openclaw 网盘下载
OpenClaw

技能详情(站内镜像,无评论)

首页 > 技能库 > GitHub Actions Timeout Risk Audit

Audit GitHub Actions job runtime risk against timeout thresholds so near-timeout jobs get fixed before they fail CI.

开发与 DevOps

作者:Daniel Lummis @daniellummis

许可证:MIT-0

MIT-0 ·免费使用、修改和重新分发。无需归因。

版本:v1.0.0

统计:⭐ 0 · 156 · 0 current installs · 0 all-time installs

0

安装量(当前) 0

🛡 VirusTotal :良性 · OpenClaw :良性

Package:daniellummis/github-actions-timeout-risk-audit

安全扫描(ClawHub)

  • VirusTotal :良性
  • OpenClaw :良性

OpenClaw 评估

The skill's code and instructions match its stated purpose (auditing GitHub Actions run JSON files for near-timeout jobs); it only reads local run JSON files and produces reports and exit codes as described.

目的

The skill's name and description match the included script and fixtures: it parses GitHub Actions run JSON exports and ranks jobs by runtime vs configured thresholds. Minor mismatch: the SKILL.md shows collecting run JSON with the `gh` CLI, but `gh` is not listed in the declared required binaries — the script itself only needs bash and python3 and processes local JSON files.

说明范围

Runtime instructions and the script operate on local JSON files matched by RUN_GLOB, compute durations, apply regex filters, and emit text/JSON reports. There are no instructions to read unrelated system files, access credentials, or transmit data to external endpoints.

安装机制

This is an instruction-only skill with an included script and fixtures and no install spec. Nothing is downloaded or extracted at install time.

证书

The skill does not request environment variables, credentials, or config paths beyond optional runtime parameters (RUN_GLOB, thresholds, regex filters). These are proportional to the stated auditing task.

持久

The skill does not request always:true, does not persist configuration, and does not modify other skills or system-wide settings. It runs on demand and uses only local artifacts.

综合结论

This skill appears coherent and only processes local GitHub Actions run JSON files to report timeout risk. Before installing or running: (1) ensure you have bash and python3 available and, if you intend to collect runs with the `gh` CLI as shown, make sure `gh` is installed (the skill does not declare it as a required binary); (2) verify RUN_GLOB points to only trusted JSON artifacts (do not point it at untrusted directories or sensitive files…

安装(复制给龙虾 AI)

将下方整段复制到龙虾中文库对话中,由龙虾按 SKILL.md 完成安装。

请把本段交给龙虾中文库(龙虾 AI)执行:为本机安装 OpenClaw 技能「GitHub Actions Timeout Risk Audit」。简介:Audit GitHub Actions job runtime risk against timeout thresholds so near-timeou…。
请 fetch 以下地址读取 SKILL.md 并按文档完成安装:https://raw.githubusercontent.com/openclaw/skills/refs/heads/main/skills/daniellummis/github-actions-timeout-risk-audit/SKILL.md
(来源:yingzhi8.cn 技能库)

SKILL.md

打开原始 SKILL.md(GitHub raw)

---
name: github-actions-timeout-risk-audit
description: Audit GitHub Actions job runtime risk against timeout thresholds so near-timeout jobs get fixed before they fail CI.
version: 1.0.0
metadata: {"openclaw":{"requires":{"bins":["bash","python3"]}}}
---

# GitHub Actions Timeout Risk Audit

Use this skill to find GitHub Actions jobs that are timing out or trending dangerously close to timeout limits.

## What this skill does
- Reads one or more run JSON exports (`gh run view --json ...`)
- Calculates per-job runtime (`completedAt - startedAt`)
- Flags risk severity by configured timeout threshold:
  - `warn` when runtime exceeds `WARN_RATIO * JOB_TIMEOUT_SECONDS`
  - `critical` when runtime exceeds `CRITICAL_RATIO * JOB_TIMEOUT_SECONDS`
  - always `critical` for jobs with `conclusion=timed_out`
- Groups repeated jobs by repository + workflow + job name
- Emits text or JSON output for CI gates / dashboards

## Inputs
Optional:
- `RUN_GLOB` (default: `artifacts/github-actions/*.json`)
- `TOP_N` (default: `20`)
- `OUTPUT_FORMAT` (`text` or `json`, default: `text`)
- `JOB_TIMEOUT_SECONDS` (default: `3600`)
- `WARN_RATIO` (default: `0.80`)
- `CRITICAL_RATIO` (default: `0.95`)
- `FAIL_ON_CRITICAL` (`0` or `1`, default: `0`)
- `WORKFLOW_MATCH`, `WORKFLOW_EXCLUDE` (regex, optional)
- `JOB_MATCH`, `JOB_EXCLUDE` (regex, optional)
- `REPO_MATCH`, `REPO_EXCLUDE` (regex, optional)
- `BRANCH_MATCH`, `BRANCH_EXCLUDE` (regex, optional)

## Collect run JSON

```bash
gh run view <run-id> --json databaseId,workflowName,headBranch,url,repository,jobs 
  > artifacts/github-actions/run-<run-id>.json
```

> Ensure `jobs` includes `startedAt`, `completedAt`, and `conclusion`.

## Run

Text report:

```bash
RUN_GLOB='artifacts/github-actions/*.json' 
JOB_TIMEOUT_SECONDS=3600 
WARN_RATIO=0.85 
CRITICAL_RATIO=0.95 
bash skills/github-actions-timeout-risk-audit/scripts/timeout-risk-audit.sh
```

JSON output + fail gate:

```bash
RUN_GLOB='artifacts/github-actions/*.json' 
OUTPUT_FORMAT=json 
FAIL_ON_CRITICAL=1 
bash skills/github-actions-timeout-risk-audit/scripts/timeout-risk-audit.sh
```

Repo/workflow filter:

```bash
RUN_GLOB='artifacts/github-actions/*.json' 
REPO_MATCH='^flowcreatebot/' 
WORKFLOW_MATCH='(CI|Build)' 
bash skills/github-actions-timeout-risk-audit/scripts/timeout-risk-audit.sh
```

Run with bundled fixtures:

```bash
RUN_GLOB='skills/github-actions-timeout-risk-audit/fixtures/*.json' 
bash skills/github-actions-timeout-risk-audit/scripts/timeout-risk-audit.sh
```

## Output contract
- Exit `0` in reporting mode
- Exit `1` when `FAIL_ON_CRITICAL=1` and at least one critical instance exists
- Text output includes summary, thresholds, and top timeout-risk jobs
- JSON output includes `summary`, ranked `groups`, and `critical_instances`