk-rest-api-dynamodb
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill defines architectural templates and instructional guidance for AWS infrastructure that align with industry standards and official AWS documentation. No malicious patterns, obfuscation, or safety bypass instructions were detected.
- [CREDENTIALS_UNSAFE]: No hardcoded secrets or sensitive credentials were found. The skill correctly instructs the agent to use environment variables and AWS-native identity services like Cognito for authentication.
- [COMMAND_EXECUTION]: The skill facilitates the generation of CDK code for cloud deployment. The generated code uses standard AWS construct APIs and does not include any arbitrary or suspicious shell command executions.
- [EXTERNAL_DOWNLOADS]: The skill references common, trusted libraries such as 'aws-jwt-verify' and '@aws-sdk/client-dynamodb'. These are official packages from trusted vendors (AWS) and do not pose a security risk.
- [PROMPT_INJECTION]: The instructions are focused on task execution and do not contain patterns intended to bypass AI safety filters or extract system prompts.
- [DATA_EXFILTRATION]: No patterns indicative of data exfiltration were detected. The skill's focus is on internal AWS data flow between API Gateway, Lambda, and DynamoDB.
Audit Metadata