deployment-automation
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of documentation and configuration templates for deployment automation. No malicious logic, obfuscation, or prompt injection attempts were identified.
- [EXTERNAL_DOWNLOADS]: The skill references official GitHub Actions from trusted vendors (Microsoft/Azure and GitHub) and uses well-known container images (Postman). These references are standard for CI/CD workflows and do not pose a security risk.
- [COMMAND_EXECUTION]: Contains shell script examples for environment setup and deployment. These use standard tools (helm, kubectl) and demonstrate safe handling of configuration files, such as applying restrictive (600) permissions to sensitive configuration.
- [CREDENTIALS_UNSAFE]: Correctly uses placeholder syntax for secrets (${{ secrets.KUBE_CONFIG }}) rather than hardcoding sensitive data, following security best practices for CI/CD pipelines.
Audit Metadata