release-asc-cli
Pass
Audited by Gen Agent Trust Hub on Jul 3, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local build and validation commands, including
make,git, and the generatedascbinary. These are standard operations for a repository's release workflow. - [EXTERNAL_DOWNLOADS]: Fetches data and verifies assets from GitHub, Homebrew, and WinGet. These interactions are directed at well-known services to confirm the success of the release process.
- [PROMPT_INJECTION]: The skill processes external information such as pull request content and GitHub Actions logs (SKILL.md). While it lacks explicit boundary markers to separate this external data from internal instructions, this represents an indirect prompt injection surface which is common in data-processing skills and carries low risk in this context.
Audit Metadata