← Back to Skills Marketplace
daniellummis

GitHub Actions Stuck Run Audit

by Daniel Lummis · GitHub ↗ · v1.0.0
cross-platform ⚠ suspicious
240
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install github-actions-stuck-run-audit
Description
Detect stale queued/in-progress GitHub Actions runs before they quietly block delivery.
README (SKILL.md)

GitHub Actions Stuck Run Audit

Use this skill to catch workflows that are stuck in queued/in-progress states for too long.

What this skill does

  • Reads GitHub Actions run JSON exports
  • Detects stale runs in non-terminal statuses (queued, in_progress, etc.)
  • Aggregates stuck risk by repo/workflow (or repo/branch)
  • Scores severity with stuck-age, stuck-run volume, and stuck-rate thresholds
  • Emits ok / warn / critical and can fail CI gates

Inputs

Optional:

  • RUN_GLOB (default: artifacts/github-actions/*.json)
  • TOP_N (default: 20)
  • OUTPUT_FORMAT (text or json, default: text)
  • GROUP_BY (repo, repo-workflow, repo-workflow-branch; default: repo-workflow)
  • NOW_ISO (optional ISO timestamp override for deterministic replay)
  • STUCK_STATUSES (comma list, default: queued,in_progress,pending,waiting,requested)
  • WARN_STUCK_MINUTES (default: 45)
  • CRITICAL_STUCK_MINUTES (default: 120)
  • WARN_STUCK_RUNS (default: 2)
  • CRITICAL_STUCK_RUNS (default: 4)
  • WARN_STUCK_RATE (0..1, default: 0.2)
  • CRITICAL_STUCK_RATE (0..1, default: 0.45)
  • MIN_RUNS (default: 1)
  • WORKFLOW_MATCH / WORKFLOW_EXCLUDE (regex, optional)
  • BRANCH_MATCH / BRANCH_EXCLUDE (regex, optional)
  • EVENT_MATCH / EVENT_EXCLUDE (regex, optional)
  • REPO_MATCH / REPO_EXCLUDE (regex, optional)
  • STATUS_MATCH / STATUS_EXCLUDE (regex, optional)
  • FAIL_ON_CRITICAL (0 or 1, default: 0)

Collect run JSON

gh run view \x3Crun-id> \
  --json databaseId,workflowName,event,headBranch,status,conclusion,createdAt,runStartedAt,updatedAt,url,repository \
  > artifacts/github-actions/run-\x3Crun-id>.json

Run

Text report:

RUN_GLOB='artifacts/github-actions/*.json' \
bash skills/github-actions-stuck-run-audit/scripts/stuck-run-audit.sh

JSON output + fail gate:

RUN_GLOB='artifacts/github-actions/*.json' \
OUTPUT_FORMAT=json \
FAIL_ON_CRITICAL=1 \
bash skills/github-actions-stuck-run-audit/scripts/stuck-run-audit.sh

Run against bundled fixtures:

NOW_ISO='2026-03-08T00:00:00Z' \
RUN_GLOB='skills/github-actions-stuck-run-audit/fixtures/*.json' \
bash skills/github-actions-stuck-run-audit/scripts/stuck-run-audit.sh

Output contract

  • Exit 0 in report mode (default)
  • Exit 1 when FAIL_ON_CRITICAL=1 and one or more groups are critical
  • Text mode prints summary + ranked stuck-risk groups
  • JSON mode prints summary + ranked groups + critical groups
Usage Guidance
This skill appears to do what it says (analyze local GitHub Actions run JSONs), but check these before installing: 1) SKILL.md shows use of the 'gh' CLI to produce JSON files, yet 'gh' is not listed in required binaries — ensure you have 'gh' available or export the run JSONs by another trusted method. 2) The script reads any files matched by RUN_GLOB — keep RUN_GLOB constrained to trusted artifact directories so the tool can't be pointed at secrets or unrelated system files. 3) Review the included script if you plan to run it in CI: it embeds a Python program and will exit non‑zero in some error cases (and can fail CI gates when FAIL_ON_CRITICAL=1). 4) Run the tool on known fixtures first (SKILL.md shows a fixtures invocation) or in a sandboxed environment to confirm behavior. If you need higher assurance, ask the author to update metadata to declare 'gh' as a required binary and to document any expected file formats and safe default RUN_GLOB locations.
Capability Analysis
Type: OpenClaw Skill Name: github-actions-stuck-run-audit Version: 1.0.0 The skill is a legitimate utility designed to audit GitHub Actions run data for stuck or stale workflows. It processes local JSON files (typically exported via the GitHub CLI) to calculate metrics like stuck-age and failure rates, using standard Python libraries for globbing, JSON parsing, and regex filtering. No evidence of data exfiltration, malicious execution, or prompt injection was found in 'SKILL.md' or 'scripts/stuck-run-audit.sh'.
Capability Assessment
Purpose & Capability
The name/description match the included script: it reads exported GitHub Actions run JSON files and computes stuck/run risk. However, SKILL.md demonstrates collecting data using the 'gh' CLI (gh run view) but the declared required binaries list only 'bash' and 'python3' — 'gh' is not declared. That mismatch is likely an omission in metadata (documentation vs declared requirements) but is an incoherence the user should be aware of.
Instruction Scope
The runtime instructions and included script operate on local JSON files matched by RUN_GLOB and do not perform network calls or attempt to read unrelated system state. The script's behavior (filters, grouping, thresholds, exit codes) is explicit. One scope note: RUN_GLOB is user-configurable, so the skill will read any files the runner points it at; the default is a dedicated artifacts path.
Install Mechanism
This is an instruction-only skill with a bundled script; there is no install step, no external downloads, and nothing is written to disk beyond running the provided script. Risk from installation is low.
Credentials
The skill declares no required environment variables or credentials (proportionate for a local JSON analyzer). But it relies on environment variables for configuration (RUN_GLOB, filters, thresholds). Because RUN_GLOB can be set to arbitrary paths, a user/agent could instruct the skill to read sensitive files — this is not malicious in the script itself but is a capability the user should intentionally control. Also, SKILL.md suggests using 'gh' to create the JSON exports, yet 'gh' is not included in required env/bins.
Persistence & Privilege
The skill does not request persistent installation or elevated platform privileges; always:false and normal autonomous invocation. It does not attempt to modify other skills or system-wide agent settings.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install github-actions-stuck-run-audit
  3. After installation, invoke the skill by name or use /github-actions-stuck-run-audit
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of github-actions-stuck-run-audit. - Detects and audits stale (`queued`, `in_progress`, etc.) GitHub Actions runs using run JSON exports. - Aggregates and ranks stuck run risk by repository/workflow or branch. - Configurable thresholds for stuck age, stuck run volume, and stuck run rate. - Outputs in either text or JSON; can optionally fail CI gates on critical findings. - Flexible input filtering by workflow, branch, event, repository, and status.
Metadata
Slug github-actions-stuck-run-audit
Version 1.0.0
License
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is GitHub Actions Stuck Run Audit?

Detect stale queued/in-progress GitHub Actions runs before they quietly block delivery. It is an AI Agent Skill for Claude Code / OpenClaw, with 240 downloads so far.

How do I install GitHub Actions Stuck Run Audit?

Run "/install github-actions-stuck-run-audit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is GitHub Actions Stuck Run Audit free?

Yes, GitHub Actions Stuck Run Audit is completely free (open-source). You can download, install and use it at no cost.

Which platforms does GitHub Actions Stuck Run Audit support?

GitHub Actions Stuck Run Audit is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created GitHub Actions Stuck Run Audit?

It is built and maintained by Daniel Lummis (@daniellummis); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments