Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/mistral-ci-integration/Gen Agent Trust Hub

mistral-ci-integration

Pass

Audited by Gen Agent Trust Hub on Mar 30, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides instructions and code snippets for integrating Mistral AI into a GitHub Actions CI/CD pipeline. All identified external resources and operations are standard for development workflows.
  • [EXTERNAL_DOWNLOADS]: The skill utilizes official GitHub Actions (actions/checkout, actions/setup-node) and standard package management via npm. These are from trusted sources and common in CI environments.
  • [CREDENTIALS_UNSAFE]: The skill correctly instructs users to store the MISTRAL_API_KEY as a GitHub repository secret (${{ secrets.MISTRAL_API_KEY }}), which is a recommended security practice for secret management.
  • [COMMAND_EXECUTION]: The skill uses Bash to run tests and validation scripts. These commands (npm ci, npx vitest, grep) are scoped to the repository's source and test files and do not exhibit malicious patterns.
  • [DATA_EXFILTRATION]: Network operations are limited to the official Mistral AI API (api.mistral.ai) for model interaction and smoke testing. No unauthorized data exfiltration patterns were observed.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 30, 2026, 02:27 PM