github-actions-templates
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [CREDENTIALS_UNSAFE] (SAFE): The templates correctly use the GitHub Secrets context (e.g., secrets.AWS_ACCESS_KEY_ID, secrets.SNYK_TOKEN) to handle sensitive credentials rather than hardcoding them.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill references actions from trusted organizations such as 'actions', 'aws-actions', 'docker', and 'github-security'. While some community actions (Trivy, Snyk) use the @master tag, they are well-known industry standard tools for security scanning and aligned with the skill's purpose.
- [COMMAND_EXECUTION] (SAFE): Shell commands provided (e.g., npm ci, pytest, kubectl apply) are standard operations for testing, building, and deploying software within a continuous integration pipeline.
Audit Metadata