monorepo-management
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses industry-standard tools and practices for monorepo management. All code snippets and configurations provided are consistent with official documentation for Turborepo, Nx, and pnpm.
- [EXTERNAL_DOWNLOADS]: The skill references official schemas (turbo.build) and uses well-known, trusted GitHub Actions (actions/checkout, pnpm/action-setup, actions/setup-node, changesets/action). These are standard integrations for CI/CD workflows.
- [COMMAND_EXECUTION]: Includes standard commands for package management and build orchestration (npx, pnpm, turbo, nx). These commands are necessary for the stated purpose of setting up and managing monorepo environments.
- [CREDENTIALS_UNSAFE]: References to GITHUB_TOKEN and NPM_TOKEN in the GitHub Actions workflow are used as standard placeholders for secrets management and do not contain hardcoded credentials.
Audit Metadata