← Back to Skills Marketplace
daniellummis

GitHub Actions SHA Rerun Debt Audit

by Daniel Lummis · GitHub ↗ · v1.0.0
cross-platform ✓ Security Clean
259
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install github-actions-sha-rerun-debt-audit
Description
Audit rerun debt by commit SHA to find commits that repeatedly burn CI minutes across workflows.
README (SKILL.md)

GitHub Actions SHA Rerun Debt Audit

Use this skill to detect commits that trigger repeated GitHub Actions reruns and failed outcomes across multiple workflows.

What this skill does

  • Reads GitHub Actions run JSON exports
  • Correlates attempt history by run id and latest outcome per run
  • Aggregates rerun debt by repository + commit SHA
  • Scores risk using rerun rate, failed-run count, workflow spread, and wasted rerun minutes
  • Emits severity (ok, warn, critical) for CI gates

Inputs

Optional:

  • RUN_GLOB (default: artifacts/github-actions/*.json)
  • TOP_N (default: 20)
  • OUTPUT_FORMAT (text or json, default: text)
  • MIN_RUNS (minimum runs per SHA, default: 3)
  • WARN_RERUN_RATE (0..1, default: 0.25)
  • CRITICAL_RERUN_RATE (0..1, default: 0.45)
  • WARN_FAILED_RUNS (default: 2)
  • CRITICAL_FAILED_RUNS (default: 4)
  • WARN_WASTED_MINUTES (default: 25)
  • CRITICAL_WASTED_MINUTES (default: 75)
  • WARN_WORKFLOWS (distinct workflows affected, default: 2)
  • CRITICAL_WORKFLOWS (default: 4)
  • WORKFLOW_MATCH / WORKFLOW_EXCLUDE (regex, optional)
  • BRANCH_MATCH / BRANCH_EXCLUDE (regex, optional)
  • EVENT_MATCH / EVENT_EXCLUDE (regex, optional)
  • REPO_MATCH / REPO_EXCLUDE (regex, optional)
  • HEAD_SHA_MATCH / HEAD_SHA_EXCLUDE (regex, optional)
  • FAILURE_CONCLUSIONS (comma-separated, default: failure,cancelled,timed_out,startup_failure,action_required)
  • FAIL_ON_CRITICAL (0 or 1, default: 0)

Collect run JSON

gh run view \x3Crun-id> --attempt \x3Cattempt> \
  --json databaseId,runAttempt,workflowName,event,headBranch,headSha,conclusion,createdAt,updatedAt,runStartedAt,url,repository \
  > artifacts/github-actions/run-\x3Crun-id>-attempt-\x3Cattempt>.json

Run

Text report:

RUN_GLOB='artifacts/github-actions/*.json' \
bash skills/github-actions-sha-rerun-debt-audit/scripts/sha-rerun-debt-audit.sh

JSON output + fail gate:

RUN_GLOB='artifacts/github-actions/*.json' \
OUTPUT_FORMAT=json \
FAIL_ON_CRITICAL=1 \
bash skills/github-actions-sha-rerun-debt-audit/scripts/sha-rerun-debt-audit.sh

Run against bundled fixtures:

RUN_GLOB='skills/github-actions-sha-rerun-debt-audit/fixtures/*.json' \
bash skills/github-actions-sha-rerun-debt-audit/scripts/sha-rerun-debt-audit.sh

Output contract

  • Exit 0 in report mode (default)
  • Exit 1 when FAIL_ON_CRITICAL=1 and one or more SHA groups are critical
  • Text mode prints summary + ranked SHA risk groups
  • JSON mode prints summary + ranked groups + critical groups
Usage Guidance
This skill appears to do exactly what it claims: analyze local GitHub Actions run JSON files and report rerun debt by commit SHA. Before installing/running it: (1) Inspect the full script (you were shown a truncated portion) to confirm no unexpected behavior; (2) note that SKILL.md shows using `gh run view` to collect run JSON — running that requires the GitHub CLI and authenticated access (gh stores credentials or uses your environment), so be mindful of what account/permissions are used when collecting artifacts; (3) the skill itself does not exfiltrate data or contact external endpoints in the shown code, but it will process whatever JSON files you point it at — avoid feeding it sensitive files from unknown sources; (4) run it first against the provided fixtures (RUN_GLOB set to fixtures) to validate behavior in a safe context. If you want higher assurance, request the author to explicitly declare the gh dependency and include full source for review.
Capability Analysis
Type: OpenClaw Skill Name: github-actions-sha-rerun-debt-audit Version: 1.0.0 The skill is a utility designed to audit GitHub Actions rerun debt by analyzing local JSON exports of workflow runs. It uses a Python script (embedded in scripts/sha-rerun-debt-audit.sh) to aggregate CI metrics such as rerun rates, failure counts, and wasted minutes per commit SHA. The logic is transparent, lacks network exfiltration or suspicious execution patterns, and the SKILL.md instructions are strictly aligned with the tool's stated purpose.
Capability Assessment
Purpose & Capability
Name/description match the implementation: the script reads GitHub Actions run JSON files, correlates attempts by run id, aggregates metrics by commit SHA, and emits a ranked report. Required binaries (bash, python3) are reasonable. One inconsistency: SKILL.md shows using the `gh run view` command to collect JSON, but the skill's declared required binaries do not include `gh` (GitHub CLI) nor does it declare any GitHub credentials.
Instruction Scope
Runtime instructions are limited to collecting JSON run exports and running the bundled script against them; the script reads files matched by RUN_GLOB and does local aggregation and reporting. There are no network calls or external endpoints in the shown code. The SKILL.md suggests using `gh run view` (which will contact GitHub and requires authenticated gh), but the script itself only processes local files.
Install Mechanism
No install spec — instruction-only skill with a bundled script. Nothing is downloaded or installed by the skill itself.
Credentials
The skill requests no credentials or environment variables beyond operational parameters (RUN_GLOB, TOP_N, etc.). However, collecting run JSON via `gh run view` (shown in SKILL.md) requires the GitHub CLI and authenticated access to GitHub; those prerequisites are not declared. No other unexpected secrets or config paths are requested by the script.
Persistence & Privilege
The skill is not always-enabled, does not request elevated persistence, and does not modify other skills or system-wide config. It only reads files matched by RUN_GLOB and writes output/exit codes.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install github-actions-sha-rerun-debt-audit
  3. After installation, invoke the skill by name or use /github-actions-sha-rerun-debt-audit
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of the GitHub Actions SHA Rerun Debt Audit skill. - Audits GitHub Actions run exports to detect commits that repeatedly trigger reruns and CI minutes usage. - Aggregates and ranks rerun "debt" by repository and commit SHA. - Scores and emits severity (`ok`, `warn`, `critical`) based on rerun rate, failure count, wasted minutes, and workflow spread. - Highly configurable with environment variables and filters for SHAs, branches, workflows, events, and repositories. - Supports text and JSON reports, with optional CI gate failure on critical findings.
Metadata
Slug github-actions-sha-rerun-debt-audit
Version 1.0.0
License
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is GitHub Actions SHA Rerun Debt Audit?

Audit rerun debt by commit SHA to find commits that repeatedly burn CI minutes across workflows. It is an AI Agent Skill for Claude Code / OpenClaw, with 259 downloads so far.

How do I install GitHub Actions SHA Rerun Debt Audit?

Run "/install github-actions-sha-rerun-debt-audit" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is GitHub Actions SHA Rerun Debt Audit free?

Yes, GitHub Actions SHA Rerun Debt Audit is completely free (open-source). You can download, install and use it at no cost.

Which platforms does GitHub Actions SHA Rerun Debt Audit support?

GitHub Actions SHA Rerun Debt Audit is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created GitHub Actions SHA Rerun Debt Audit?

It is built and maintained by Daniel Lummis (@daniellummis); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 Comments