gha-pipelines
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill enforces security best practices by explicitly advising against using
permissions: write-alland recommending minimal token scopes.\n- [SAFE]: All referenced GitHub Actions (e.g.,actions/checkout,docker/login-action,fluxcd/flux2/action) originate from reputable or official sources.\n- [SAFE]: No obfuscation, data exfiltration, or malicious prompt injection patterns were detected.
Audit Metadata