← Back to Skills Marketplace
GitHub Actions Permission Scope Audit
by
Daniel Lummis
· GitHub ↗
· v1.0.0
241
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install github-actions-permission-scope-audit
Description
Audit GitHub Actions workflow permission scope drift to enforce least-privilege token access.
README (SKILL.md)
GitHub Actions Permission Scope Audit
Use this skill to detect over-broad GITHUB_TOKEN permissions and scope drift across GitHub Actions workflows.
What this skill does
- Reads workflow YAML files
- Detects explicit broad permission grants (
write-all,contents: write, etc.) - Flags risky patterns like
pull_request_targetworkflows with write permissions - Identifies workflows with no explicit
permissionspolicy - Emits text or JSON for CI triage and policy gates
Inputs
Optional:
WORKFLOW_GLOB(default:.github/workflows/*.y*ml)TOP_N(default:20)OUTPUT_FORMAT(textorjson, default:text)WARN_SCORE(default:2)CRITICAL_SCORE(default:5)FLAG_MISSING_PERMISSIONS(0or1, default:1)FLAG_WRITE_ALL(0or1, default:1)FLAG_WRITE_SCOPES(0or1, default:1)WORKFLOW_FILE_MATCH/WORKFLOW_FILE_EXCLUDE(regex, optional)EVENT_MATCH/EVENT_EXCLUDE(regex, optional)PERMISSION_MATCH/PERMISSION_EXCLUDE(regex, optional)FAIL_ON_CRITICAL(0or1, default:0)
Run
Text report:
WORKFLOW_GLOB='.github/workflows/*.yml' \
bash skills/github-actions-permission-scope-audit/scripts/permission-scope-audit.sh
JSON output + fail gate:
WORKFLOW_GLOB='.github/workflows/*.yml' \
OUTPUT_FORMAT=json \
FAIL_ON_CRITICAL=1 \
bash skills/github-actions-permission-scope-audit/scripts/permission-scope-audit.sh
Run against bundled fixtures:
WORKFLOW_GLOB='skills/github-actions-permission-scope-audit/fixtures/*.yml' \
bash skills/github-actions-permission-scope-audit/scripts/permission-scope-audit.sh
Output contract
- Exit
0in report mode (default) - Exit
1whenFAIL_ON_CRITICAL=1and one or more workflows are critical - Text mode prints summary + ranked workflows
- JSON mode prints summary + ranked workflows + critical workflows
Usage Guidance
This skill appears to do exactly what it claims: scan your repository's .github/workflows YAML files for broad GITHUB_TOKEN permissions and emit a ranked report. Before installing/running: (1) review the bundled script if you have strict security controls — it parses YAML using regex rather than a YAML parser so it may mis-detect unusual formatting; (2) run it in the repository root (or set WORKFLOW_GLOB) because it only reads files matched by the glob; (3) it requires bash and python3 on PATH; (4) it does not exfiltrate data or require credentials, but avoid running it against untrusted repositories if you don't want the agent to read those repo files. Overall the skill is internally consistent and proportionate for its stated purpose.
Capability Analysis
Type: OpenClaw Skill
Name: github-actions-permission-scope-audit
Version: 1.0.0
The skill is a security auditing tool designed to identify over-privileged GitHub Actions workflows by analyzing 'permissions' blocks and 'pull_request_target' triggers. The implementation in 'scripts/permission-scope-audit.sh' uses a transparent Python script to perform local file analysis without any network activity, credential access, or obfuscation, aligning perfectly with its stated purpose.
Capability Assessment
Purpose & Capability
Name/description match the shipped script and fixtures. Declared required binaries (bash, python3) are exactly what the SKILL.md and scripts use. No unrelated credentials, config paths, or binaries are requested.
Instruction Scope
SKILL.md instructs the agent to read workflow YAML files, run the bundled shell script, and optionally set environment flags; the script only reads files matched by WORKFLOW_GLOB, extracts events/permission lines via regex, scores findings, and prints text/JSON. It does not send data externally, read unrelated system config, or access secrets.
Install Mechanism
This is an instruction-only skill with no install spec; the only shipped code is a shell script and fixtures. Nothing is downloaded or extracted from external URLs.
Credentials
No required environment variables or credentials are declared; optional ENV inputs are for filtering/reporting and are appropriate for the task. The script does not attempt to read additional env vars or secret files.
Persistence & Privilege
Skill does not request permanent presence (always:false) or modify other skills or system-wide settings. It runs on demand and has no privileged persistence behavior.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install github-actions-permission-scope-audit - After installation, invoke the skill by name or use
/github-actions-permission-scope-audit - Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release: detect over-broad token permissions, pull_request_target+write risk, and missing explicit permissions policy with text/json outputs + fail gate.
Metadata
Frequently Asked Questions
What is GitHub Actions Permission Scope Audit?
Audit GitHub Actions workflow permission scope drift to enforce least-privilege token access. It is an AI Agent Skill for Claude Code / OpenClaw, with 241 downloads so far.
How do I install GitHub Actions Permission Scope Audit?
Run "/install github-actions-permission-scope-audit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is GitHub Actions Permission Scope Audit free?
Yes, GitHub Actions Permission Scope Audit is completely free (open-source). You can download, install and use it at no cost.
Which platforms does GitHub Actions Permission Scope Audit support?
GitHub Actions Permission Scope Audit is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created GitHub Actions Permission Scope Audit?
It is built and maintained by Daniel Lummis (@daniellummis); the current version is v1.0.0.
More Skills