github-actions-templates
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a documentation resource providing templates for GitHub Actions and contains no executable code or scripts within the skill itself.
- [EXTERNAL_DOWNLOADS]: Templates reference official and widely-used GitHub Actions from trusted organizations such as GitHub (actions/) and AWS (aws-actions/).
- [EXTERNAL_DOWNLOADS]: The skill provides integration patterns for well-known services including Docker, Snyk, Aqua Security, Codecov, and Slack.
- [COMMAND_EXECUTION]: Includes standard CI/CD command sequences for package management (npm ci, pip install), testing (pytest), and infrastructure management (kubectl, aws eks).
- [SAFE]: Demonstrates the correct security posture for handling sensitive credentials by using GitHub Secrets placeholders (e.g., secrets.GITHUB_TOKEN, secrets.AWS_ACCESS_KEY_ID) rather than hardcoded values.
Audit Metadata