Skip to content

Add GitHub Actions workflow for agent skill scanning#3

Merged
timbenniks-contentstack merged 2 commits into
mainfrom
chore/snyk-security-skill-scanner
Apr 28, 2026
Merged

Add GitHub Actions workflow for agent skill scanning#3
timbenniks-contentstack merged 2 commits into
mainfrom
chore/snyk-security-skill-scanner

Conversation

@timbenniks-contentstack

Copy link
Copy Markdown
Contributor

No description provided.

@timbenniks-contentstack timbenniks-contentstack requested a review from a team as a code owner April 28, 2026 08:23
@github-actions

Copy link
Copy Markdown

🔒 Security Scan Results

ℹ️ Note: Only vulnerabilities with available fixes (upgrades or patches) are counted toward thresholds.

Check Type Count (with fixes) Without fixes Threshold Result
🔴 Critical Severity 0 0 10 ✅ Passed
🟠 High Severity 0 0 25 ✅ Passed
🟡 Medium Severity 0 0 500 ✅ Passed
🔵 Low Severity 0 0 1000 ✅ Passed

⏱️ SLA Breach Summary

✅ No SLA breaches detected. All vulnerabilities are within acceptable time thresholds.

Severity Breaches (with fixes) Breaches (no fixes) SLA Threshold (with/no fixes) Status
🔴 Critical 0 0 15 / 30 days ✅ Passed
🟠 High 0 0 30 / 120 days ✅ Passed
🟡 Medium 0 0 90 / 365 days ✅ Passed
🔵 Low 0 0 180 / 365 days ✅ Passed

✅ BUILD PASSED - All security checks passed

…t management

- Introduced `dx-migrate-js-to-ts-sdk` for migrating JavaScript SDK code to TypeScript, including detailed guidance and examples.
- Added `launch-sync-environment-variables-from-env-example` to sync environment variables from a local `.env.example` file with Contentstack Launch.
- Created `launch-trigger-and-monitor-launch-deployments` to automate deployment triggering and monitoring, including failure diagnostics.
- Updated `manifest.json` to reflect new skills and their organization.
- Added `Brand Kit Assistant` skill to advise on Brand Kit concepts, setup, and governance, with a focus on safety and brand compliance.
- Included references for Brand Kit and Knowledge Vault API operations to support the new Brand Kit Assistant skill.
@github-actions

Copy link
Copy Markdown

🔒 Security Scan Results

ℹ️ Note: Only vulnerabilities with available fixes (upgrades or patches) are counted toward thresholds.

Check Type Count (with fixes) Without fixes Threshold Result
🔴 Critical Severity 0 0 10 ✅ Passed
🟠 High Severity 0 0 25 ✅ Passed
🟡 Medium Severity 0 0 500 ✅ Passed
🔵 Low Severity 0 0 1000 ✅ Passed

⏱️ SLA Breach Summary

✅ No SLA breaches detected. All vulnerabilities are within acceptable time thresholds.

Severity Breaches (with fixes) Breaches (no fixes) SLA Threshold (with/no fixes) Status
🔴 Critical 0 0 15 / 30 days ✅ Passed
🟠 High 0 0 30 / 120 days ✅ Passed
🟡 Medium 0 0 90 / 365 days ✅ Passed
🔵 Low 0 0 180 / 365 days ✅ Passed

✅ BUILD PASSED - All security checks passed

@timbenniks-contentstack timbenniks-contentstack merged commit 9065782 into main Apr 28, 2026
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants