huawei-cloud-terraform-generator
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill automates infrastructure management by executing standard Terraform CLI commands (fmt, init, validate, plan, apply). Several provided asset templates include
local-execprovisioners for legitimate lifecycle management, such as the cleanup of local Kubernetes configuration directories (rm -rf .kube) when a testing resource is destroyed. - [EXTERNAL_DOWNLOADS]: During initialization, the skill downloads Terraform providers from established vendor repositories (huaweicloud/huaweicloud and hashicorp/kubernetes). These downloads are restricted to verified providers necessary for infrastructure provisioning.
- [SAFE]: The skill identifies and handles sensitive authentication data (AK/SK) securely, recommending environment variables for configuration and using Terraform's
sensitive = trueattribute in variable definitions to prevent accidental logging or exposure.
Audit Metadata