ado-sync

Facilitates Azure DevOps synchronization with SpecWeave increments, providing guidance and setup assistance for seamless project tracking.

Install this skill

76/100

Security score

The ado-sync skill was audited on Feb 9, 2026 and we found 8 security issues across 4 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 258

Template literal with variable interpolation in command context

SourceSKILL.md

258

```json

medium line 247

Webhook reference - potential data exfiltration

SourceSKILL.md

247	2. SpecWeave detects change (polling or webhook)

medium line 251

Webhook reference - potential data exfiltration

SourceSKILL.md

251	Note: Bidirectional sync requires webhook or polling setup

medium line 342

Access to .env file

SourceSKILL.md

342	- ✅ Use `.env` file (gitignored)

low line 56

External URL reference

SourceSKILL.md

56	1. Go to https://dev.azure.com/{organization}/_usersSettings/tokens

low line 155

External URL reference

SourceSKILL.md

155	URL: https://dev.azure.com/myorg/MyProject/_workitems/edit/12345

low line 309

External URL reference

SourceSKILL.md

309	1. Verify organization name: https://dev.azure.com/{organization}

low line 396

External URL reference

SourceSKILL.md

396	# URL: https://dev.azure.com/myorg/MyProject/_workitems/edit/12345

Scanned on Feb 9, 2026

View Security Dashboard

Installation guide →

GitHub Stars 106

Rate this skill

Categorydevelopment

UpdatedMay 21, 2026

openclaw api backend devops-sre backend-developer project-manager azure development project management

majiayu000/claude-skill-registry