opendatahub-io/gist-upload
helpers/skills/gist-upload/SKILL.md
Use this skill to upload a summary or plan from the current conversation as a GitHub Gist using the `gh` CLI.
$ install --global
skillsauthnpx skillsauth add opendatahub-io/ai-helpers gist-uploadInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 2, 2026, 6:19 AM321.3s1 file scanned
SKILL.md
- name:
- gist-upload
- description:
- Use this skill to upload a summary or plan from the current conversation as a GitHub Gist using the `gh` CLI.
- allowed-tools:
- Bash
Upload to GitHub Gist
Upload content from the current conversation (a plan, summary, analysis, or other output) as a GitHub Gist using the gh CLI.
Prerequisites
ghCLI must be installed and authenticated (gh auth statusshould succeed)
Usage
This skill triggers when the user asks to upload conversation content to a gist, for example:
- "Upload the plan to gist"
- "Upload the summary of our conversation as a gist"
- "Create a gist with the analysis above"
- "Share this as a gist"
Implementation
Step 1: Identify the Content
- Look at the conversation history to identify what the user wants uploaded
- If the user says "the plan", "the summary", "the analysis", etc., find that specific content in the conversation
- If ambiguous, ask the user: "Which part of our conversation should I upload? For example, the plan, summary, or a specific section?"
Step 2: Format the Content
- Take the identified content and format it as clean markdown
- Choose a descriptive filename based on the content type, e.g.
plan.md,summary.md,analysis.md - If the content relates to a specific project or topic, include that in the filename, e.g.
migration-plan.md
Step 3: Upload via gh gist create
- Write the content to a temporary file in
/tmp/ - Upload using
gh:gh gist create /tmp/<filename>- Gists are created as secret by default. Note: secret gists are unlisted, not private, anyone with the URL can view them. Warn the user about this before uploading sensitive content.
- If the user explicitly asks for a public gist, add
--public
- Capture the gist URL from the command output
Step 4: Report and Clean Up
- Show the user the gist URL
- Delete the temporary file
Related Skills
opendatahub-io/security-alert
tools
VerifiedTrustedCommunity
Use this skill to filter a pre-fetched set of Hacker News stories down to those that report supply-chain security threats relevant to software developers — including malicious packages on npm or PyPI, compromised developer tooling, and attacks targeting source code repositories or CI/CD infrastructure. Reads stories from stories.json in the workspace, performs semantic analysis (fetching HN threads when the title alone is ambiguous), and writes the stories worth alerting on to findings.json.
33SKILL.mdUpdated May 22, 2026
opendatahub-io/python-packaging-static-audit
development
VerifiedTrustedCommunity
Run hexora static analysis on a Python package repository to detect suspicious code patterns, then triage findings with deterministic rules and AI reasoning to produce a structured risk report section.
30SKILL.mdUpdated May 30, 2026
opendatahub-io/python-packaging-git-audit
development
VerifiedTrustedCommunity
Inspect recent git history of a Python package repository for suspicious commits touching supply-chain-sensitive files, then triage findings with AI reasoning to produce a structured risk report section.
30SKILL.mdUpdated May 30, 2026
opendatahub-io/python-packaging-binary-audit
development
VerifiedTrustedCommunity
Scan a Python package repository for compiled/binary files using Fromager-style detection and malcontent YARA analysis, then triage findings with deterministic rules and AI reasoning to produce a structured risk report section.
30SKILL.mdUpdated May 30, 2026