github-jira
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill facilitates legitimate synchronization between JIRA and GitHub.\n
- Evidence: The workflows connect JIRA tickets with GitHub branches, PRs, and releases to automate status updates and metadata synchronization.\n- [EXTERNAL_DOWNLOADS]: The skill recommends installing the jira-cli utility.\n
- Evidence: Installation instructions point to reputable package managers (Homebrew, Scoop, Snap) and the official GitHub releases page for the tool (ankitpokhrel/jira-cli).\n- [COMMAND_EXECUTION]: Use of shell commands for API interactions.\n
- Evidence: GitHub Action templates in references/github-actions.md use curl and jq to interact with Atlassian OAuth and JIRA REST APIs. These commands are focused on the skill's functional requirements.\n- [SAFE]: Adherence to security best practices for credential handling.\n
- Evidence: The skill instructs users to store sensitive tokens in environment variables and GitHub Secrets rather than hardcoding them in scripts. Base64 encoding is used appropriately for standard HTTP Basic Authentication.
Audit Metadata