Skills
skills/loxosceles/ai-dev/lambda-handler-pattern/Gen Agent Trust Hub

lambda-handler-pattern

Pass

Audited by Gen Agent Trust Hub on Mar 27, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill documents a legitimate architectural pattern for AWS Lambda. It encourages best practices such as failing fast during cold starts by validating environment variables at the module level and improving performance by caching AWS SDK clients across warm invocations.
  • [DATA_EXFILTRATION]: While the skill demonstrates handling an API_KEY and other configuration via environment variables, it does not contain hardcoded credentials or patterns for exfiltrating data to external domains. It explicitly recommends configuring sensitive values in AWS Systems Manager (SSM).
  • [PROMPT_INJECTION]: The skill defines a data ingestion surface by parsing event.body and event.headers from an APIGatewayProxyEvent. This is standard for web-facing Lambda functions. The pattern treats this data as application input for storage in DynamoDB and does not interpret it as instructions for the agent or the system.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 27, 2026, 03:20 PM