magpie-workflow-security-audit

Official

Secure your GitHub workflows with a comprehensive security audit.

Authorapache
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill unit addresses the security concerns in GitHub Actions workflows by conducting a thorough audit, identifying vulnerabilities, and providing remediation suggestions without modifying the workflow files.

Core Features & Use Cases

  • Security Audit: Identifies injection vulnerabilities, excessive permissions, unpinned external actions, and self-hosted runner fork-secret leaks.
  • Remediation Suggestions: Offers fixes for vulnerabilities but does not modify the workflow files.
  • Use Case: It can be used when a maintainer requests a security audit for their GitHub Actions workflows.

Quick Start

Perform a security audit on a GitHub repository using magpie-workflow-security-audit.

Dependency Matrix

Required Modules

None required

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: magpie-workflow-security-audit
Download link: https://github.com/apache/magpie/archive/main.zip#magpie-workflow-security-audit

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.