truefoundry-access-control
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows security best practices for resource management and access control within the TrueFoundry platform.
- [COMMAND_EXECUTION]: The helper script
scripts/tfy-api.shis used to interact with the TrueFoundry API. It includes security measures such as preventing path traversal by checking for..and ensuring the path starts with a forward slash. - [EXTERNAL_DOWNLOADS]: The skill references the official
truefoundryPython package and uses pinned versions for container images from trusted sources. - [PROMPT_INJECTION]: The documentation includes a specific security section in
references/container-versions.mdthat warns against fetching and parsing third-party content to prevent indirect prompt injection attacks.
Audit Metadata