openchoreo-platform-engineer-gitops
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches OpenChoreo configuration samples and documentation from official repositories on GitHub and the vendor domain openchoreo.dev using utility scripts.\n- [EXTERNAL_DOWNLOADS]: Includes instructions to download and execute the Flux CD CLI installation script from the official fluxcd.io domain when the tool is not found on the system.\n- [COMMAND_EXECUTION]: Executes administrative commands using tools such as kubectl, flux, occ, and git to manage cluster state and GitOps repository configuration. The instructions require explicit user confirmation for all destructive or remote-visible operations.\n- [CREDENTIALS_UNSAFE]: Provides recipes for managing Git Personal Access Tokens (PATs) used by build-and-release workflows. It implements safeguards to ensure that tokens are provisioned only into secure external secret stores and are never committed to the repository in plaintext.
Audit Metadata