developing-applications-on-managed-service-for-apache-flink

Pass

Audited by Gen Agent Trust Hub on Jun 12, 2026

Risk Level: SAFE
Full Analysis
  • Secure Secret Management: The skill explicitly discourages the hardcoding of database credentials within application code or properties. It provides clear patterns for using AWS Secrets Manager to retrieve sensitive data at runtime, which is a key security practice to prevent credential exposure.
  • Network Isolation and VPC Guidance: The documentation provides thorough instructions on configuring VPC subnets, security groups, and NAT Gateways. This ensures that data traffic between the Flink application and its sources or sinks remains isolated and secure.
  • Least Privilege IAM Configuration: The skill includes detailed templates for IAM execution roles, advocating for resource-level scoping and specific action permissions rather than broad administrative access.
  • Usage of Industry-Standard Tooling: For local development and testing, the skill suggests utilizing official and well-known container images from trusted sources such as Confluent and LocalStack, which are standard for the described development workflows.
  • Neutral Handling of External Resources: References to external libraries, Maven repositories, and GitHub projects (such as awslabs) are documented neutrally and point to established and trusted technical organizations.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 12, 2026, 11:35 PM
Security Audit — agent-trust-hub — developing-applications-on-managed-service-for-apache-flink