fast-0-org-setup-prereqs
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
run_shell_commandtool to executegcloudCLI operations for organization metadata retrieval, IAM role assignment, and service enablement. - [COMMAND_EXECUTION]: Implements shell loops to automate the assignment of high-privilege IAM roles (e.g., Organization Administrator, Billing Administrator) as part of the core foundation setup.
- [EXTERNAL_DOWNLOADS]: Includes instructions to optionally install the
yamllintpackage viapipto provide validation for generated YAML configuration files. - [SAFE]: The skill implements strong security best practices for agent autonomy, including mandatory turn boundaries, progress reporting for user oversight, and the use of explicit file-editing tools (
replace,write_file) instead of unsafe shell redirection. - [SAFE]: All external domains and resources identified (e.g., s3nscloud.fr, berlin-build0.goog) are official Google Cloud Dedicated or sovereign cloud endpoints consistent with the vendor's infrastructure.
Audit Metadata