Skip to main content

Agentic Actions Auditor

by Trail of Bits OrgOfficialSkill · in Security Research

Medium Risk

Audits GitHub Actions workflows for security vulnerabilities in AI agent integrations — detects prompt injection via env var patterns and dangerous sandbox configs.

Pending Review

This skill has been submitted and is awaiting security assessment.

Required Permissions

File System (Read)

Tags

Git AI
trailofbits/skills/tree/main/plugins/agentic-actions-auditor/skills/agentic-actions-auditor

Repository data will be available after the next enrichment run.

Trail of Bits (Org) Official MIT Pending Review

Similar Skills

Semgrep Scanner

Skill Security Research
Medium

Runs Semgrep static analysis with parallel subagents — full ruleset and high-confidence security scan modes with Semgrep Pro cross-file taint analysis.

Semgrep Subagent
MIT 3 permissions

CodeQL

Skill Security Research
Medium

Scans codebases for security vulnerabilities using CodeQL interprocedural data flow and taint tracking — supports full and important-only scan modes.

MIT 2 permissions

Atheris Python Fuzzer

Skill Security Research
Medium

Coverage-guided Python fuzzer based on libFuzzer — fuzzing pure Python code and Python C extensions.

Fuzzing Python
MIT 1 permission