skills/mukul975/anthropic-cybersecurity-skills/securing-agentic-ai-tool-invocation/Gen Agent Trust Hub
securing-agentic-ai-tool-invocation
Pass
Audited by Gen Agent Trust Hub on Jun 22, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides robust defensive controls for agentic AI systems, aligning with OWASP Agentic AI Top 10 and MITRE ATLAS. It implements a 'deny-by-default' security posture for tool invocations.\n- [DATA_EXFILTRATION]: No sensitive data access or unauthorized network operations were detected. The use of AWS STS for short-lived credentials follows security best practices for least-privilege access.\n- [EXTERNAL_DOWNLOADS]: Dependencies mentioned (NVIDIA NeMo Guardrails, jsonschema, boto3) are well-known, reputable libraries used for security and cloud infrastructure management.\n- [COMMAND_EXECUTION]: The provided Python script (scripts/agent.py) uses standard libraries and performs validation and logging. It does not execute arbitrary shell commands; the 'run_shell' tool is a placeholder for demonstrating policy enforcement.
Audit Metadata