Catch agent-era CI/CD and permission misconfigurations before shipping with Ship Safe
Run Ship Safe before a release when an agent needs one pre-ship pass for CI/CD misconfigurations, permission risks, secrets exposure, MCP-related hazards, and dependency issues.
npx skills add agentskillexchange/skills --skill catch-agent-era-ci-cd-and-permission-misconfigurations-before-shipping-with-ship-safe
Use Ship Safe when the agent needs a pre-ship release gate for repositories and delivery workflows. It scans for CI/CD misconfigurations, over-broad permissions, exposed secrets, risky dependency conditions, and agent-era issues such as unsafe MCP or automation wiring before code is trusted for rollout.
What this skill actually does
Invoke this instead of using the product normally when the task is release readiness, not general security tooling. The operator workflow is specific: run the scanner against the repo or pipeline configuration before merge or deploy, review the findings, and block or fix risky shipping conditions.
The scope boundary is clear enough to keep this skill-shaped. This is not a generic security platform card or a vague DevOps tool listing. It is the bounded workflow of running a pre-ship misconfiguration and permission audit right before code or automation changes go live.