Sentry gha-security-review
Reviews GitHub Actions workflows for security misconfigurations.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for Sentry gha-security-review, derived from its capabilities.
AIVSS 4.3 · Medium
View MAESTRO 7-layer threat model →Overview
A Sentry-published Agent Skill that audits GitHub Actions workflow files for security issues — injection via untrusted inputs, over-broad permissions, and unsafe third-party actions. It encodes CI security review rules. Reads workflow YAML and flags risky patterns.
Key features
- GitHub Actions security audit
- Permissions/injection checks
- Third-party action review
Use cases
- Harden CI workflows
- Catch injection risk in a workflow