github-actions
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill templates execute multiple shell, Node.js, and Python commands to automate the React Native build process. These commands run within the GitHub Actions runner environment to resolve dependencies, compile code, and package artifacts.\n- [PROMPT_INJECTION]: The templates ingest data from the local repository which can be influenced by project configuration files.\n
- Ingestion points: The workflow in
gha-workflow-and-downloads.mdreads and parsespackage.jsonto determine the Node.js version. The composite actions for Android and iOS parse JSON output fromnpx react-native config.\n - Boundary markers: The templates do not implement boundary markers or instructions to differentiate between trusted configuration and potentially malicious content within these files.\n
- Capability inventory: The actions possess extensive capabilities including dependency installation (npm, CocoaPods), binary compilation (Gradle, Xcode), and file packaging/uploading.\n
- Sanitization: Extracted values are used directly in file system searches and as parameters for other actions without validation or escaping logic.
Audit Metadata