deploying-to-staging-environment
Pass
Audited by Gen Agent Trust Hub on Jun 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill describes a standard deployment workflow for internal repositories managed by the author.
- [COMMAND_EXECUTION]: Uses standard git commands (worktree, fetch, push) and curl for health checks on vendor-owned infrastructure. These operations are aligned with the skill's primary purpose.
- [EXTERNAL_DOWNLOADS]: References official GitHub repositories and a Fly.io deployment endpoint belonging to the vendor. No third-party or untrusted downloads are initiated.
- [DATA_EXFILTRATION]: No evidence of sensitive data access or unauthorized exfiltration. The mention of GitHub Secrets refers to necessary environment configuration for the CI/CD pipeline, not an attempt to harvest credentials.
Audit Metadata