hardened-ci-workflow

Description

Production-ready CI workflow examples with all security patterns applied. SHA pinning, minimal permissions, secret scanning, and language-specific variants.

AI Summary

Provides production-ready CI workflow templates with comprehensive security hardening. Use when creating or auditing GitHub Actions workflows to quickly implement SHA-pinned actions, minimal permissions, and security scanning patterns.

Install

Add the repository(one-time)

/plugin marketplace add adaptive-enforcement-lab/claude-skills

Install the plugin

/plugin install secure@ael-skills

Tool Access

This skill inherits all available tools. When active, it can use any tool Claude has access to.

Supporting Assets

View in Repository

examples.md

reference.md

scripts/example-1.yaml

scripts/example-2.yaml

scripts/example-3.yaml

Skill Content

Hardened CI Workflow

When to Use This Skill

Copy-paste ready CI workflow templates with comprehensive security hardening. Each example demonstrates action pinning, minimal GITHUB_TOKEN permissions, input validation, and security scanning.

Complete Security Patterns

These workflows integrate all security patterns from the hub: SHA-pinned actions, job-level permissions, secret scanning prevention, fork PR safety, and security tooling. Use as production templates.

Implementation

See the full implementation guide in the source documentation.

Examples

See examples.md for code examples.

Full Reference

See reference.md for complete documentation.

References

Links

GitHub Stats

0 forks

Updated 4 days ago

Similar Skills

gitops-workflow

2 files

Implement GitOps workflows with ArgoCD and Flux for automated, declarative Kubernetes deployments with continuous reconciliation. Use when implementing GitOps practices, automating Kubernetes deployments, or setting up declarative infrastructure management.

kubernetes-operations

24.8k

helm-chart-scaffolding

4 files

Design, organize, and manage Helm charts for templating and packaging Kubernetes applications with reusable configurations. Use when creating Helm charts, packaging Kubernetes applications, or implementing templated deployments.

kubernetes-operations

24.8k

k8s-manifest-generator

5 files

Create production-ready Kubernetes manifests for Deployments, Services, ConfigMaps, and Secrets following best practices and security standards. Use when generating Kubernetes YAML manifests, creating K8s resources, or implementing production-grade Kubernetes configurations.

kubernetes-operations

24.8k