cicd-expert

skills-sh:martinholovsky_claude-skills-generator__cicd-expert

13/100

First Seen

Feb 18, 2026

Last Scanned

Feb 18, 2026

Findings

Score

13/100

CRITICAL 1

HIGH 2

MEDIUM 4

LOW 1

Findings (8)

CRITICAL EXTDL_007 external-download L67

curl https://raw.githubusercontent.com/rhysd/actionlint/main/scripts/download + ./a

HIGH EXTDL_001 external-download L67

curl https://raw.githubusercontent.com + configuration

HIGH MCP_007 mcp-attack L326

load Identity instead of static credential + Upload only build output

MEDIUM SUPPLY_013 supply-chain L395

uses: sonarsource/sonarqube-scan-action@master

MEDIUM SUPPLY_013 supply-chain L486

uses: aquasecurity/trivy-action@master

MEDIUM SUPPLY_013 supply-chain L625

uses: sonarsource/sonarqube-scan-action@master

MEDIUM SUPPLY_013 supply-chain L948

uses: some-org/action@main

LOW THIRDPARTY_002 third-party-content L67

raw.githubusercontent.com/rhysd/actionlint/main/