AgentSkillsCN

hardened-ci-workflow

GitHub:adaptive-enforcement-lab/claude-skills/plugins/secure/skills/hardened-ci-workflow

SKILL.md
--- frontmatter
name: hardened-ci-workflow
description: >-
  Production-ready CI workflow examples with all security patterns applied. SHA pinning, minimal permissions, secret scanning, and language-specific variants.

Hardened CI Workflow

When to Use This Skill

Copy-paste ready CI workflow templates with comprehensive security hardening. Each example demonstrates action pinning, minimal GITHUB_TOKEN permissions, input validation, and security scanning.

Complete Security Patterns

These workflows integrate all security patterns from the hub: SHA-pinned actions, job-level permissions, secret scanning prevention, fork PR safety, and security tooling. Use as production templates.

Implementation

See the full implementation guide in the source documentation.

Examples

See examples.md for code examples.

Full Reference

See reference.md for complete documentation.

References