github-copilot-cli-expert
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides installation instructions that fetch the Copilot CLI from trusted sources. These include Homebrew (
brew install copilot-cli), the official npm registry (npm install -g @github/copilot), Windows Package Manager (winget install GitHub.Copilot), and an official GitHub install script (curl -fsSL https://gh.io/copilot-install | bash). These are standard, documented methods for installing official software from a well-known service (GitHub). - [COMMAND_EXECUTION]: The skill mentions various shell commands for interacting with the CLI, such as authentication (
/login), model selection (/model), and tool execution (!cmd). These are core functionalities of the documented tool and are presented as educational content for the user. - [CREDENTIALS_UNSAFE]: The documentation includes an example of setting an environment variable for authentication (
export GH_TOKEN="ghp_xxxxxxxxxxxx"). This uses a generic placeholder and does not contain hardcoded sensitive credentials.
Audit Metadata