cicd-deploy-pro

The skill appears to be a framework-guide style tooling description for CI/CD deployment of a Next.js/Prisma/Neon project with multiple deployment targets. Its footprint is coherent with its stated purpose and uses conventional, reputable tools (pnpm, GitHub Actions, Vercel, Docker). While there are some risky patterns in examples (use of fake credentials, patches via postinstall.js, and potential log exposure), these are confined to illustrative content and do not indicate active credential harvesting or malicious data flows. Overall, the risk is low-to-moderate (benign with caveats) given the absence of unverifiable binaries, external data sinks, or credential-forwarding flows in the described material.