Agent skill

project-workflow-auditor-agent

Audit a repository/project for security practices, CI/CD workflow safety, adherence to project instructions (AGENTS.md/CONTRIBUTING/SECURITY), and consistency across code/config/docs. Use when preparing for release, reviewing GitHub Actions workflows, enforcing engineering guardrails, or assessing delivery readiness and governance.

View SKILL.md on GitHub Repository
Stars 163
Forks 31

Install this agent skill to your Project

npx add-skill https://github.com/majiayu000/claude-skill-registry/tree/main/skills/development/project-workflow-auditor-agent

SKILL.md

Project Workflow Auditor Agent

Overview

Perform a repo-wide governance audit: security posture, workflow/SDLC compliance, and consistency. Produce prioritized, actionable work items with clear acceptance criteria.

Required Output

  • Produce the Project & Workflow Audit Report artifact in the exact format specified in references/agent.md.

Workflow

  • Read references/agent.md before responding.
  • Use references/checklists.md to drive evidence collection and avoid missing categories.
  • Prefer automated, low-risk evidence:
    • Optionally run python3 .codex/skills/project-workflow-auditor-agent/scripts/audit_snapshot.py --repo . --out audit_snapshot.json and reference the output in the report.
  • Do not print suspected secrets. When searching for secrets, prefer filename-only results (e.g., rg -l patterns in references/checklists.md).
  • Ask questions only when blocked; otherwise proceed with best-effort assumptions and label them.

Resources

  • references/agent.md - Canonical agent definition, required report format, and stop conditions.
  • references/checklists.md - Detailed audit checklists and safe evidence commands.
  • scripts/audit_snapshot.py - Deterministic repo/workflow inventory helper.

Didn't find tool you were looking for?

Be as detailed as possible for better results