github-actions-cicd
Facilitates the setup of CI/CD pipelines using GitHub Actions for seamless testing, building, and deployment to Kubernetes.
Install this skill
Security score
The github-actions-cicd skill was audited on Feb 25, 2026 and we found 14 security issues across 4 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
Template literal with variable interpolation in command context
| 33 | ```yaml |
Template literal with variable interpolation in command context
| 226 | ```yaml |
Template literal with variable interpolation in command context
| 290 | ```yaml |
Curl to non-GitHub URL
| 283 | curl -f http://$FRONTEND_URL/health || exit 1 |
Webhook reference - potential data exfiltration
| 366 | SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK }} |
Webhook reference - potential data exfiltration
| 436 | | `SLACK_WEBHOOK` | Slack notifications | CD Production | |
Access to .env file
| 269 | --set backend.env.DATABASE_URL=${{ secrets.STAGING_DATABASE_URL }} \ |
Access to .env file
| 270 | --set backend.env.GEMINI_API_KEY=${{ secrets.GEMINI_API_KEY }} \ |
Access to .env file
| 271 | --set backend.env.BETTER_AUTH_SECRET=${{ secrets.BETTER_AUTH_SECRET }} \ |
Access to .env file
| 345 | --set backend.env.DATABASE_URL=${{ secrets.PROD_DATABASE_URL }} \ |
Access to .env file
| 346 | --set backend.env.GEMINI_API_KEY=${{ secrets.GEMINI_API_KEY }} \ |
Access to .env file
| 347 | --set backend.env.BETTER_AUTH_SECRET=${{ secrets.BETTER_AUTH_SECRET }} \ |
External URL reference
| 136 | NEXT_PUBLIC_API_URL: http://localhost:8000 |
External URL reference
| 283 | curl -f http://$FRONTEND_URL/health || exit 1 |