terraform-stacks
Pass
Audited by Gen Agent Trust Hub on Jun 20, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references Terraform modules sourced from the public registry (e.g.,
terraform-aws-modules/vpc/aws), private HCP Terraform registries (app.terraform.io), and Git repositories. These are standard practices for infrastructure-as-code and originate from well-known services. - [COMMAND_EXECUTION]: Provides documentation and command examples for the
terraform stacksCLI, including initialization, validation, and deployment operations required to manage infrastructure. - [DATA_EXFILTRATION]: In
references/api-monitoring.md, the documentation provides a script example that retrieves an API token from the local Terraform credentials file (~/.terraform.d/credentials.tfrc.json) for the purpose of authenticating with the well-knownapp.terraform.ioservice. This is a functional requirement for programmatic monitoring and is documented for use with the official service API.
Audit Metadata