codemagic-codepush
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified in the skill's instructions or referenced documentation.
- [EXTERNAL_DOWNLOADS]: The skill references the installation of
@codemagic/code-push-cliand@code-push-next/react-native-code-push. These are official packages provided by the vendor for their CodePush service and are necessary for the skill's functionality. - [CREDENTIALS_UNSAFE]: The skill correctly instructs users to manage sensitive credentials, such as deployment keys and access tokens, using environment variables and placeholders (e.g.,
$CODEPUSH_TOKEN,YOUR_DEPLOYMENT_KEY), preventing the accidental exposure of secrets.
Audit Metadata