go-release
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill automates project configuration by generating standard files such as
.goreleaser.yaml,Dockerfile, and GitHub Action workflows. - [SAFE]: External dependencies are restricted to well-known and official GitHub Actions, including
actions/checkout,actions/setup-go,docker/build-push-action, andgoreleaser/goreleaser-action. - [SAFE]: The requirement for a
TAP_GITHUB_TOKENis a documented necessity for GoReleaser to push Homebrew formulas to a separate tap repository and is handled securely via GitHub Secrets. - [SAFE]: No obfuscation, prompt injection, or malicious data exfiltration patterns were identified during the analysis.
Audit Metadata