xcode-cloud
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The scripts install
xcodegenusing Homebrew (brew install xcodegen). Homebrew is a trusted package manager andxcodegenis a standard utility for iOS development. - [COMMAND_EXECUTION] (SAFE): Executes standard development commands such as
xcodegen,git tag, andgit push. These are consistent with the skill's stated purpose of CI/CD automation. - [CREDENTIALS_UNSAFE] (SAFE): The skill uses
GITHUB_TOKENfrom an environment variable to authenticate git pushes. This is a standard and recommended practice in CI environments like Xcode Cloud. No hardcoded secrets were found. - [DATA_EXFILTRATION] (SAFE): No unauthorized data exfiltration was detected. The script pushes tags to the project's own repository.
Audit Metadata