cicd-pipelines
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill contains templates that execute shell commands for building, testing, and deploying applications (e.g.,
npm ci,composer install,fastlane,aws cli). These are standard operations for CI/CD pipelines. - [EXTERNAL_DOWNLOADS]: The templates reference official and widely-used GitHub Actions from trusted sources (e.g.,
actions/,aws-actions/,docker/,ruby/) and well-known third-party providers (e.g.,shivammathur/setup-php,amondnet/vercel-action) to manage environments and deployment tasks. - [CREDENTIALS_UNSAFE]: The skill promotes secure secret management by instructing users to store credentials in GitHub Environment Secrets and utilizing OpenID Connect (OIDC) for passwordless authentication with AWS and GCP.
- [PROMPT_INJECTION]: The skill uses standard instructional language for CI/CD workflows and does not contain any patterns attempting to override agent behavior or bypass safety guidelines.
Audit Metadata