deploy-cicd-gcp
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill analyzes external project configuration files (e.g., package.json) to determine deployment strategies, presenting a surface for indirect prompt injection.\n
- Ingestion points: Project files analyzed during 'Application Type Analysis' (package.json, framework configs).\n
- Boundary markers: There are no explicit delimiters used to isolate ingested file content from the agent's logic.\n
- Capability inventory: Capabilities include writing local configuration files and executing gcloud, git, and docker CLI commands.\n
- Sanitization: The skill performs secret scanning to prevent data leaks but does not sanitize the logic or instructions that might be embedded in the configuration files.\n- [COMMAND_EXECUTION]: The skill utilizes local CLI tools including gcloud, git, and docker to manage deployments and retrieve environment defaults, which are necessary for its functionality.
Audit Metadata