python3-publish-release-pipeline
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides configuration templates for CI/CD pipelines on GitHub Actions and GitLab CI.- [SAFE]: It utilizes reputable and official GitHub Actions such as pypa/gh-action-pypi-publish and astral-sh/setup-uv.- [SAFE]: It promotes security best practices by recommending PyPI Trusted Publishing (OIDC) to minimize the risk of credential leakage.- [SAFE]: Instructions for handling API tokens and environment variables follow standard secure workflows.- [SAFE]: All referenced development tools (uv, ruff, pytest, etc.) are standard, well-known utilities in the Python ecosystem.
Audit Metadata