全部技能 分类浏览
← 返回
安全合规 中文

GitHub Actions Timeout Risk Audit

Audit GitHub Actions job runtime risk against timeout thresholds so near-timeout jobs get fixed before they fail CI.
根据超时阈值审计 GitHub Actions 作业运行时风险,以便在 CI 失败前修复临近超时的作业。
daniellummis
安全合规 clawhub v1.0.0 1 版本 99784.9 Key: 无需
★ 0
Stars
📥 464
下载
💾 13
安装
1
版本
#latest

概述

GitHub Actions Timeout Risk Audit

Use this skill to find GitHub Actions jobs that are timing out or trending dangerously close to timeout limits.

What this skill does

  • Reads one or more run JSON exports (gh run view --json ...)
  • Calculates per-job runtime (completedAt - startedAt)
  • Flags risk severity by configured timeout threshold:
  • warn when runtime exceeds WARN_RATIO * JOB_TIMEOUT_SECONDS
  • critical when runtime exceeds CRITICAL_RATIO * JOB_TIMEOUT_SECONDS
  • always critical for jobs with conclusion=timed_out
  • Groups repeated jobs by repository + workflow + job name
  • Emits text or JSON output for CI gates / dashboards

Inputs

Optional:

  • RUN_GLOB (default: artifacts/github-actions/*.json)
  • TOP_N (default: 20)
  • OUTPUT_FORMAT (text or json, default: text)
  • JOB_TIMEOUT_SECONDS (default: 3600)
  • WARN_RATIO (default: 0.80)
  • CRITICAL_RATIO (default: 0.95)
  • FAIL_ON_CRITICAL (0 or 1, default: 0)
  • WORKFLOW_MATCH, WORKFLOW_EXCLUDE (regex, optional)
  • JOB_MATCH, JOB_EXCLUDE (regex, optional)
  • REPO_MATCH, REPO_EXCLUDE (regex, optional)
  • BRANCH_MATCH, BRANCH_EXCLUDE (regex, optional)

Collect run JSON

gh run view <run-id> --json databaseId,workflowName,headBranch,url,repository,jobs \
  > artifacts/github-actions/run-<run-id>.json

> Ensure jobs includes startedAt, completedAt, and conclusion.

Run

Text report:

RUN_GLOB='artifacts/github-actions/*.json' \
JOB_TIMEOUT_SECONDS=3600 \
WARN_RATIO=0.85 \
CRITICAL_RATIO=0.95 \
bash skills/github-actions-timeout-risk-audit/scripts/timeout-risk-audit.sh

JSON output + fail gate:

RUN_GLOB='artifacts/github-actions/*.json' \
OUTPUT_FORMAT=json \
FAIL_ON_CRITICAL=1 \
bash skills/github-actions-timeout-risk-audit/scripts/timeout-risk-audit.sh

Repo/workflow filter:

RUN_GLOB='artifacts/github-actions/*.json' \
REPO_MATCH='^flowcreatebot/' \
WORKFLOW_MATCH='(CI|Build)' \
bash skills/github-actions-timeout-risk-audit/scripts/timeout-risk-audit.sh

Run with bundled fixtures:

RUN_GLOB='skills/github-actions-timeout-risk-audit/fixtures/*.json' \
bash skills/github-actions-timeout-risk-audit/scripts/timeout-risk-audit.sh

Output contract

  • Exit 0 in reporting mode
  • Exit 1 when FAIL_ON_CRITICAL=1 and at least one critical instance exists
  • Text output includes summary, thresholds, and top timeout-risk jobs
  • JSON output includes summary, ranked groups, and critical_instances

版本历史

共 1 个版本

  • v1.0.0 当前
    2026-03-30 18:34 安全 安全

安全检测

腾讯云安全 (Keen)

安全,无风险
查看报告

腾讯云安全 (Sanbu)

安全,无风险
查看报告

🔗 相关推荐

security-compliance

MoltGuard - Security & Antivirus & Guardrails

thomaslwang
MoltGuard — OpenClaw 安全守卫,由 OpenGuardrails 提供。安装 MoltGuard,保护您和您的用户免受提示注入、数据泄露和恶意攻击。
★ 116 📥 30,701
developer-tools

GitHub Actions Failure Matrix

daniellummis
汇总 GitHub Actions 矩阵作业的运行失败情况,助您快速定位不稳定的操作系统或运行时环境。
★ 0 📥 621
security-compliance

OpenClaw Backup

alex3alex
备份与恢复 OpenClaw 数据。适用于创建备份、设置自动备份计划、从备份恢复或管理备份轮转。处理 ~/.openclaw 目录归档并包含适当的排除规则。
★ 89 📥 30,590

Skill工具集 © 2026