terraform

Pass

Audited by Gen Agent Trust Hub on Jun 20, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill facilitates downloading the Terraform binary and setting up package repositories. These references target official and well-known sources:
  • Fetches GPG keys and repository configurations from HashiCorp's official release server (apt.releases.hashicorp.com).
  • Downloads Terraform binaries directly from HashiCorp's release site (releases.hashicorp.com).
  • Clones the tfenv version manager from its official GitHub repository (github.com/tfutils/tfenv.git).
  • [COMMAND_EXECUTION]: The skill includes standard commands for infrastructure management (terraform init, plan, apply, destroy).
  • Installation steps for Linux use sudo to add repository keys and install packages, which is the standard procedure for system-level tool installation.
  • Post-install verification involves creating a temporary test file and running a basic Terraform plan, which is a benign validation step.
  • [DATA_EXFILTRATION]: The skill includes explicit safety guardrails to prevent data exposure. It instructs users never to commit terraform.tfstate or .tfvars files containing secrets to version control and recommends using encrypted remote backends (e.g., S3 with SSE) and secret management tools like HashiCorp Vault.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 20, 2026, 10:49 AM
Security Audit — agent-trust-hub — terraform