devsecops
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill is entirely educational, providing guidance on shift-left scanning, CI/CD gates, and supply chain security without introducing any executable code.
- [NO_CODE]: The skill consists entirely of Markdown instructions and reference guides; no actual code, binaries, or automation scripts are included.
- [SAFE]: External references and tool examples target well-known security services (such as Semgrep and Trivy) and official platform repositories (GitHub and AWS).
- [SAFE]: The content specifically warns against dangerous patterns such as un-sanitized shell execution and unpinned remote scripts, providing remediation guidance instead.
Audit Metadata