golang-continuous-integration
Pass
Audited by Gen Agent Trust Hub on May 2, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a robust security posture by including multiple security scanners such as CodeQL, govulncheck, gosec, and Bearer in its pipeline templates.
- [SAFE]: All GitHub Actions referenced (e.g., actions/checkout, docker/build-push-action, aquasecurity/trivy-action) originate from official or well-known and reputable organizations.
- [SAFE]: The documentation explicitly warns users about high-risk permissions (like contents: write) and provides clear instructions in 'repo-security.md' on how to harden repository settings and workflow permissions.
- [SAFE]: No patterns of obfuscation, malicious data exfiltration, or credential harvesting were detected. Hardcoded values in integration test templates are standard non-sensitive placeholders for local service containers.
Audit Metadata