buildspace-ci-cd
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill provides legitimate documentation and implementation steps for configuring GitHub Actions release pipelines.
- [EXTERNAL_DOWNLOADS]: The skill references reusable GitHub Actions workflows hosted in the author's repository (photon-hq/buildspace). These are vendor-owned resources necessary for the project automation described.
- [SAFE]: The skill correctly identifies the need for sensitive credentials (e.g., NPM_TOKEN, OPENAI_API_KEY) and instructs users to manage them securely using GitHub Secrets rather than hardcoding values.
Audit Metadata