gh-cli
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides installation instructions for Linux that fetch a GPG keyring from the official GitHub CLI package repository (cli.github.com). This is a well-known and trusted source.
- [COMMAND_EXECUTION]: Extensive documentation is provided for the
ghcommand-line tool, including commands for repository management, issue tracking, and secret handling. These are standard operations for the documented tool. - [CREDENTIALS_UNSAFE]: Authentication procedures are documented using environment variables like
GH_TOKENand token files. No actual secrets are hardcoded; the skill uses placeholders and describes standard practices for CLI authentication.
Audit Metadata