gpc-security

The skill exhibits coherent purpose-capability alignment with credential management, audit logging, and secure deployment practices. It maintains proportionate access to sensitive data (keys, tokens, audit logs) and relies on trusted, documented locations without introducing unverifiable binaries or broad exfiltration risks. The primary risk areas are ensuring consistent redaction across all verbose outputs and logs, and preventing secret leakage during CI/CD rotations. Overall, the skill is BENIGN with moderate security risk due to credential handling, and falls within expected safe bounds for its stated purpose.