gha-security-review
CommunityAudit GitHub Actions for vulnerabilities.
Software Engineering#github actions#ci/cd security#vulnerability scanning#workflow security#expression injection#pwn request
Authorsergical
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill identifies and helps you fix exploitable security vulnerabilities within your GitHub Actions workflows, protecting your CI/CD pipelines from compromise.
Core Features & Use Cases
- Vulnerability Detection: Scans workflows for common attack patterns like pwn requests, expression injection, and credential escalation.
- Exploitation Scenarios: Provides concrete Proof-of-Concept (PoC) scenarios for each finding.
- Mitigation Guidance: Offers specific fixes and best practices to secure your workflows.
- Use Case: You need to ensure your CI/CD pipelines are secure before merging a critical update. This Skill will audit your
.github/workflows/directory for any security risks that an external attacker could exploit.
Quick Start
Use the gha-security-review skill to audit all GitHub Actions workflows in the repository for security vulnerabilities.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: gha-security-review Download link: https://github.com/sergical/pi-config/archive/main.zip#gha-security-review Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.