flux
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill interacts with Kubernetes cluster data and has administrative capabilities, creating a surface for indirect prompt injection. Ingestion points:
kubectl describe,kubectl logsin TROUBLESHOOTING-WORKFLOWS.md. Capability inventory:kubectl apply,kubectl patch,flux reconcilein COMMON-COMMANDS.md. Boundary markers: None. Sanitization: None. - Suspect Image Reference (LOW): Use of
alpine/fluxcd:latestin troubleshooting examples is non-standard, as the official image isfluxcd/flux-cli.
Audit Metadata