Skills
skills/google/agents-cli/google-agents-cli-deploy/Gen Agent Trust Hub

google-agents-cli-deploy

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFE
Full Analysis
  • [Credential Management]: The skill correctly instructs users to use Google Cloud Secret Manager for storing sensitive information like API keys, rather than hardcoding them or passing them directly as environment variables.
  • [Infrastructure as Code]: Deployment workflows are centered around Terraform, ensuring that production infrastructure is reproducible and subject to version control and review.
  • [Secure Authentication]: CI/CD pipelines are designed to use Workload Identity Federation (WIF), allowing GitHub Actions or Cloud Build to authenticate with Google Cloud without the need for long-lived service account keys.
  • [CLI Tooling]: The skill utilizes the agents-cli tool and gcloud SDK, which are the official vendor-supported methods for interacting with Google Cloud services and the Agent Runtime.
  • [Testing and Verification]: Provides clear instructions and commands for testing deployed agents, including the use of identity tokens for authorized access to Cloud Run services, ensuring that deployments can be validated securely.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 03:08 AM
Security Audit — agent-trust-hub — google-agents-cli-deploy