github-actions-starter
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill is designed to ingest and process untrusted user requests related to DevOps automation. 1. Ingestion points: User-provided requests for GitHub Actions patterns and configurations (SKILL.md). 2. Boundary markers: Absent; there are no instructions to ignore embedded commands in the processed data. 3. Capability inventory: The skill is granted powerful capabilities including Bash, Write, and Edit. 4. Sanitization: No evidence of input validation or sanitization logic is present in the skill definition.
- [No Code Provided] (SAFE): The analyzed content contains only a markdown configuration file (SKILL.md); no scripts, binary files, or remote dependencies were included for analysis.
Audit Metadata