shared-monorepo-pnpm-workspaces
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate technical documentation and templates for monorepo configuration using pnpm. All instructions align with established developer workflows.
- [SAFE]: CI/CD examples utilize official and well-known GitHub Actions (actions/checkout, pnpm/action-setup, actions/setup-node) and follow secure practices for token handling and caching.
- [SAFE]: The documentation explicitly covers supply chain security by instructing users on how to use the 'allowBuilds' feature in pnpm v10 to restrict third-party install scripts.
- [SAFE]: No malicious patterns such as prompt injection, data exfiltration, or obfuscation were detected in any of the analyzed files.
Audit Metadata