Skills
skills/mukul975/anthropic-cybersecurity-skills/securing-helm-chart-deployments/Gen Agent Trust Hub

securing-helm-chart-deployments

Pass

Audited by Gen Agent Trust Hub on Apr 9, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The scripts scripts/agent.py and scripts/process.py utilize subprocess.run to interface with the Helm CLI and security scanners like kubesec. These calls are implemented using argument lists rather than shell strings, which is a secure practice that prevents command injection vulnerabilities.
  • [EXTERNAL_DOWNLOADS]: The skill references the helm-secrets plugin and several GitHub Actions from established security vendors (e.g., Aqua Security, Bridgecrew). These references are documented neutrally and are essential for the skill's intended purpose of supply chain and configuration security.
  • [SAFE]: The skill performs local audits of Kubernetes manifests to identify security misconfigurations such as root execution, privileged containers, or missing resource limits. It does not exhibit any patterns of data exfiltration, obfuscation, or unauthorized persistence.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 9, 2026, 06:49 PM