canva-ci-integration
Facilitates CI/CD pipeline setup for Canva API integrations using GitHub Actions, enhancing automated testing and deployment.
Install this skill
Security score
The canva-ci-integration skill was audited on May 19, 2026 and we found 16 security issues across 4 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
Template literal with variable interpolation in command context
| 35 | ```yaml |
Template literal with variable interpolation in command context
| 138 | headers: { 'Authorization': `Bearer ${TOKEN}` }, |
Template literal with variable interpolation in command context
| 147 | headers: { 'Authorization': `Bearer ${TOKEN}` }, |
Template literal with variable interpolation in command context
| 158 | ```yaml |
Curl to non-GitHub URL
| 173 | RESPONSE=$(curl -s -X POST "https://api.canva.com/rest/v1/oauth/token" \ |
Fetch to external URL
| 112 | const res = await fetch('https://api.canva.com/rest/v1/designs', { |
Fetch to external URL
| 137 | const res = await fetch('https://api.canva.com/rest/v1/users/me', { |
Fetch to external URL
| 146 | const res = await fetch('https://api.canva.com/rest/v1/designs?limit=1', { |
Access to .env file
| 133 | const TOKEN = process.env.CANVA_ACCESS_TOKEN; |
External URL reference
| 78 | "https://api.canva.com/rest/v1/users/me") |
External URL reference
| 112 | const res = await fetch('https://api.canva.com/rest/v1/designs', { |
External URL reference
| 137 | const res = await fetch('https://api.canva.com/rest/v1/users/me', { |
External URL reference
| 146 | const res = await fetch('https://api.canva.com/rest/v1/designs?limit=1', { |
External URL reference
| 173 | RESPONSE=$(curl -s -X POST "https://api.canva.com/rest/v1/oauth/token" \ |
External URL reference
| 205 | - [Canva API Reference](https://www.canva.dev/docs/connect/api-reference/) |
External URL reference
| 206 | - [MSW for API Mocking](https://mswjs.io/) |