github-actions-terraform
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Provides standard templates for executing Terraform and Azure CLI commands. These commands are intended for infrastructure management tasks such as state unlocking, resource importing, and identity configuration.
- [EXTERNAL_DOWNLOADS]: References well-known and official GitHub Actions including hashicorp/setup-terraform, azure/login, and actions/checkout. These are industry-standard tools for CI/CD workflows.
- [PROMPT_INJECTION]: Identifies an indirect prompt injection surface as the skill is designed to process external CI/CD logs and Terraform outputs. Ingestion points: terraform.log and workflow failure messages. Boundary markers: None provided in the templates. Capability inventory: terraform and az CLI tools for resource modification. Sanitization: Not included in the instructional guidance. This surface is characteristic of the skill's primary function of log analysis.
Audit Metadata