developing-google-cloud
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions for installing the Google Cloud SDK and related tools using
curlandapt-getfrom official Google domains (google.com,googleapis.com). - [EXTERNAL_DOWNLOADS]: Reference files for CI/CD pipelines (e.g.,
CLOUDRUN-CI-CD.md,WORKLOAD-SECURITY.md) include examples that pull trusted container images and GitHub Actions from official and well-known repositories (aquasec/trivy,bridgecrew/checkov,google-github-actions). - [COMMAND_EXECUTION]: The documentation contains extensive examples of shell commands (
gcloud,kubectl,gsutil,terraform) and scripts designed to help users manage cloud resources. These are provided as educational templates and follow industry-standard practices. - [COMMAND_EXECUTION]: Application code snippets in Python, Node.js, and Go demonstrate legitimate interactions with Google Cloud client libraries for logging, monitoring, and data processing.
- [SAFE]: The skill incorporates strong security recommendations, such as using Secret Manager for credential management, implementing Workload Identity to avoid static keys, and enforcing least privilege through IAM roles.
Audit Metadata