ci-cd-security
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is primarily educational, providing instructions and templates for hardening CI/CD pipelines. It does not contain malicious code or instructions.
- [EXTERNAL_DOWNLOADS]: The skill references official GitHub Actions and third-party security tools from well-known providers (GitHub, Step Security). It correctly promotes the security best practice of pinning these external dependencies to specific commit SHAs to mitigate supply chain risks.
- [CREDENTIALS_UNSAFE]: The skill contains no hardcoded credentials. It provides explicit guidance on avoiding hardcoded secrets and correctly demonstrates the use of secret management systems.
- [DATA_EXFILTRATION]: No patterns for data exfiltration were found. The skill actively encourages the use of network monitoring and egress filtering to prevent unauthorized data transfer.
Audit Metadata