github-actions-templates
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The templates reference official GitHub Actions from trusted publishers including GitHub (actions/, github/), Docker (docker/), AWS (aws-actions/), Aqua Security, Snyk, and Slack. These are standard tools for CI/CD pipelines.
- [CREDENTIALS_UNSAFE] (SAFE): The workflows correctly demonstrate the use of the GitHub Secrets context
${{ secrets.VARIABLE_NAME }}for sensitive information like AWS keys and API tokens. No hardcoded credentials were found. - [COMMAND_EXECUTION] (SAFE): Shell commands used in the templates (e.g.,
npm ci,kubectl apply,pip install) are standard administrative and development operations restricted to the CI environment. - [NO_CODE] (SAFE): The skill consists entirely of markdown documentation and YAML templates; it contains no standalone scripts or executables that would run on the agent's host system.
Audit Metadata