aws-healthomics
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches workflow definitions from external Git providers including GitHub, GitLab, and Bitbucket using AWS CodeConnections.
- [EXTERNAL_DOWNLOADS]: Downloads container images from public registries like Docker Hub, Quay.io, and Amazon ECR Public to synchronize with private Amazon ECR repositories.
- [COMMAND_EXECUTION]: Provides instructions for generating and running shell scripts to facilitate the migration of genomics data and container resources to AWS (e.g., migrate_references_to_s3.sh, migrate_containers_to_ecr.sh).
- [REMOTE_CODE_EXECUTION]: Manages the deployment and runtime execution of WDL, Nextflow, and CWL workflow definitions on the AWS HealthOmics service.
- [PROMPT_INJECTION]: Processes untrusted workflow definitions and parameter files from external Git repositories, which constitutes an indirect prompt injection surface.
Audit Metadata