signing-in-to-aws
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- Command Execution: The skill is designed to execute local shell commands, specifically the
awsCLI. This includesaws loginfor authentication,aws --versionfor compatibility checks, andaws sts get-caller-identityto retrieve current session information. - User Awareness and Control: The instructions include a pattern of running initial 'precondition checks' silently before asking for user confirmation. While these are read-only checks intended to streamline the experience, best practices generally favor explicit transparency for all automated shell activities.
- Data Handling: The skill accesses AWS account identifiers and ARNs to help users verify their identity. This data is retrieved via standard CLI tools and is used locally within the agent session for configuration purposes.
Audit Metadata