coderabbit-deploy-integration
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill documents the deployment of CodeRabbit, an established third-party AI service. References to GitHub App installation and CodeRabbit documentation are legitimate.
- [COMMAND_EXECUTION]: Provides Bash scripts that utilize
gh(GitHub CLI) andgitfor administrative tasks, including cloning repositories, pushing configuration files, creating pull requests, and updating branch protection rules via the GitHub API. These actions align with the skill's stated purpose of organization-wide deployment. - [DATA_EXPOSURE]: No hardcoded credentials or access to sensitive local files (e.g., SSH keys, environment variables) were detected. The scripts interact only with repository-specific configuration and standard GitHub API endpoints.
Audit Metadata