managing-amazon-msk
Pass
Audited by Gen Agent Trust Hub on Jun 23, 2026
Risk Level: SAFE
Full Analysis
- Standard Tool Utilization: The skill employs official tools including the AWS CLI (
aws msk,aws cloudwatch), and standard Kafka administrative scripts (kafka-configs.sh,kafka-reassign-partitions.sh). - Security Best Practices: The instructions include proactive security advice, such as using AWS Secrets Manager for SASL/SCRAM credentials rather than hardcoding them in configuration files.
- Operational Safety Guards: Includes critical operational warnings, such as avoiding broker reboots during partition under-replication to prevent data loss, which aligns with standard distributed system safety protocols.
- Input Handling Guidance: Provides clear instructions on handling configuration payloads, specifically advising the use of
fileb://for raw byte uploads to prevent command-line escape sequence issues during cluster configuration updates. - Infrastructure Guidance: The guidance accurately distinguishes between Standard and Express broker types, providing tailored metrics and troubleshooting steps for each, which reduces the risk of operational misconfiguration.
Audit Metadata