amazon-opensearch-service

Pass

Audited by Gen Agent Trust Hub on Jun 19, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • Installation of External Utilities: The skill recommends installing awscurl and docling via Python's package manager to support API requests and document processing. These are reputable tools within the ecosystem, though users should verify packages in accordance with their organization's security standards.
  • Remote Deployment of Configurations: Instructions for the Migration Assistant include applying Kubernetes manifests directly from the official OpenSearch project's GitHub repository. This is an expected workflow for setting up the migration environment.
  • Operational Command Templates: The skill contains a wide variety of AWS CLI and shell commands intended for the user to copy and run. These examples provide a clear path for provisioning and managing resources in a standard way.
  • Potential for Indirect Prompt Injection: The skill ingests and analyzes external log and trace data, such as in references/log-analytics-guide.md and references/trace-analytics-trace-queries.md. The current query templates do not employ explicit boundary markers or sanitization of this untrusted data, which could allow malicious log entries to influence the agent's behavior.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 19, 2026, 11:16 AM
Security Audit — agent-trust-hub — amazon-opensearch-service