gitlab-ci-generator

This skill is primarily a documentation-driven generator for GitLab CI/CD pipelines. It asks the agent to read local reference files and templates, generate .gitlab-ci.yml content, and mandatorily validate the output with devops-skills:gitlab-ci-validator. There are no direct signs of malware (no download-and-execute chains, no hardcoded secrets, no suspicious external endpoints). The main security concerns are transitive trust (invoking an external validator skill and optional Context7 web retrieval) and the enforced automation (automatic validation and fix loops) which increases the amount of content and metadata sent to other services. Recommend verifying the provenance and security posture of the devops-skills:gitlab-ci-validator and any Context7 providers before enabling automatic validation. Also ensure generated pipelines avoid embedding secrets and that artifact handling is secured. Overall risk is moderate-low but not zero — the transitive skill invocation is the primary risk vector.