release-orchestrator
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary function is to orchestrate release workflows. All identified scripts (
preflight_checker.py,changelog_generator.py,version_bumper.py,release_readiness_scorer.py) perform standard repository management tasks. - [COMMAND_EXECUTION]: The skill uses
subprocess.runto execute standard development tools such asgit,pytest,npm audit,cargo audit, and various linters (ruff,eslint,clippy). These operations are necessary for the skill's stated purpose and are implemented using best practices (e.g., passing arguments as lists to prevent shell injection). - [DATA_EXFILTRATION]: While
preflight_checker.pycontains regex patterns for sensitive credentials (AWS keys, GitHub tokens, etc.), these are used exclusively for local scanning to alert the user of potential secrets in their codebase. No network operations were found that would exfiltrate this or any other data. - [INDIRECT_PROMPT_INJECTION]: The skill ingests untrusted data from git logs and project manifests (e.g.,
package.json). However, it processes this data using deterministic parsers (regex and JSON/TOML libraries) rather than interpolating it directly into agent instructions. - Ingestion points: Git commit messages (parsed by
changelog_generator.pyandversion_bumper.py), project manifest files likepackage.json,pyproject.toml, etc. - Boundary markers: None (uses regex-based structured parsing).
- Capability inventory: File system writes (to update version files), CLI execution (git, linters, test runners).
- Sanitization: Standard regex parsing and JSON/TOML decoding.
Audit Metadata