release-please
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches configuration schemas from the official Google APIs GitHub repository.
- [EXTERNAL_DOWNLOADS]: Provided GitHub Action templates utilize official and well-known actions from trusted organizations including the GitHub Actions team, Google APIs, Docker, and the Python Packaging Authority (PyPA).
- [SAFE]: The templates for GitHub Actions correctly implement security best practices by using repository secrets (e.g., secrets.NPM_TOKEN) for registry authentication.
- [SAFE]: Workflow templates follow the principle of least privilege by defining explicit, granular job-level permissions for repository contents, pull requests, and package registries.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it is instructed to analyze existing repository files and commit messages from the user's environment to suggest configuration improvements. Ingestion points include CI/CD workflow files, package manifests, and commit history. No specific boundary markers or sanitization logic is prescribed for this ingestion, but the agent's capabilities are limited to generating configuration and workflow templates.
Audit Metadata