deployment-pipeline-design
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a documentation and template resource for CI/CD pipeline design, focusing on structural best practices and operational reliability.
- [SAFE]: It incorporates industry-standard security tools such as Trivy for container scanning and Semgrep for static application security testing (SAST) within the provided workflow examples.
- [SAFE]: The skill explicitly advises on the use of secure secret management (e.g., Vault, AWS Secrets Manager, GitHub encrypted secrets) and correctly uses placeholders for sensitive information like API keys and AWS account IDs.
- [SAFE]: No evidence of prompt injection, data exfiltration, or obfuscation was found in the documentation or provided scripts.
Audit Metadata