github-actions-templates
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill contains only documentation and YAML configuration templates for GitHub Actions. It does not include any executable scripts, obfuscated content, or malicious instructions.
- [EXTERNAL_DOWNLOADS]: References official GitHub Actions from trusted organizations and well-known services, including GitHub (actions/, github/), Docker (docker/), Amazon Web Services (aws-actions/), Aqua Security (aquasecurity/), and Snyk (snyk/). These references are documented neutrally and align with the skill's purpose of providing CI/CD templates.
- [CREDENTIALS_UNSAFE]: Demonstrates secure handling of sensitive information by using GitHub Secrets placeholders (e.g., ${{ secrets.AWS_ACCESS_KEY_ID }}, ${{ secrets.SNYK_TOKEN }}) rather than hardcoding credentials.
- [COMMAND_EXECUTION]: Provides templates that include standard shell commands for building and testing applications (e.g., npm test, pip install, kubectl apply). These commands are intended for use within the user's own CI/CD environment and do not pose a risk to the agent's execution context.
Audit Metadata