tacogips/secure-github-action
.agents/skills/secure-github-action/SKILL.md
Use this skill when creating or modifying GitHub Actions workflow files (.github/workflows/*.yml). Ensures all actions are pinned by commit SHA, permissions are minimized, script injection is prevented, and other supply chain security best practices are applied.
testing
Updated Apr 16, 2026
$ install --global
skillsauthnpx skillsauth add tacogips/codex-agent secure-github-actionInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 16, 2026, 12:55 PM12.6s2 files scanned
SKILL.md
- name:
- secure-github-action
- description:
- Use this skill when creating or modifying GitHub Actions workflow files (.github/workflows/*.yml). Ensures all actions are pinned by commit SHA, permissions are minimized, script injection is prevented, and other supply chain security best practices are applied.
- allowed-tools:
- Bash, Read, Write, Edit, Grep, Glob
- argument-hint:
- [workflow description or file path]
- user-invocable:
- true
Secure GitHub Action Workflow
When creating or modifying a GitHub Actions workflow, follow ALL steps below. Read references/security-rules.md for the full rule set.
Mandatory Workflow
Step 1: Pin ALL action references to full commit SHAs
For every uses: line, resolve the tag/branch to its full 40-character commit SHA.
How to resolve SHAs:
# For a tagged release (e.g. actions/[email protected])
gh api repos/{owner}/{repo}/git/ref/tags/{tag} --jq '.object.sha'
# If the above returns a tag object (not commit), dereference it:
gh api repos/{owner}/{repo}/git/tags/{tag_sha} --jq '.object.sha'
# For a branch reference (e.g. @main)
gh api repos/{owner}/{repo}/git/ref/heads/{branch} --jq '.object.sha'
Always check the latest stable release first:
gh api repos/{owner}/{repo}/releases/latest --jq '.tag_name'
Output format - always add a human-readable version comment:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
Step 2: Set minimal permissions
# Workflow-level: default to read-only or nothing
permissions:
contents: read
# Job-level: override only where needed
jobs:
deploy:
permissions:
contents: write
deployments: write
- Use
permissions: {}for jobs needing no GitHub API access - Never use
permissions: write-all - Prefer job-level over workflow-level permissions
Step 3: Harden checkout
- uses: actions/checkout@{SHA} # vX.Y.Z
with:
persist-credentials: false # unless the job needs to push
Set persist-credentials: false for all jobs that do NOT need to git push.
Step 4: Prevent script injection
NEVER interpolate ${{ github.event.* }} directly in run: blocks. Use env: intermediaries:
# BAD - shell injection via PR title
- run: echo "${{ github.event.pull_request.title }}"
# GOOD - safe via env variable
- env:
PR_TITLE: ${{ github.event.pull_request.title }}
run: echo "$PR_TITLE"
Dangerous contexts: github.event.issue.title, .body, github.event.pull_request.title, .body, .head.ref, github.event.comment.body, github.event.commits.*.message, github.head_ref.
Step 5: Avoid pull_request_target pitfalls
- Prefer
pull_requestoverpull_request_target - If
pull_request_targetis used, NEVER checkout${{ github.event.pull_request.head.sha }} - For privileged operations on PR code, use the two-workflow pattern (unprivileged
pull_request+workflow_run)
Step 6: Apply additional hardening
- Timeouts: always set
timeout-minuteson jobs - Concurrency: add concurrency groups for deployments (
cancel-in-progress: false) and CI (cancel-in-progress: true) - Secrets: never use
secrets: inheritin reusable workflows; pass secrets explicitly - Artifacts: never upload artifacts containing secrets or tokens
- OIDC: prefer OIDC over long-lived secrets for cloud provider auth
Step 7: Validate before finalizing
After generating the workflow, verify:
- Every
uses:line has a full 40-char SHA (no@v4,@main,@latest) permissions:block exists at workflow or job level- No
${{ github.event.* }}appears directly in anyrun:block persist-credentials: falseis set where push is not neededtimeout-minutesis set on all jobs
Arguments
If $ARGUMENTS is a file path, read it and apply hardening. If it's a description, create a new workflow following all rules above.
Related Skills
tacogips/ts-coding-standards
development
VerifiedTrustedCommunity
Use when writing, reviewing, or refactoring TypeScript code. Provides type safety patterns, error handling, project layout, and async programming guidelines.
SKILL.mdUpdated Apr 16, 2026
tacogips/test-refactor
development
VerifiedTrustedCommunity
Use when refactoring tests for better maintainability. Provides guidelines for removing duplicates, DRYing fixtures/assertions, restructuring test organization, renaming, and splitting oversized files.
SKILL.mdUpdated Apr 16, 2026
tacogips/test-plan
testing
VerifiedTrustedCommunity
Use when creating test plans from implementation and design documents. Provides test plan structure, test case tracking, and coverage guidelines.
SKILL.mdUpdated Apr 16, 2026
tacogips/supply-chain-secure-publish
development
VerifiedTrustedCommunity
Use when creating, publishing, or maintaining npm packages with Bun. Provides Shai-Hulud supply chain attack countermeasures including npm token management, 2FA enforcement, provenance signing, trusted publishing via GitHub Actions, and pre-publish security checklists.
SKILL.mdUpdated Apr 16, 2026