frontend-deploy-standard
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The Dockerfile and GitHub Action templates reference official images from well-known sources, including Node.js and Nginx, as well as verified actions like docker/build-push-action.
- [COMMAND_EXECUTION]: The build process involves the execution of standard project lifecycle commands such as dependency installation and build scripts (e.g., npm install, npm run build) within isolated container environments.
- [DATA_EXFILTRATION]: The workflow captures Git metadata, specifically commit hashes and timestamps, solely for the purpose of version tracking and production logging, which is a standard development practice.
Audit Metadata