风险评分

94/100 (Very Low)

OpenClaw: benign
VirusTotal: benign
StaticScan: unknown

GitHub Actions OIDC Hardening Audit

作者: Daniel Lummis
Slug:github-actions-oidc-hardening-audit
版本:1.0.0
更新时间:2026-03-08 08:07:20
风险信息

OpenClaw: benign

查看 OpenClaw 分析摘要 
The skill's files, runtime instructions, and requested binaries align with a local static audit of GitHub Actions workflows; it doesn't request credentials or install external code.

VirusTotal: benign VT 报告

静态扫描: unknown

README

README 未提供

文件列表

无文件信息

下载
下载官方 ZIP
原始 JSON 数据
{
    "latestVersion": {
        "_creationTime": 1772928428694,
        "_id": "k97crjpex1pqeb1p8kytz8bsbx82hpre",
        "changelog": "Initial release — GitHub Actions OIDC Hardening Audit skill:\n\n- Audits GitHub Actions workflows for OIDC authentication misconfigurations and risky patterns.\n- Flags missing `id-token: write` permissions, static cloud credential usage, weak action refs, and improper AWS role configuration.\n- Supports both text and JSON output, top-N reporting, and CI fail-gate.\n- Highly configurable via input environment variables and regex allow-lists.\n- Designed for security teams and DevOps to preemptively catch identity and secret exposure risks.",
        "changelogSource": "auto",
        "createdAt": 1772928428694,
        "parsed": {
            "clawdis": {
                "requires": {
                    "bins": [
                        "bash",
                        "python3"
                    ]
                }
            }
        },
        "version": "1.0.0"
    },
    "owner": {
        "_creationTime": 0,
        "_id": "publishers:missing",
        "displayName": "Daniel Lummis",
        "handle": "daniellummis",
        "image": "https:\/\/avatars.githubusercontent.com\/u\/65238171?v=4",
        "kind": "user",
        "linkedUserId": "kn74qp31gs45fmt9eg7jbc4r6n828jdj"
    },
    "ownerHandle": "daniellummis",
    "skill": {
        "_creationTime": 1772928428694,
        "_id": "kd77kkgkztkr94dzj54zqyx3vn82h162",
        "badges": [],
        "createdAt": 1772928428694,
        "displayName": "GitHub Actions OIDC Hardening Audit",
        "latestVersionId": "k97crjpex1pqeb1p8kytz8bsbx82hpre",
        "ownerUserId": "kn74qp31gs45fmt9eg7jbc4r6n828jdj",
        "slug": "github-actions-oidc-hardening-audit",
        "stats": {
            "comments": 0,
            "downloads": 166,
            "installsAllTime": 0,
            "installsCurrent": 0,
            "stars": 0,
            "versions": 1
        },
        "summary": "Audit GitHub Actions cloud auth workflows for OIDC hardening gaps like missing id-token write permissions, static cloud secrets, and floating auth action refs.",
        "tags": {
            "latest": "k97crjpex1pqeb1p8kytz8bsbx82hpre"
        },
        "updatedAt": 1772928440135
    }
}