workflow-setup
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is designed for the legitimate purpose of setting up CI/CD workflows for Python, Rust, and TypeScript projects.
- [COMMAND_EXECUTION]: The skill uses standard, low-risk commands like
lsand thegh(GitHub) CLI to inspect and validate workflow files. - [DATA_EXFILTRATION]: No network operations or data transmission to external domains were detected. All operations are local to the repository environment.
- [SAFE]: Includes security best practices in its instructions, specifically recommending the use of
yaml.safe_load()to prevent unsafe deserialization and the use ofset -eo pipefailin shell scripts to prevent silent failures in CI pipelines.
Audit Metadata