Loading...
Loading...
Found 7 Skills
Create and audit GitHub Actions workflows. Use when adding CI/CD, reviewing workflow files, or fixing action pinning.
GitHub Actions security review for workflow exploitation vulnerabilities. Use when asked to "review GitHub Actions", "audit workflows", "check CI security", "GHA security", "workflow security review", or review .github/workflows/ for pwn requests, expression injection, credential theft, and supply chain attacks. Exploitation-focused with concrete PoC scenarios.
Review an RWX config generated from a GitHub Actions migration. Compares the source workflow against the generated config to catch semantic gaps, missing steps, and optimization opportunities.
Evaluate AI contribution in projects using the AI Assessment Scale (AIAS) 5-level framework. Measure AI involvement from no AI to full AI exploration across development stages.
Create and audit GitHub Actions workflows with SHA pinning, permissions, and caching checks. Use when adding CI/CD, reviewing workflow files, or fixing action pinning.
Explain maps, variants, and curriculum ordering used by a training command or recipe. Use when asked to audit a recipe configuration.
Use when the user wants to find problems, audit workflow quality, or get a comprehensive health check on their AI workflow.