truefoundry-helm
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements strong security practices including explicit warnings against indirect prompt injection from third-party Helm charts and external documentation.
- [SAFE]: Credential management is handled securely by encouraging the use of environment variables, .env files (via a safe line-by-line parser), and TrueFoundry's internal secret referencing system (tfy-secret://).
- [SAFE]: Package dependencies (truefoundry==0.5.0) and API endpoints (truefoundry.cloud) belong to the verified vendor, and the auto-installation process follows standard platform procedures.
- [SAFE]: Command execution is limited to specific deployment tools (tfy apply/deploy) and incorporates mandatory dry-run and diff flags to ensure user review before changes are applied.
Audit Metadata