github-workflow-automation

skills-sh:sickn33_antigravity-awesome-skills__github-workflow-automation

View source

85/100

First Seen

Feb 18, 2026

Last Scanned

Feb 20, 2026

Findings

Score

85/100

HIGH 1

Findings (1)

HIGH

Conditional CI execution SUPPLY_005

supply-chain L520

Detects conditional execution based on CI environment variables combined with dangerous commands

${{ secrets.GITHUB_TOKEN + exec(

FIX

Pin all dependencies to exact versions with integrity hashes. Use lock files (package-lock.json, poetry.lock) and enable checksum verification in your package manager.

FP?

Likely FP if the match is documentation about dependency management best practices rather than actual unpinned dependency declarations.