Skills
skills/thinkfleetai/thinkfleet-engine/aws-ecs/Gen Agent Trust Hub

aws-ecs

Pass

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes aws and jq binaries to perform cloud management tasks. This is standard functionality for an infrastructure management skill.\n- [PROMPT_INJECTION]: The skill contains a vulnerability surface for indirect prompt injection by ingesting and processing data from external AWS CLI outputs without specific sanitization.\n
  • Ingestion points: Data enters the agent context via the output of aws ecs and aws logs commands as defined in SKILL.md.\n
  • Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present in the skill definition.\n
  • Capability inventory: The skill possesses the capability to execute subprocesses through the aws and jq CLI tools.\n
  • Sanitization: There is no evidence of escaping, validation, or filtering of the external content retrieved from the AWS APIs before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 1, 2026, 05:13 AM