amazon-opensearch-service
Pass
Audited by Gen Agent Trust Hub on Jun 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- Installation of External Utilities: The skill recommends installing
awscurlanddoclingvia Python's package manager to support API requests and document processing. These are reputable tools within the ecosystem, though users should verify packages in accordance with their organization's security standards. - Remote Deployment of Configurations: Instructions for the Migration Assistant include applying Kubernetes manifests directly from the official OpenSearch project's GitHub repository. This is an expected workflow for setting up the migration environment.
- Operational Command Templates: The skill contains a wide variety of AWS CLI and shell commands intended for the user to copy and run. These examples provide a clear path for provisioning and managing resources in a standard way.
- Potential for Indirect Prompt Injection: The skill ingests and analyzes external log and trace data, such as in
references/log-analytics-guide.mdandreferences/trace-analytics-trace-queries.md. The current query templates do not employ explicit boundary markers or sanitization of this untrusted data, which could allow malicious log entries to influence the agent's behavior.
Audit Metadata