turborepo
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a technical reference for Turborepo, providing architectural guidance and configuration examples without any malicious patterns or dangerous command execution.
- [SAFE]: Credential management instructions follow industry best practices, recommending the use of environment variables and CI secrets (e.g.,
TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}) rather than hardcoding sensitive data. - [SAFE]: External references and dependencies (e.g., GitHub Actions from the 'actions' organization, package managers like 'pnpm' and 'bun') are limited to well-known, trusted technology providers and official tools within the JavaScript ecosystem.
- [SAFE]: No evidence of prompt injection, obfuscation, or data exfiltration attempts was found across the skill's instructions and reference files.
Audit Metadata