release-process
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill involves several shell-based operations, including repository management via Git (checkout, pull, commit, push), workflow monitoring via the GitHub CLI (
gh run watch), and the execution of local repository scripts (tools/changelog.py,tools/versions.py). These commands are typical for release engineering tasks. - [CREDENTIALS_UNSAFE]: The skill retrieves an authentication token via
gh auth tokenand passes it as a command-line argument to the changelog script. While this is a common automation pattern, secrets passed as CLI arguments may be visible to other processes or users on the local system via process monitoring tools. - [SAFE]: The skill follows security best practices by implementing a human-in-the-loop requirement, explicitly instructing the agent to wait for user approval before creating a release when breaking changes are detected.
- [SAFE]: Although the skill ingests data from repository files (
CHANGELOG.md,default-versions.tf), it mitigates the risk of indirect prompt injection by ensuring the agent is operating on the trustedmasterbranch after a freshgit pull.
Audit Metadata