Skills
skills/popup-studio-ai/bkit-claude-code/phase-9-deployment/Gen Agent Trust Hub

phase-9-deployment

Pass

Audited by Gen Agent Trust Hub on Mar 8, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the Bash tool for standard deployment tasks such as building applications and executing CLI commands.
  • Evidence: Example commands include npm run build, vercel, and the execution of a local validation script node scripts/check-env.js.
  • [EXTERNAL_DOWNLOADS]: The skill references the installation of official deployment tools from well-known registries.
  • Evidence: The instruction npm i -g vercel installs the Vercel CLI from the public NPM registry.
  • [SAFE]: The skill demonstrates a strong security posture by documenting correct secrets management strategies.
  • Evidence: It provides detailed guidance on using GitHub Secrets, HashiCorp Vault, and AWS Secrets Manager to handle sensitive variables like DATABASE_URL and AUTH_SECRET rather than hardcoding them.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 8, 2026, 04:56 PM