k8s-security
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Downloads security tools and configuration files from well-known technology vendors including Aqua Security (Trivy, kube-bench) and the Kubescape project.
- [REMOTE_CODE_EXECUTION]: Instructs the installation of security tooling by fetching shell scripts from recognized vendors and piping them directly to shell interpreters.
- [COMMAND_EXECUTION]: Provides a suite of administrative commands for auditing cluster security posture, managing sensitive permissions, and enforcing zero-trust networking.
- [PROMPT_INJECTION]: Employs variable interpolation (e.g.,
${IMAGE}) within shell commands, which presents a surface for indirect prompt injection if input data originates from untrusted sources. Ingestion points: SKILL.md placeholders. Boundary markers: Absent. Capability inventory: kubectl, curl, helm. Sanitization: Absent.
Audit Metadata