goreleaser
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFEREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSNO_CODE
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill documents installation and execution patterns using
curl | bashfrom the officialgoreleaser.comdomain within various CI/CD environment examples. This is the standard, official method for running the tool in automated pipelines. - [COMMAND_EXECUTION]: Instructions include the configuration of
hookswithin the.goreleaser.yamlfile, which allows the execution of shell commands during the build and release lifecycle. This is a core feature of the tool used for legitimate purposes like binary compression or code generation. - [EXTERNAL_DOWNLOADS]: Configuration examples reference official external resources, including the GoReleaser JSON schema at
goreleaser.comand official Docker images for multi-platform distribution. - [NO_CODE]: The skill consists entirely of instructional Markdown content and YAML configuration templates. It does not include any executable scripts, binaries, or active code components.
Audit Metadata