truefoundry-workspaces
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill implements a bash script (tfy-api.sh) to perform API requests using curl. The script enforces security best practices by validating the HTTP method and sanitizing the API path to prevent directory traversal.
- [EXTERNAL_DOWNLOADS]: The documentation provides instructions for automated installation of the truefoundry CLI from the official Python Package Index. It also references container images from trusted sources such as AWS ECR and GitHub Container Registry for model serving and development workflows.
- [DATA_EXFILTRATION]: The skill performs legitimate API operations against the TrueFoundry platform. It manages credentials through environment variables or local .env files, avoiding hardcoded secrets and explicitly instructing the use of platform-native secret management for sensitive deployment configurations.
Audit Metadata