terraform-stacks

Pass

Audited by Gen Agent Trust Hub on Jun 20, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill references Terraform modules sourced from the public registry (e.g., terraform-aws-modules/vpc/aws), private HCP Terraform registries (app.terraform.io), and Git repositories. These are standard practices for infrastructure-as-code and originate from well-known services.
  • [COMMAND_EXECUTION]: Provides documentation and command examples for the terraform stacks CLI, including initialization, validation, and deployment operations required to manage infrastructure.
  • [DATA_EXFILTRATION]: In references/api-monitoring.md, the documentation provides a script example that retrieves an API token from the local Terraform credentials file (~/.terraform.d/credentials.tfrc.json) for the purpose of authenticating with the well-known app.terraform.io service. This is a functional requirement for programmatic monitoring and is documented for use with the official service API.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 20, 2026, 08:10 PM
Security Audit — agent-trust-hub — terraform-stacks