Bitrise Expert
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No malicious patterns detected in the skill content.
- [Category 2: Data Exposure] (SAFE): The provided YAML examples correctly use environment variable placeholders (e.g., $BITRISEIO_API_KEY_PATH, $BITRISE_CERTIFICATE_URL) rather than hardcoding sensitive credentials or secrets.
- [Category 4: External Downloads] (LOW): The configuration examples reference the official Bitrise step library (https://github.com/bitrise-io/bitrise-steplib.git). As bitrise-io is a well-known organization and the source is standard for the documented tool, this is considered a low-risk reference.
- [Category 8: Indirect Prompt Injection] (SAFE): While the skill provides templates that an agent might fill with user-provided data, it does not contain any patterns suggesting the processing of untrusted data in an unsafe manner.
Audit Metadata