release-asc-cli

Pass

Audited by Gen Agent Trust Hub on Jul 3, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes local build and validation commands, including make, git, and the generated asc binary. These are standard operations for a repository's release workflow.
  • [EXTERNAL_DOWNLOADS]: Fetches data and verifies assets from GitHub, Homebrew, and WinGet. These interactions are directed at well-known services to confirm the success of the release process.
  • [PROMPT_INJECTION]: The skill processes external information such as pull request content and GitHub Actions logs (SKILL.md). While it lacks explicit boundary markers to separate this external data from internal instructions, this represents an indirect prompt injection surface which is common in data-processing skills and carries low risk in this context.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 3, 2026, 02:42 AM
Security Audit — agent-trust-hub — release-asc-cli