github-actions
Pass
Audited by Gen Agent Trust Hub on Jun 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides instructions for using standard, well-known development tools such as the GitHub CLI (
gh) and the local action runneract. - [SAFE]: Includes explicit security warnings regarding secret management, workflow permissions, and the risks associated with
pull_request_targettriggers. - [SAFE]: Promotes security best practices, such as pinning action versions to specific versions or SHAs and following the principle of least privilege for tokens.
Audit Metadata