troubleshooting-astro-deployments
Pass
Audited by Gen Agent Trust Hub on Jun 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill instructions exclusively use the official
astroCLI tool from Astronomer to perform troubleshooting and management tasks. The operations described (listing deployments, inspecting resources, and viewing logs) align with the stated purpose of the skill. - [COMMAND_EXECUTION]: The skill includes various commands for interacting with Astronomer deployments via the CLI. These are standard administrative actions and do not involve arbitrary shell execution or unsafe user-input interpolation.
- [DATA_EXPOSURE]: While the skill includes commands for managing environment variables and secrets (e.g.,
astro deployment variable create --secret), these are handled through the vendor's secure CLI tool. The example provided uses a generic placeholder (secret123) and instructions are given for typical backup procedures (e.g., saving to.env.backup). - [INDIRECT_PROMPT_INJECTION]: The skill involves reading and analyzing deployment logs (
astro deployment logs). While logs are an external data source that could theoretically contain malicious instructions, this represents a standard operational risk inherent to log analysis and is managed by the agent's underlying safety guardrails.
Audit Metadata