managing-amazon-msk

Pass

Audited by Gen Agent Trust Hub on Jun 23, 2026

Risk Level: SAFE
Full Analysis
  • Standard Tool Utilization: The skill employs official tools including the AWS CLI (aws msk, aws cloudwatch), and standard Kafka administrative scripts (kafka-configs.sh, kafka-reassign-partitions.sh).
  • Security Best Practices: The instructions include proactive security advice, such as using AWS Secrets Manager for SASL/SCRAM credentials rather than hardcoding them in configuration files.
  • Operational Safety Guards: Includes critical operational warnings, such as avoiding broker reboots during partition under-replication to prevent data loss, which aligns with standard distributed system safety protocols.
  • Input Handling Guidance: Provides clear instructions on handling configuration payloads, specifically advising the use of fileb:// for raw byte uploads to prevent command-line escape sequence issues during cluster configuration updates.
  • Infrastructure Guidance: The guidance accurately distinguishes between Standard and Express broker types, providing tailored metrics and troubleshooting steps for each, which reduces the risk of operational misconfiguration.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 23, 2026, 08:27 PM
Security Audit — agent-trust-hub — managing-amazon-msk