release
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes multiple shell commands to manage the Ruby environment and project state, including
bundle install,bundle exec rspec, andrake. It also runs project-specific scripts located in thebin/directory:bin/pre-release-smoke,bin/run-evals, andbin/bench-diff. These are standard tools for a development and release lifecycle. - [COMMAND_EXECUTION]: Utilizes the GitHub CLI (
gh) for managing remote release metadata, such as listing releases, editing 'latest' flags, and creating new releases with notes extracted from the localCHANGELOG.mdfile. - [DATA_EXFILTRATION]: Network activity is restricted to authenticated interactions with RubyGems (via
bundle) and GitHub (viagh), which are necessary for the primary purpose of publishing a gem and its release notes.
Audit Metadata