/audit-ci

Description

Audit GitHub Actions workflows for Uptick CI best practices compliance

Install

Add the repository(one-time)

/plugin marketplace add uptick/claude-marketplace

Install the plugin

/plugin install uptick-uptick-gha-patterns-plugins-uptick-gha-patterns@uptick/claude-marketplace

Argument

[path to workflows]

Allowed Tools

ReadGlobGrepBashEditWriteAskUserQuestion

Prompt Preview

# Audit CI Workflows

Audit the repository's GitHub Actions workflows for compliance with Uptick CI best practices.

## Workflow Path

If an argument is provided, use it as the path to audit. Otherwise, default to `.github/workflows/`.

## Audit Checks

Perform the following checks on all `.yaml` and `.yml` files in the workflows directory:

### 1. Unpinned Actions

Search for `uses:` statements that are NOT pinned to a SHA. Look for patterns like:
- `uses: actions/checkout@v4` (unpinned - missing SHA)
- `uses: some-action@main` (unpinned - using branch)

**Compliant patterns:**
- `uses: ac...

Links

GitHub Stats

0 forks

Updated 5 days ago