Skills
skills/codemagic-ci-cd/codemagic-skills/codemagic-codepush/Gen Agent Trust Hub

codemagic-codepush

Pass

Audited by Gen Agent Trust Hub on Mar 14, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the @codemagic/code-push-cli and @code-push-next/react-native-code-push NPM packages. These are official resources maintained by the vendor (Codemagic) and are required for the intended OTA update functionality.
  • [COMMAND_EXECUTION]: Provides standard CLI commands for the code-push utility to manage the lifecycle of OTA updates, such as logging into the official server (https://codepush.pro), creating apps, and managing deployments. These commands are executed by the user or within a controlled CI/CD environment.
  • [SAFE]: No malicious patterns, obfuscation, or unauthorized data access were detected. The skill follows security best practices by using environment variables for sensitive access keys and providing placeholders for project-specific deployment keys.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 14, 2026, 09:27 PM