ci-config-helper
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions to override safety filters or ignore previous rules were found.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials or exfiltration patterns detected. The skill specifically directs the agent to 'Avoid exposing secrets in logs or configs.'
- [External Downloads] (SAFE): The examples provided use trusted, official GitHub Actions (
actions/checkout,actions/setup-node) and standard packages (flake8). - [Indirect Prompt Injection] (SAFE): The skill provides a surface for processing user-provided CI/CD requirements. However, it functions as a text-generation helper without dangerous runtime capabilities or command execution. It includes instructions to keep configurations secure and readable.
- [Command Execution] (SAFE): The skill does not execute commands itself; it provides templates for users to use in their own environments.
Audit Metadata