Skills
skills/sundial-org/awesome-openclaw-skills/web-deploy-github/Gen Agent Trust Hub

web-deploy-github

Pass

Audited by Gen Agent Trust Hub on Mar 21, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONREMOTE_CODE_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes shell scripts (init_project.sh and deploy_github_pages.sh) to automate local file system operations, project initialization, and Git repository management.
  • [COMMAND_EXECUTION]: It utilizes the GitHub CLI (gh) to perform repository creation and service configuration via the GitHub API, which is standard for automating GitHub workflows.
  • [DATA_EXFILTRATION]: The deployment script creates public GitHub repositories by default (gh repo create --public). This results in the project code being hosted on public infrastructure, which represents a potential data exposure risk if users inadvertently include sensitive information in their project files.
  • [REMOTE_CODE_EXECUTION]: The skill configures a GitHub Actions workflow (.github/workflows/deploy.yml) that executes on GitHub-hosted runners to automate the site deployment. This workflow uses official, trusted actions maintained by GitHub.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 21, 2026, 01:00 PM