← 返回 Skills 市场

GitHub Actions Secret Exposure Audit

Name: GitHub Actions Secret Exposure Audit
Author: daniellummis

作者 Daniel Lummis · GitHub ↗ · v1.0.0

cross-platform ✓ 安全检测通过

285

总下载

当前安装

版本数

在 OpenClaw 中安装

/install github-actions-secret-exposure-audit

功能描述

Audit GitHub Actions workflow files for secret exposure risks like pull_request_target secret usage, secret echo commands, and unpinned action secret passing.

使用说明 (SKILL.md)

GitHub Actions Secret Exposure Audit

Use this skill to catch risky secret handling patterns in workflow YAML before they leak credentials or allow unsafe token use.

What this skill does

Scans workflow YAML files (.github/workflows/*.yml by default)
Flags pull_request_target workflows that also reference ${{ secrets.* }}
Flags shell output commands that print secret expressions (echo, printf, tee, ::set-output)
Flags secret values passed into unpinned third-party actions (@main, @master, @v1, etc.)
Flags likely hardcoded credential values in workflow config
Supports text/json output and CI fail gate

Inputs

Optional:

WORKFLOW_GLOB (default: .github/workflows/*.y*ml)
TOP_N (default: 20)
OUTPUT_FORMAT (text or json, default: text)
WARN_SCORE (default: 4)
CRITICAL_SCORE (default: 8)
WORKFLOW_FILE_MATCH / WORKFLOW_FILE_EXCLUDE (regex, optional)
ALLOW_REF_REGEX (regex, optional) — allow listed action refs (for example ^v1\.2\.3$)
FAIL_ON_CRITICAL (0 or 1, default: 0)

Run

Text report:

WORKFLOW_GLOB='.github/workflows/*.yml' \
WARN_SCORE=4 \
CRITICAL_SCORE=8 \
bash skills/github-actions-secret-exposure-audit/scripts/secret-exposure-audit.sh

JSON output + fail gate:

WORKFLOW_GLOB='.github/workflows/*.y*ml' \
OUTPUT_FORMAT=json \
FAIL_ON_CRITICAL=1 \
bash skills/github-actions-secret-exposure-audit/scripts/secret-exposure-audit.sh

Run against bundled fixtures:

WORKFLOW_GLOB='skills/github-actions-secret-exposure-audit/fixtures/*.y*ml' \
bash skills/github-actions-secret-exposure-audit/scripts/secret-exposure-audit.sh

Output contract

Exit 0 in reporting mode (default)
Exit 1 when FAIL_ON_CRITICAL=1 and one or more workflows are critical
Text mode prints summary + top risky workflows
JSON mode prints summary + ranked workflows + critical workflows

安全使用建议

This skill appears to do exactly what it says: statically scan GitHub Actions workflow YAMLs for risky secret usage patterns. It does not contact external services or request credentials. Before running, review WORKFLOW_GLOB to ensure you only scan intended paths (avoid globs that expose unrelated sensitive files). You can test using the bundled fixtures first. If you will allow autonomous agent invocation, remember the skill can read any files the agent's process user can read — limit its scope by controlling the glob and agent permissions if that is a concern.

功能分析

Type: OpenClaw Skill Name: github-actions-secret-exposure-audit Version: 1.0.0 The skill is a legitimate security tool designed to audit GitHub Actions workflow files for secret exposure risks. The implementation in scripts/secret-exposure-audit.sh uses a Python script to perform regex-based scanning for patterns like hardcoded credentials, unpinned actions, and unsafe secret handling in pull_request_target workflows, with no evidence of data exfiltration or malicious intent.

能力评估

✓ Purpose & Capability

Name/description match the shipped files and runtime needs: a shell wrapper plus a Python script that scans workflow YAMLs. Required binaries (bash, python3) are appropriate for the implementation and purpose.

ℹ Instruction Scope

SKILL.md and the script stick to scanning files matched by WORKFLOW_GLOB and reporting findings. The script reads files from disk (user-specified glob) and does not call external endpoints or attempt to read unrelated environment variables. Note: because WORKFLOW_GLOB is user-controlled, running the skill with a broad glob could cause it to read arbitrary files on disk — this is expected behavior for a file-scanning tool but is something to be cautious about.

✓ Install Mechanism

No install spec; instruction-only with bundled script. Nothing is downloaded or written to disk by an installer.

✓ Credentials

The skill requires no secret environment variables or credentials. The environment variables it uses (WORKFLOW_GLOB, OUTPUT_FORMAT, thresholds, regex filters) are appropriate configuration knobs for a scanner.

✓ Persistence & Privilege

always is false and the skill does not modify other skills or system settings. It runs on demand and only reads files matched by the glob; it does not persist or attempt to store credentials.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install github-actions-secret-exposure-audit
安装完成后，直接呼叫该 Skill 的名称或使用 /github-actions-secret-exposure-audit 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial release with auditing features for GitHub Actions workflows: - Scans workflow YAML files for secret exposure risks. - Flags usage of secrets in pull_request_target, secret echo commands, and secrets passed to unpinned actions. - Detects hardcoded credentials in workflow config. - Supports both text and JSON output formats. - Configurable scoring, file matching, and CI fail gate for critical findings.

元数据

Slug github-actions-secret-exposure-audit

版本 1.0.0

许可证 —

累计安装 1

当前安装数 1

历史版本数 1

常见问题