infrastructure-cost-estimation
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill requires the execution of specific cloud CLI tools (
aws,az,bq) to retrieve billing data and run Python scripts for math operations. These are legitimate operations for the stated purpose of cloud cost management. - [DATA_EXPOSURE] (INFO): The skill accesses cloud billing and configuration data. While sensitive, this data remains within the user's authenticated environment and no patterns of external exfiltration were identified.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill ingests data from cloud provider outputs which could theoretically contain attacker-controlled strings (e.g., resource names). Ingestion points: CLI results from AWS, Azure, and GCP. Boundary markers: Absent. Capability inventory: Local CLI command execution and Python data processing. Sanitization: Absent. The risk is considered low because the processed data is used for quantitative analysis and reporting rather than for driving security-critical logic.
Audit Metadata