v0.1.0
v0.1.0
Initial public release of agentic-workflow-guard.
Highlights
- TypeScript CLI for scanning GitHub Actions workflow files.
- GitHub Action wrapper with bundled runtime in dist/action.
- Markdown, JSON, and SARIF report output.
- AI action catalog seed for Codex, Claude Code, Gemini CLI, and GitHub Models inference.
- Rules R001-R109 for prompt boundaries, untrusted GitHub context, privileged permissions, pwn-request checkout, prompt-to-script flow, sensitive sinks, floating AI action refs, missing permissions, and secrets exposed to agent steps.
- Synthetic safe and vulnerable fixtures with Vitest coverage.
- Threat model, rule catalog, comparison docs, and responsible disclosure guidance.
Package
Published to npm as @jin0/agentic-workflow-guard.