init-release-base-relizy-and-bumpp
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs legitimate repository management tasks such as versioning, changelog generation, and CI/CD workflow setup. All provided templates follow industry standard practices for monorepo maintenance.
- [EXTERNAL_DOWNLOADS]: The skill recommends installing development dependencies from the npm registry, including 'bumpp', 'changelogen', 'changelogithub', 'relizy', and vendor packages '@ruan-cat/utils' and '@ruan-cat/commitlint-config'. These are standard development tools and vendor resources.
- [COMMAND_EXECUTION]: The skill involves the execution of release-related CLI tools (e.g., 'bumpp', 'relizy', 'changelogen', 'gh'). These operations are transparently defined in the root package.json scripts and are intended for use by the developer during the release process.
- [DATA_EXFILTRATION]: No unauthorized data transmission was detected. The GitHub Actions workflow template uses the official GitHub CLI and standard authentication tokens for creating releases on the platform.
Audit Metadata