setup-wizard
Pass
Audited by Gen Agent Trust Hub on Jun 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions to download various development tools including 'kind' from sigs.k8s.io, 'skaffold' from Google Cloud Storage, and 'yq' from GitHub. These are well-known, official sources for these utilities.
- [COMMAND_EXECUTION]: The skill contains numerous shell commands for interacting with AWS CLI, Harness API, Keycloak API, and Kubernetes (kubectl/helm). These commands are intended for environment validation and setup tasks, such as checking permissions, discovering clusters, and managing authentication tokens.
- [PRIVILEGE_ESCALATION]: Installation steps for external tools use 'sudo mv' to place binaries into system-wide execution paths (e.g., /usr/local/bin/). While this involves elevated privileges, it is a standard practice for local tool configuration and installation described in the skill's purpose.
Audit Metadata