aws-well-architected-review
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill processes repository IaC files which is a surface for indirect prompt injection; however, this is necessary for the skill's primary function of performing a security audit.
- Ingestion points: Terraform, CloudFormation, and CDK files in the repository.
- Boundary markers: No specific delimiters are defined in the instructions for isolated processing.
- Capability inventory: AWS CLI for discovery and GitHub issue creation.
- Sanitization: Findings are presented for user confirmation before any action is taken.
- [COMMAND_EXECUTION]: Uses the AWS CLI to audit resources, including checking encryption, IAM roles, and logging configurations.
- [EXTERNAL_DOWNLOADS]: References official AWS documentation for the Well-Architected Framework pillars.
Audit Metadata