infra-deploy
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes a series of shell commands to manage Docker containers, push images to GCP Artifact Registry, and deploy services to Cloud Run.
- [COMMAND_EXECUTION]: Employs the
op(1Password CLI) to retrieve sensitive deployment secrets, which is a recommended security practice for managing credentials in automation scripts. - [EXTERNAL_DOWNLOADS]: Interacts with well-known services including Google Cloud Platform, Supabase, and Cal.com to facilitate deployment and database management.
- [PROMPT_INJECTION]: The deployment of a webhook relay service establishes a potential surface for indirect prompt injection (Category 8); however, this is a standard architectural component for the described functionality and is documented as a capability tier risk.
Audit Metadata