Deploys Airflow DAGs and projects. Use when deploying Airflow or answering anything about deployment - deploying DAGs/projects, pushing code, setting up CI/CD, deploying to production or deployment strategies for Airflow.
88
—
Does it follow best practices?
Impact
97%
1.36xAverage score across 3 eval scenarios
Risky
Do not use without reviewing
Security
2 findings — 1 high severity, 1 medium severity. You should review these findings carefully before considering using this skill.
The skill handles credentials insecurely by requiring the agent to include secret values verbatim in its generated output. This exposes credentials in the agent’s context and conversation history, creating a risk of data exfiltration.
Insecure credential handling detected (high risk: 0.90). The prompt includes plaintext credentials and connection URIs (e.g., POSTGRES_PASSWORD: airflow, the --password admin user creation, AIRFLOW_CONN_MY_DB with user:pass) that the agent would be expected to reproduce verbatim in configs/commands, creating an exfiltration risk.
The skill fetches instructions or code from an external URL at runtime, and the fetched content directly controls the agent’s prompts or executes code. This dynamic dependency allows the external source to modify the agent’s behavior without any changes to the skill itself.
Potentially malicious external URL detected (high risk: 1.00). The skill contains runtime commands that fetch and then execute remote deployment content — e.g., curl 'https://airflow.apache.org/docs/apache-airflow/stable/docker-compose.yaml' (downloaded and then used with docker compose up) and helm repo add/install against https://airflow.apache.org (which pulls and deploys remote Helm charts) — so external content directly controls runtime behavior.
8827e93
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.