minecraft-ci-release
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill focuses on providing educational templates and automation tools for Minecraft development.
- [COMMAND_EXECUTION]: The skill includes a bash script
scripts/validate-workflow-snippets.shwhich executes a local Node.js script to validate YAML snippets withinSKILL.md. This is a standard development utility with no malicious intent observed. - [EXTERNAL_DOWNLOADS]: The skill references official GitHub Actions and Minecraft modding plugins such as Modrinth Minotaur and CurseForgeGradle. These are from well-known sources and are used as intended for CI/CD processes.
- [CREDENTIALS_UNSAFE]: The skill correctly identifies the risk of hardcoding tokens and provides instructions on using environment variables and GitHub Secrets (e.g.,
MODRINTH_TOKEN,CURSEFORGE_TOKEN) to handle credentials securely.
Audit Metadata