github-workflow
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Executes standard development tools (git, gh, npm, go, python3) to facilitate quality gates and repository management. The operations are local to the repository and aligned with standard development practices.
- [PROMPT_INJECTION]: Includes specific logic to detect and sanitize unsafe shell characters from user-provided branch names, which serves as a defensive measure against potential command injection attempts.
- [EXTERNAL_DOWNLOADS]: References official tools such as the GitHub CLI and uses
npxfor running local auditing utilities, which are standard for the intended software development environment.
Audit Metadata