A

Agentic Actions Auditor

Audits GitHub Actions workflows for security vulnerabilities in AI agent integrations including Claude Code Action, Gemini CLI, OpenAI Codex, and GitHub AI Inference. Detects attack vectors where atta...

Home/Security/Agentic Actions Auditor

About this skill

Audits GitHub Actions workflows for security vulnerabilities in AI agent integrations including Claude Code Action, Gemini CLI, OpenAI Codex, and GitHub AI Inference. Detects attack vectors where attacker-controlled input reaches AI agents running in CI/CD pipelines, including env var intermediary patterns, direct expression injection, dangerous sandbox configurations, and wildcard user allowlists. Use when reviewing workflow files that invoke AI coding agents, auditing CI/CD pipeline security f

View on GitHub

GitHub Stats

Stars
Forks
Last Update
License
Other
Version
1.0.0

Categories

Security

Features

Related Skills

More from Security

Cybersecurity Skills

734+ structured cybersecurity skills mapped to MITRE ATT&CK framework for AI agents

1.3kmukul975
cybersecurity
mitre-attack
pentesting
incident-response

Trail of Bits Security Research

45 security research and vulnerability detection skills from Trail of Bits

3.6kTrail of Bits
security-research
fuzzing
static-analysis
vulnerability

FFUF Web Fuzzing

Fast web fuzzer for discovering hidden content, directories, files, and vulnerabilities during penetration testing

150jthack
Security
Developer Tools