aws-healthomics

Pass

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches workflow definitions from external Git providers including GitHub, GitLab, and Bitbucket using AWS CodeConnections.
  • [EXTERNAL_DOWNLOADS]: Downloads container images from public registries like Docker Hub, Quay.io, and Amazon ECR Public to synchronize with private Amazon ECR repositories.
  • [COMMAND_EXECUTION]: Provides instructions for generating and running shell scripts to facilitate the migration of genomics data and container resources to AWS (e.g., migrate_references_to_s3.sh, migrate_containers_to_ecr.sh).
  • [REMOTE_CODE_EXECUTION]: Manages the deployment and runtime execution of WDL, Nextflow, and CWL workflow definitions on the AWS HealthOmics service.
  • [PROMPT_INJECTION]: Processes untrusted workflow definitions and parameter files from external Git repositories, which constitutes an indirect prompt injection surface.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 17, 2026, 01:30 AM
Security Audit — agent-trust-hub — aws-healthomics