xcode-build

This skill is a benign, detailed guide for Xcode build and CI/CD configuration including code signing, provisioning handling, build-phase scripts, and artifact uploads. There are no direct signs of malicious code, obfuscated payloads, or untrusted download-and-execute instructions. The primary security concerns are operational: handling of high-value credentials (cert.p12, P12 passwords, keychain operations, provisioning profiles) and the usual supply-chain risks from third-party dependencies installed in CI. These risks are expected for any CI/manual-signing workflow and should be mitigated by best practices: secure storage of secrets (vaults), least-privilege CI tokens, ephemeral keychains, limiting artifact access, and verifying third-party dependency integrity. Overall: no malware detected, but moderate operational risk due to sensitive credential handling required by the documented workflows.