secure-development-policy
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is primarily instructional documentation and does not contain executable code or dangerous operations.
- [SAFE]: Code snippets provided are either configuration examples (e.g., GitHub Actions, Maven XML) or explicitly labeled 'Banned Patterns' to demonstrate insecure practices for educational purposes.
- [SAFE]: External references point to well-known and trusted organizations including OWASP, NIST, CIS, and the official GitHub repositories of Zaproxy and GitHub.
- [SAFE]: Network targets and repository links (e.g., hack23.com, Hack23/ISMS-PUBLIC) are consistent with the skill's author context.
Audit Metadata