developing-google-cloud
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill contains a large volume of command-line examples (gcloud, kubectl, gsutil, bq) used for infrastructure management. These are provided as educational templates and do not contain malicious payloads.
- [SAFE]: External dependencies and tool references (e.g., Trivy, Packer, Terraform, Apache Beam) originate from trusted organizations or well-known registries. Installation instructions for the Google Cloud SDK use official Google domains.
- [SAFE]: Credential placeholders found in the documentation (e.g., 'Google123!', 'mysecretpassword') are explicitly used as examples or identified as 'bad practices' to avoid. The skill strongly advocates for secure practices like using Workload Identity and Secret Manager instead of static keys.
- [SAFE]: The skill implements structural best practices for security guides, including 'least privilege' principles and 'Zero Trust' architecture patterns.
Audit Metadata