managing-pipelines
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill is entirely documentation-based, consisting of Markdown files that provide architectural and security guidance for CI/CD pipelines. It does not include any executable scripts, binaries, or configuration files that could be misused.
- [SAFE]: The instructions proactively educate users on security risks, such as supply chain attacks (CVE-2025-30066), environment variable poisoning, and the risks associated with the
pull_request_targettrigger. - [SAFE]: The provided code examples demonstrate secure implementation patterns, including pinning third-party actions to immutable commit SHAs, implementing least-privilege GITHUB_TOKEN permissions, and using OIDC for keyless authentication.
- [SAFE]: No obfuscation, hardcoded credentials, or malicious injection patterns were found in any of the analyzed files.
Audit Metadata