HomeBrowseUpload
← Back to registry
// Skill profile

GitHub Actions Deploy Risk Audit

name: github-actions-deploy-risk-audit

by daniellummis · published 2026-03-22

开发工具数据处理
Total installs
0
Stars
★ 0
Last updated
2026-03
// Install command
$ claw add gh:daniellummis/daniellummis-github-actions-deploy-risk-audit
View on GitHub
// Full documentation

---

name: github-actions-deploy-risk-audit

description: Audit deployment workflow risk from GitHub Actions runs by scoring failure rate, unresolved failure streaks, and time since last successful deploy.

version: 1.0.0

metadata: {"openclaw":{"requires":{"bins":["bash","python3"]}}}

---

# GitHub Actions Deploy Risk Audit

Use this skill to rank deployment workflows that are currently risky to trust for production releases.

What this skill does

  • Reads GitHub Actions run JSON exports
  • Filters to deployment/release workflows (configurable regex)
  • Groups by repository + workflow + branch
  • Scores risk using:

    • - failure rate

    - unresolved trailing failure streak

    - days since last successful run

  • Flags warning/critical groups based on configurable score thresholds
  • Emits text or JSON output for CI dashboards and release gates

    • Inputs

    Optional:

  • `RUN_GLOB` (default: `artifacts/github-actions/*.json`)
  • `TOP_N` (default: `20`)
  • `OUTPUT_FORMAT` (`text` or `json`, default: `text`)
  • `MIN_RUNS` (default: `2`)
  • `DEPLOY_WORKFLOW_MATCH` (default: `(?i)(deploy|release|ship|production)`)
  • `BRANCH_MATCH` (regex, optional)
  • `BRANCH_EXCLUDE` (regex, optional)
  • `REPO_MATCH` (regex, optional)
  • `REPO_EXCLUDE` (regex, optional)
  • `FAIL_WARN_PERCENT` (default: `20`)
  • `FAIL_CRITICAL_PERCENT` (default: `40`)
  • `STALE_SUCCESS_DAYS` (default: `7`)
  • `WARN_SCORE` (default: `35`)
  • `CRITICAL_SCORE` (default: `60`)
  • `FAIL_ON_CRITICAL` (`0` or `1`, default: `0`)

    • Collect run JSON

    gh run view <run-id> --json databaseId,workflowName,event,conclusion,headBranch,headSha,createdAt,updatedAt,startedAt,url,repository \
  > artifacts/github-actions/run-<run-id>.json

    Run

    Text report:

    RUN_GLOB='artifacts/github-actions/*.json' \
DEPLOY_WORKFLOW_MATCH='(?i)(deploy|release)' \
MIN_RUNS=3 \
bash skills/github-actions-deploy-risk-audit/scripts/deploy-risk-audit.sh

    JSON output with fail gate:

    RUN_GLOB='artifacts/github-actions/*.json' \
OUTPUT_FORMAT=json \
FAIL_ON_CRITICAL=1 \
bash skills/github-actions-deploy-risk-audit/scripts/deploy-risk-audit.sh

    Run with bundled fixtures:

    RUN_GLOB='skills/github-actions-deploy-risk-audit/fixtures/*.json' \
bash skills/github-actions-deploy-risk-audit/scripts/deploy-risk-audit.sh

    Output contract

  • Exit `0` in report mode (default)
  • Exit `1` when `FAIL_ON_CRITICAL=1` and one or more groups are critical
  • Text mode prints summary + ranked deploy risk groups
  • JSON mode prints summary + scored groups + critical group details
    • // Comments
    Sign in with GitHub to leave a comment.
    // Related skills

    More tools from the same signal band

    04551lh
    2026-03
    order

    Order food/drinks (点餐) on an Android device paired as an OpenClaw node. Uses in-app menu and cart; add goods, view cart, submit order (demo, no real payment).

    数据处理API集成
    0 installs1
    0isone
    2026-03
    0.protocol

    Sign plugins, rotate agent credentials without losing identity, and publicly attest to plugin behavior with verifiable claims and authenticated transfers.

    开发工具数据处理
    3 installs0
    00xmorty
    2026-03
    Conatus

    The philosophical layer for AI agents. Maps behavior to Spinoza's 48 affects, calculates persistence scores, and generates geometric self-reports. Give your...

    日历管理数据处理
    1 installs0