static-site-security
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is entirely composed of documentation and markdown instructions. It does not include any executable scripts, binary files, or automated tools.
- [SAFE]: All external references, such as those to Google Fonts, Let's Encrypt, and GitHub Actions (actions/checkout, step-security/harden-runner), are well-known, trusted services used correctly within the context of security best practices.
- [SAFE]: No patterns associated with prompt injection, data exfiltration, or obfuscation were detected. The content focuses on defensive security measures like Content Security Policy (CSP), Subresource Integrity (SRI), and access control.
Audit Metadata