enabling-lambda-vpc-internet-access
Pass
Audited by Gen Agent Trust Hub on May 17, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- Infrastructure Command Execution: The skill uses AWS CLI commands to manage VPC networking components, including NAT Gateways, Internet Gateways, and route tables. These are standard operations for the skill's stated purpose of infrastructure configuration.
- Cost and Resource Transparency: A mandatory confirmation step (Step 5) requires the agent to present all planned changes and associated costs (NAT Gateway and Elastic IP pricing) to the user before any resources are provisioned.
- Security Group Management: The procedure guides the user toward restrictive outbound rules (HTTPS/HTTP) rather than open access and explicitly forbids modifying inbound rules to maintain a secure posture.
- Verification and Safety: The skill includes explicit instructions to verify tool availability and resource states (e.g., waiting for NAT Gateway 'available' status) before proceeding with subsequent configuration steps.
Audit Metadata