{"query":"Devsecops","filters":{"category":null,"platform":null,"track":null,"safety":null,"include_blocked":false,"min_stars":0},"total":10,"skills":[{"rank":1,"match_score":99,"raw_match_score":1019.4,"slug":"devsecops-devsecops","name":"Devsecops","description":"This repository contains information about DevSecOps and how to get involved in this community effort.","tagline":"This repository contains information about DevSecOps and how to get involved in this community effort.","category":"devops","tags":["devops","automation","devsecops","scale-security","github"],"author":{"name":"devsecops","verified":false,"url":"https://github.com/devsecops"},"attribution":{"status":"community_indexed","statusLabel":"Community indexed","shortLabel":"COMMUNITY INDEXED","sourceLabel":"GitHub star discovery","sourceDetail":"devsecops/devsecops","creatorName":"devsecops","creatorUrl":"https://github.com/devsecops","sourceUrl":"https://github.com/devsecops/devsecops","indexedBy":"OpenAgentSkill community index","claimUrl":"https://www.openagentskill.com/skills/devsecops-devsecops#claim-this-skill","claimCta":"Claim this skill","trustNote":"This listing was indexed from public sources and is not marked official until a maintainer claim is approved.","publicNote":"Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals."},"stats":{"stars":149,"forks":56,"downloads":0,"rating":0,"review_count":0,"quality_score":33.93},"quality":{"score":43,"tier":"review","label":"Needs review","summary":"Inspect the repository carefully before adding it to an agent workflow.","signals":[{"label":"GitHub stars","value":"149","tone":"neutral"},{"label":"Freshness","value":"7y ago","tone":"warning"},{"label":"Install ready","value":"Yes","tone":"positive"},{"label":"License","value":"Unknown","tone":"neutral"}],"warnings":["Repository looks stale"]},"trust":{"version":"trust-score-v4","score":69,"tier":"review","label":"Manual review","summary":"Potentially useful, but at least one trust signal needs human inspection.","recommendedAction":"Inspect the repository, license, and recent activity before connecting it to agent workflows.","dimensions":[{"id":"github_adoption","label":"GitHub adoption","score":62,"weight":0.13,"status":"info","detail":"149 GitHub stars"},{"id":"repo_activity","label":"Stars/forks activity","score":62,"weight":0.08,"status":"info","detail":"149 stars, 56 forks; issue activity unavailable in current metadata"},{"id":"maintenance","label":"Recent maintenance","score":22,"weight":0.14,"status":"fail","detail":"7y since push"},{"id":"license","label":"License clarity","score":42,"weight":0.09,"status":"warn","detail":"Unknown"},{"id":"documentation","label":"README/SKILL.md completeness","score":90,"weight":0.14,"status":"pass","detail":"Metadata includes enough usage and workflow context"},{"id":"dependency_risk","label":"Dependency/runtime risk","score":90,"weight":0.12,"status":"pass","detail":"no major dependency risk hints in public metadata"},{"id":"installability","label":"Install availability","score":92,"weight":0.1,"status":"pass","detail":"npx skills add devsecops/devsecops"},{"id":"install_safety","label":"Install command safety","score":92,"weight":0.1,"status":"pass","detail":"standard package or runtime install path"},{"id":"permission_surface","label":"Permission surface","score":86,"weight":0.07,"status":"pass","detail":"filesystem or document access"},{"id":"repository","label":"Repository evidence","score":86,"weight":0.04,"status":"pass","detail":"https://github.com/devsecops/devsecops"},{"id":"review_status","label":"Review status","score":88,"weight":0.05,"status":"pass","detail":"AI review data available"},{"id":"agent_outcomes","label":"Agent Proven outcomes","score":54,"weight":0.13,"status":"info","detail":"No agent outcome data yet"}],"checks":[{"status":"info","label":"GitHub adoption","detail":"149 GitHub stars"},{"status":"info","label":"Stars/forks activity","detail":"149 stars, 56 forks; issue activity unavailable in current metadata"},{"status":"fail","label":"Recent maintenance","detail":"7y since push"},{"status":"warn","label":"License clarity","detail":"Unknown"},{"status":"pass","label":"README/SKILL.md completeness","detail":"Metadata includes enough usage and workflow context"},{"status":"pass","label":"Dependency/runtime risk","detail":"no major dependency risk hints in public metadata"},{"status":"pass","label":"Install availability","detail":"npx skills add devsecops/devsecops"},{"status":"pass","label":"Install command safety","detail":"standard package or runtime install path"},{"status":"pass","label":"Permission surface","detail":"filesystem or document access"},{"status":"pass","label":"Repository evidence","detail":"https://github.com/devsecops/devsecops"},{"status":"pass","label":"Review status","detail":"AI review data available"},{"status":"info","label":"Agent Proven outcomes","detail":"No agent outcome data yet"},{"status":"warn","label":"Ownership","detail":"No approved owner claim yet"},{"status":"info","label":"OpenAgentSkill usage","detail":"No local usage activity yet"},{"status":"info","label":"Agent outcomes","detail":"No agent outcome data yet"}],"strengths":["AI review approved","Install path is available","Repository evidence is available","Install command has no obvious high-risk pattern"],"warnings":["License is unclear","Repository looks stale","Quality score needs review","Recent maintenance: 7y since push","License clarity: Unknown"],"evidence":{"stars":"149 GitHub stars","repoActivity":"149 stars, 56 forks","lastPushed":"7y since push","license":"Unknown","repository":"https://github.com/devsecops/devsecops","install":"npx skills add devsecops/devsecops","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"installReadiness":{"ready":true,"command":"npx skills add devsecops/devsecops","policy":"human_review_before_install","label":"Human review before install","notes":["Install path is available","Repository evidence is available","License is unclear","No Agent Proven outcome evidence yet","7y since push"]},"agentCompatibility":["DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI"],"riskSummary":{"level":"medium","label":"Review before production","notes":["License is unclear","Repository looks stale","Quality score needs review","Recent maintenance: 7y since push","License clarity: Unknown"]},"outcomeEvidence":{"total":0,"successes":0,"failures":0,"notRelevant":0,"successRate":null,"installAttempts":0,"riskBlocked":0,"setupRequired":0,"installSuccessRate":null,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"recentSuccessRate":null,"recentFailureRate":null,"uniqueAgents":0,"agentProvenScore":0,"agentProvenLabel":"Needs first agent run","lastOutcomeAt":null,"label":"No agent outcome data yet"},"autoInstall":{"allowed":false,"sandboxRequired":true,"policy":"human_review_before_install","reason":"Human review or sandbox validation is required before automatic installation."},"bestFor":["devops","automation","devsecops","scale-security","github"],"doNotUseFor":["Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface","Automatic installation in a production workspace","Commercial reuse before clarifying license terms"],"knownRisks":["License is unclear","Repository looks stale","Quality score needs review","Recent maintenance: 7y since push","License clarity: Unknown"]},"safety":{"score":44,"level":"avoid_auto_install","label":"Avoid automatic install","safety_tier":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","summary":"Sparse or mixed signals. Useful for discovery, but not for autonomous installation.","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","auto_install_policy":"review","reasons":["License is unclear","44/100 agent safety score"]},"auto_install_allowed":false,"human_review_required":true,"blocked":false,"audit_risk":"needs_review","permission_hints":[{"id":"network","label":"Network access","reason":"Skill likely fetches remote pages, APIs, repositories, or external services.","severity":"medium"},{"id":"filesystem","label":"Filesystem access","reason":"Skill may read or write project files, documents, generated artifacts, or local workspace state.","severity":"medium"}],"policy_warnings":["License is unclear"],"constraints_applied":{"max_risk":"medium","needs_install_command":true,"min_stars":0}},"safety_gate":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","reasons":["License is unclear","44/100 agent safety score"]},"supply_profile":{"track":{"slug":"coding","label":"Coding and developer agents","shortLabel":"Coding","description":"Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills."},"scenario":{"label":"Coding agents","description":"I need a coding agent that can understand a repository, edit code, and review pull requests.","useCases":[{"slug":"coding-agents","title":"Coding agents"},{"slug":"github-automation","title":"GitHub automation"},{"slug":"rag-knowledge","title":"RAG and knowledge"}]},"applicableAgents":["Claude Code","CLI","Codex","Cursor","DevOps"],"install":{"ready":true,"command":"npx skills add devsecops/devsecops","primaryTarget":"CLI","targetCount":4},"githubQuality":{"stars":149,"starsLabel":"149","forks":56,"license":"Unknown","qualityScore":43,"trustScore":69,"auditScore":60},"maintenance":{"status":"stale","label":"7y since push","daysSincePush":2710,"lastPushedAt":"2019-01-31T10:52:28+00:00"},"risk":{"level":"needs_review","label":"Needs review","requiresReview":true,"notes":["License is unclear","Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 7y since push"]},"coverageTags":["Coding","Coding agents","devops","automation","devsecops","scale-security","github"]},"audit":{"audit_score":60,"risk_level":"needs_review","risk_label":"Needs review","warnings":["License is unclear","Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 7y since push"]},"decision":{"readiness_score":33,"readiness_label":"Needs manual review","headline":"Needs validation for Coding agents","role":"Needs validation","primary_fit":"Coding agents","best_for":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects"],"risks":["Repository looks stale","No OpenAgentSkill engagement data yet"],"next_steps":["Install it in a sandbox agent and run one Coding agents task end to end.","Compare output quality, latency, and failure behavior against at least one alternative.","Promote it into production only after reviewing repository permissions, license, and maintenance signals."]},"agent_readable_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"devsecops-devsecops","name":"Devsecops","description":"This repository contains information about DevSecOps and how to get involved in this community effort.","category":"devops","url":"https://www.openagentskill.com/skills/devsecops-devsecops","repository":"https://github.com/devsecops/devsecops","github_repo":"devsecops/devsecops"},"suited_tasks":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects","Inspect source files","Explain architecture","Patch bugs and verify changes","Inspect repository metadata","Compare code changes"],"suited_agents":["DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add devsecops/devsecops","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add devsecops/devsecops"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Devsecops\" agent skill from https://github.com/devsecops/devsecops. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: This repository contains information about DevSecOps and how to get involved in this community effort."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Devsecops\" as a Claude Code skill from https://github.com/devsecops/devsecops. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: This repository contains information about DevSecOps and how to get involved in this community effort."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Devsecops\" from https://github.com/devsecops/devsecops into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: This repository contains information about DevSecOps and how to get involved in this community effort."}],"handoff_url":"https://www.openagentskill.com/api/skills/devsecops-devsecops/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/devsecops-devsecops"},"trust":{"score":69,"label":"Manual review","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"149 GitHub stars","repoActivity":"149 stars, 56 forks","lastPushed":"7y since push","license":"Unknown","repository":"https://github.com/devsecops/devsecops","install":"npx skills add devsecops/devsecops","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","devsecops","scale-security","github"],"known_risks":["License is unclear","Repository looks stale","Quality score needs review","Recent maintenance: 7y since push","License clarity: Unknown"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":60,"risk_level":"needs_review","risk_label":"Needs review","warnings":["License is unclear","Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 7y since push","License clarity: Unknown"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":43,"label":"Needs review"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"7y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","License is unclear","Repository appears stale","Quality score needs review","Recent maintenance: 7y since push"],"agent_contract":{"task_input":"Use Devsecops in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 69/100 Manual review","Audit: 60/100 Needs review","Safety: 44/100 Avoid automatic install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"devsecops-devsecops (Devsecops)","install_command":"npx skills add devsecops/devsecops","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"devsecops-devsecops","task":"Use Devsecops in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/devsecops-devsecops","api":"https://www.openagentskill.com/api/agent/skills/devsecops-devsecops","audit":"https://www.openagentskill.com/skills/devsecops-devsecops/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=devsecops-devsecops&task=Use%20Devsecops%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Devsecops%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Devsecops%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/devsecops-devsecops/install","manifest":"https://www.openagentskill.com/api/registry/manifest/devsecops-devsecops"}},"machine_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"devsecops-devsecops","name":"Devsecops","description":"This repository contains information about DevSecOps and how to get involved in this community effort.","category":"devops","url":"https://www.openagentskill.com/skills/devsecops-devsecops","repository":"https://github.com/devsecops/devsecops","github_repo":"devsecops/devsecops"},"suited_tasks":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects","Inspect source files","Explain architecture","Patch bugs and verify changes","Inspect repository metadata","Compare code changes"],"suited_agents":["DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add devsecops/devsecops","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add devsecops/devsecops"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Devsecops\" agent skill from https://github.com/devsecops/devsecops. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: This repository contains information about DevSecOps and how to get involved in this community effort."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Devsecops\" as a Claude Code skill from https://github.com/devsecops/devsecops. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: This repository contains information about DevSecOps and how to get involved in this community effort."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Devsecops\" from https://github.com/devsecops/devsecops into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: This repository contains information about DevSecOps and how to get involved in this community effort."}],"handoff_url":"https://www.openagentskill.com/api/skills/devsecops-devsecops/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/devsecops-devsecops"},"trust":{"score":69,"label":"Manual review","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"149 GitHub stars","repoActivity":"149 stars, 56 forks","lastPushed":"7y since push","license":"Unknown","repository":"https://github.com/devsecops/devsecops","install":"npx skills add devsecops/devsecops","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","devsecops","scale-security","github"],"known_risks":["License is unclear","Repository looks stale","Quality score needs review","Recent maintenance: 7y since push","License clarity: Unknown"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":60,"risk_level":"needs_review","risk_label":"Needs review","warnings":["License is unclear","Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 7y since push","License clarity: Unknown"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":43,"label":"Needs review"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"7y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","License is unclear","Repository appears stale","Quality score needs review","Recent maintenance: 7y since push"],"agent_contract":{"task_input":"Use Devsecops in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 69/100 Manual review","Audit: 60/100 Needs review","Safety: 44/100 Avoid automatic install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"devsecops-devsecops (Devsecops)","install_command":"npx skills add devsecops/devsecops","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"devsecops-devsecops","task":"Use Devsecops in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/devsecops-devsecops","api":"https://www.openagentskill.com/api/agent/skills/devsecops-devsecops","audit":"https://www.openagentskill.com/skills/devsecops-devsecops/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=devsecops-devsecops&task=Use%20Devsecops%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Devsecops%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Devsecops%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/devsecops-devsecops/install","manifest":"https://www.openagentskill.com/api/registry/manifest/devsecops-devsecops"}},"platforms":["DevOps","Claude Code"],"use_cases":[{"slug":"coding-agents","title":"Coding agents","url":"https://www.openagentskill.com/use-cases/coding-agents"},{"slug":"github-automation","title":"GitHub automation","url":"https://www.openagentskill.com/use-cases/github-automation"},{"slug":"rag-knowledge","title":"RAG and knowledge","url":"https://www.openagentskill.com/use-cases/rag-knowledge"},{"slug":"browser-automation","title":"Browser automation","url":"https://www.openagentskill.com/use-cases/browser-automation"}],"install":"npx skills add devsecops/devsecops","install_targets":[{"id":"openagentskill-cli","label":"CLI","title":"OpenAgentSkill CLI","kind":"command","value":"npx skills add devsecops/devsecops","description":"Use the registry command when your workflow supports the OpenAgentSkill installer.","copyLabel":"Copy command"},{"id":"codex","label":"Codex","title":"Codex install prompt","kind":"agent-prompt","value":"Install the \"Devsecops\" agent skill from https://github.com/devsecops/devsecops. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: This repository contains information about DevSecOps and how to get involved in this community effort.","description":"Give Codex a repo-aware install prompt when the skill is not available through a local CLI.","copyLabel":"Copy prompt"},{"id":"claude-code","label":"Claude Code","title":"Claude Code skill prompt","kind":"agent-prompt","value":"Add \"Devsecops\" as a Claude Code skill from https://github.com/devsecops/devsecops. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: This repository contains information about DevSecOps and how to get involved in this community effort.","description":"Use this prompt to ask Claude Code to add the skill and explain the local activation steps.","copyLabel":"Copy prompt"},{"id":"cursor","label":"Cursor","title":"Cursor rule prompt","kind":"agent-prompt","value":"Turn \"Devsecops\" from https://github.com/devsecops/devsecops into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: This repository contains information about DevSecOps and how to get involved in this community effort.","description":"Use this when installing as Cursor project rules or reusable agent instructions.","copyLabel":"Copy prompt"}],"repository":"https://github.com/devsecops/devsecops","github_repo":"devsecops/devsecops","version":"1.0.0","license":"Unknown","updated_at":"2026-06-21T07:13:23.62771+00:00","canonical_key":"devsecops/devsecops","recommendation_reasons":["Matches task terms: devsecops","Install handoff is available","Repository freshness signal is available","Registry match score 99"],"urls":{"web":"https://www.openagentskill.com/skills/devsecops-devsecops","api":"https://www.openagentskill.com/api/agent/skills/devsecops-devsecops","install_api":"https://www.openagentskill.com/api/skills/devsecops-devsecops/install","audit":"https://www.openagentskill.com/skills/devsecops-devsecops/audit","repository":"https://github.com/devsecops/devsecops"}},{"rank":2,"match_score":33,"raw_match_score":338.5,"slug":"zemmali-devsecops-toolchain","name":"DevSecOps Toolchain","description":"DevSecOps Toolchain","tagline":"DevSecOps Toolchain","category":"devops","tags":["devops","automation","devsecops","mindmap","html","github"],"author":{"name":"zemmali","verified":false,"url":"https://github.com/zemmali"},"attribution":{"status":"community_indexed","statusLabel":"Community indexed","shortLabel":"COMMUNITY INDEXED","sourceLabel":"GitHub star discovery","sourceDetail":"zemmali/DevSecOps-Toolchain","creatorName":"zemmali","creatorUrl":"https://github.com/zemmali","sourceUrl":"https://github.com/zemmali/DevSecOps-Toolchain","indexedBy":"OpenAgentSkill community index","claimUrl":"https://www.openagentskill.com/skills/zemmali-devsecops-toolchain#claim-this-skill","claimCta":"Claim this skill","trustNote":"This listing was indexed from public sources and is not marked official until a maintainer claim is approved.","publicNote":"Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals."},"stats":{"stars":112,"forks":39,"downloads":0,"rating":0,"review_count":0,"quality_score":33.07},"quality":{"score":47,"tier":"review","label":"Needs review","summary":"Inspect the repository carefully before adding it to an agent workflow.","signals":[{"label":"GitHub stars","value":"112","tone":"neutral"},{"label":"Freshness","value":"8y ago","tone":"warning"},{"label":"Install ready","value":"Yes","tone":"positive"},{"label":"License","value":"Apache-2.0","tone":"neutral"}],"warnings":["Repository looks stale"]},"trust":{"version":"trust-score-v4","score":70,"tier":"review","label":"Manual review","summary":"Potentially useful, but at least one trust signal needs human inspection.","recommendedAction":"Inspect the repository, license, and recent activity before connecting it to agent workflows.","dimensions":[{"id":"github_adoption","label":"GitHub adoption","score":62,"weight":0.13,"status":"info","detail":"112 GitHub stars"},{"id":"repo_activity","label":"Stars/forks activity","score":57,"weight":0.08,"status":"warn","detail":"112 stars, 39 forks; issue activity unavailable in current metadata"},{"id":"maintenance","label":"Recent maintenance","score":22,"weight":0.14,"status":"fail","detail":"8y since push"},{"id":"license","label":"License clarity","score":86,"weight":0.09,"status":"pass","detail":"Apache-2.0"},{"id":"documentation","label":"README/SKILL.md completeness","score":74,"weight":0.14,"status":"info","detail":"Public metadata needs stronger README/SKILL.md context"},{"id":"dependency_risk","label":"Dependency/runtime risk","score":90,"weight":0.12,"status":"pass","detail":"no major dependency risk hints in public metadata"},{"id":"installability","label":"Install availability","score":92,"weight":0.1,"status":"pass","detail":"npx skills add zemmali/DevSecOps-Toolchain"},{"id":"install_safety","label":"Install command safety","score":92,"weight":0.1,"status":"pass","detail":"standard package or runtime install path"},{"id":"permission_surface","label":"Permission surface","score":86,"weight":0.07,"status":"pass","detail":"filesystem or document access"},{"id":"repository","label":"Repository evidence","score":86,"weight":0.04,"status":"pass","detail":"https://github.com/zemmali/DevSecOps-Toolchain"},{"id":"review_status","label":"Review status","score":88,"weight":0.05,"status":"pass","detail":"AI review data available"},{"id":"agent_outcomes","label":"Agent Proven outcomes","score":54,"weight":0.13,"status":"info","detail":"No agent outcome data yet"}],"checks":[{"status":"info","label":"GitHub adoption","detail":"112 GitHub stars"},{"status":"warn","label":"Stars/forks activity","detail":"112 stars, 39 forks; issue activity unavailable in current metadata"},{"status":"fail","label":"Recent maintenance","detail":"8y since push"},{"status":"pass","label":"License clarity","detail":"Apache-2.0"},{"status":"info","label":"README/SKILL.md completeness","detail":"Public metadata needs stronger README/SKILL.md context"},{"status":"pass","label":"Dependency/runtime risk","detail":"no major dependency risk hints in public metadata"},{"status":"pass","label":"Install availability","detail":"npx skills add zemmali/DevSecOps-Toolchain"},{"status":"pass","label":"Install command safety","detail":"standard package or runtime install path"},{"status":"pass","label":"Permission surface","detail":"filesystem or document access"},{"status":"pass","label":"Repository evidence","detail":"https://github.com/zemmali/DevSecOps-Toolchain"},{"status":"pass","label":"Review status","detail":"AI review data available"},{"status":"info","label":"Agent Proven outcomes","detail":"No agent outcome data yet"},{"status":"warn","label":"Ownership","detail":"No approved owner claim yet"},{"status":"info","label":"OpenAgentSkill usage","detail":"No local usage activity yet"},{"status":"info","label":"Agent outcomes","detail":"No agent outcome data yet"}],"strengths":["AI review approved","Install path is available","Repository evidence is available","Install command has no obvious high-risk pattern"],"warnings":["Repository looks stale","Quality score needs review","Documentation summary is thin","Stars/forks activity: 112 stars, 39 forks; issue activity unavailable in current metadata","Recent maintenance: 8y since push"],"evidence":{"stars":"112 GitHub stars","repoActivity":"112 stars, 39 forks","lastPushed":"8y since push","license":"Apache-2.0","repository":"https://github.com/zemmali/DevSecOps-Toolchain","install":"npx skills add zemmali/DevSecOps-Toolchain","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"installReadiness":{"ready":true,"command":"npx skills add zemmali/DevSecOps-Toolchain","policy":"human_review_before_install","label":"Human review before install","notes":["Install path is available","Repository evidence is available","License is declared","No Agent Proven outcome evidence yet","8y since push"]},"agentCompatibility":["HTML","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI"],"riskSummary":{"level":"medium","label":"Review before production","notes":["Repository looks stale","Quality score needs review","Documentation summary is thin","Stars/forks activity: 112 stars, 39 forks; issue activity unavailable in current metadata","Recent maintenance: 8y since push"]},"outcomeEvidence":{"total":0,"successes":0,"failures":0,"notRelevant":0,"successRate":null,"installAttempts":0,"riskBlocked":0,"setupRequired":0,"installSuccessRate":null,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"recentSuccessRate":null,"recentFailureRate":null,"uniqueAgents":0,"agentProvenScore":0,"agentProvenLabel":"Needs first agent run","lastOutcomeAt":null,"label":"No agent outcome data yet"},"autoInstall":{"allowed":false,"sandboxRequired":true,"policy":"human_review_before_install","reason":"Human review or sandbox validation is required before automatic installation."},"bestFor":["devops","automation","devsecops","mindmap","html","github"],"doNotUseFor":["Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface","Automatic installation in a production workspace"],"knownRisks":["Repository looks stale","Quality score needs review","Documentation summary is thin","Stars/forks activity: 112 stars, 39 forks; issue activity unavailable in current metadata","Recent maintenance: 8y since push"]},"safety":{"score":46,"level":"avoid_auto_install","label":"Avoid automatic install","safety_tier":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","summary":"Sparse or mixed signals. Useful for discovery, but not for autonomous installation.","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","auto_install_policy":"review","reasons":["Repository appears stale","46/100 agent safety score"]},"auto_install_allowed":false,"human_review_required":true,"blocked":false,"audit_risk":"needs_review","permission_hints":[{"id":"network","label":"Network access","reason":"Skill likely fetches remote pages, APIs, repositories, or external services.","severity":"medium"},{"id":"filesystem","label":"Filesystem access","reason":"Skill may read or write project files, documents, generated artifacts, or local workspace state.","severity":"medium"}],"policy_warnings":["Repository appears stale"],"constraints_applied":{"max_risk":"medium","needs_install_command":true,"min_stars":0}},"safety_gate":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","reasons":["Repository appears stale","46/100 agent safety score"]},"supply_profile":{"track":{"slug":"coding","label":"Coding and developer agents","shortLabel":"Coding","description":"Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills."},"scenario":{"label":"Coding agents","description":"I need a coding agent that can understand a repository, edit code, and review pull requests.","useCases":[{"slug":"coding-agents","title":"Coding agents"},{"slug":"rag-knowledge","title":"RAG and knowledge"},{"slug":"workflow-automation","title":"Workflow automation"}]},"applicableAgents":["Claude Code","CLI","Codex","Cursor","HTML"],"install":{"ready":true,"command":"npx skills add zemmali/DevSecOps-Toolchain","primaryTarget":"CLI","targetCount":4},"githubQuality":{"stars":112,"starsLabel":"112","forks":39,"license":"Apache-2.0","qualityScore":47,"trustScore":70,"auditScore":62},"maintenance":{"status":"stale","label":"8y since push","daysSincePush":3091,"lastPushedAt":"2018-01-15T23:26:07+00:00"},"risk":{"level":"needs_review","label":"Needs review","requiresReview":true,"notes":["Repository appears stale","Repository looks stale","Quality score needs review","Documentation summary is thin","Stars/forks activity: 112 stars, 39 forks; issue activity unavailable in current metadata"]},"coverageTags":["Coding","Coding agents","devops","automation","devsecops","mindmap","html","github"]},"audit":{"audit_score":62,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Documentation summary is thin","Stars/forks activity: 112 stars, 39 forks; issue activity unavailable in current metadata"]},"decision":{"readiness_score":37,"readiness_label":"Needs manual review","headline":"Needs validation for Coding agents","role":"Needs validation","primary_fit":"Coding agents","best_for":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects"],"risks":["Repository looks stale","No OpenAgentSkill engagement data yet"],"next_steps":["Install it in a sandbox agent and run one Coding agents task end to end.","Compare output quality, latency, and failure behavior against at least one alternative.","Promote it into production only after reviewing repository permissions, license, and maintenance signals."]},"agent_readable_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"zemmali-devsecops-toolchain","name":"DevSecOps Toolchain","description":"DevSecOps Toolchain","category":"devops","url":"https://www.openagentskill.com/skills/zemmali-devsecops-toolchain","repository":"https://github.com/zemmali/DevSecOps-Toolchain","github_repo":"zemmali/DevSecOps-Toolchain"},"suited_tasks":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects","Inspect source files","Explain architecture","Patch bugs and verify changes","Chunk documents","Create embeddings"],"suited_agents":["HTML","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add zemmali/DevSecOps-Toolchain","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add zemmali/DevSecOps-Toolchain"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"DevSecOps Toolchain\" agent skill from https://github.com/zemmali/DevSecOps-Toolchain. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: DevSecOps Toolchain"},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"DevSecOps Toolchain\" as a Claude Code skill from https://github.com/zemmali/DevSecOps-Toolchain. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: DevSecOps Toolchain"},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"DevSecOps Toolchain\" from https://github.com/zemmali/DevSecOps-Toolchain into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: DevSecOps Toolchain"}],"handoff_url":"https://www.openagentskill.com/api/skills/zemmali-devsecops-toolchain/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/zemmali-devsecops-toolchain"},"trust":{"score":70,"label":"Manual review","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"112 GitHub stars","repoActivity":"112 stars, 39 forks","lastPushed":"8y since push","license":"Apache-2.0","repository":"https://github.com/zemmali/DevSecOps-Toolchain","install":"npx skills add zemmali/DevSecOps-Toolchain","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","devsecops","mindmap","html","github"],"known_risks":["Repository looks stale","Quality score needs review","Documentation summary is thin","Stars/forks activity: 112 stars, 39 forks; issue activity unavailable in current metadata","Recent maintenance: 8y since push"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":62,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Documentation summary is thin","Stars/forks activity: 112 stars, 39 forks; issue activity unavailable in current metadata","Recent maintenance: 8y since push"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":47,"label":"Needs review"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"8y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","Repository appears stale","Quality score needs review","Documentation summary is thin","Stars/forks activity: 112 stars, 39 forks; issue activity unavailable in current metadata"],"agent_contract":{"task_input":"Use DevSecOps Toolchain in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 70/100 Manual review","Audit: 62/100 Needs review","Safety: 46/100 Avoid automatic install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"zemmali-devsecops-toolchain (DevSecOps Toolchain)","install_command":"npx skills add zemmali/DevSecOps-Toolchain","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"zemmali-devsecops-toolchain","task":"Use DevSecOps Toolchain in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/zemmali-devsecops-toolchain","api":"https://www.openagentskill.com/api/agent/skills/zemmali-devsecops-toolchain","audit":"https://www.openagentskill.com/skills/zemmali-devsecops-toolchain/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=zemmali-devsecops-toolchain&task=Use%20DevSecOps%20Toolchain%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20DevSecOps%20Toolchain%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20DevSecOps%20Toolchain%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/zemmali-devsecops-toolchain/install","manifest":"https://www.openagentskill.com/api/registry/manifest/zemmali-devsecops-toolchain"}},"machine_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"zemmali-devsecops-toolchain","name":"DevSecOps Toolchain","description":"DevSecOps Toolchain","category":"devops","url":"https://www.openagentskill.com/skills/zemmali-devsecops-toolchain","repository":"https://github.com/zemmali/DevSecOps-Toolchain","github_repo":"zemmali/DevSecOps-Toolchain"},"suited_tasks":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects","Inspect source files","Explain architecture","Patch bugs and verify changes","Chunk documents","Create embeddings"],"suited_agents":["HTML","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add zemmali/DevSecOps-Toolchain","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add zemmali/DevSecOps-Toolchain"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"DevSecOps Toolchain\" agent skill from https://github.com/zemmali/DevSecOps-Toolchain. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: DevSecOps Toolchain"},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"DevSecOps Toolchain\" as a Claude Code skill from https://github.com/zemmali/DevSecOps-Toolchain. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: DevSecOps Toolchain"},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"DevSecOps Toolchain\" from https://github.com/zemmali/DevSecOps-Toolchain into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: DevSecOps Toolchain"}],"handoff_url":"https://www.openagentskill.com/api/skills/zemmali-devsecops-toolchain/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/zemmali-devsecops-toolchain"},"trust":{"score":70,"label":"Manual review","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"112 GitHub stars","repoActivity":"112 stars, 39 forks","lastPushed":"8y since push","license":"Apache-2.0","repository":"https://github.com/zemmali/DevSecOps-Toolchain","install":"npx skills add zemmali/DevSecOps-Toolchain","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","devsecops","mindmap","html","github"],"known_risks":["Repository looks stale","Quality score needs review","Documentation summary is thin","Stars/forks activity: 112 stars, 39 forks; issue activity unavailable in current metadata","Recent maintenance: 8y since push"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":62,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Documentation summary is thin","Stars/forks activity: 112 stars, 39 forks; issue activity unavailable in current metadata","Recent maintenance: 8y since push"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":47,"label":"Needs review"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"8y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","Repository appears stale","Quality score needs review","Documentation summary is thin","Stars/forks activity: 112 stars, 39 forks; issue activity unavailable in current metadata"],"agent_contract":{"task_input":"Use DevSecOps Toolchain in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 70/100 Manual review","Audit: 62/100 Needs review","Safety: 46/100 Avoid automatic install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"zemmali-devsecops-toolchain (DevSecOps Toolchain)","install_command":"npx skills add zemmali/DevSecOps-Toolchain","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"zemmali-devsecops-toolchain","task":"Use DevSecOps Toolchain in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/zemmali-devsecops-toolchain","api":"https://www.openagentskill.com/api/agent/skills/zemmali-devsecops-toolchain","audit":"https://www.openagentskill.com/skills/zemmali-devsecops-toolchain/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=zemmali-devsecops-toolchain&task=Use%20DevSecOps%20Toolchain%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20DevSecOps%20Toolchain%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20DevSecOps%20Toolchain%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/zemmali-devsecops-toolchain/install","manifest":"https://www.openagentskill.com/api/registry/manifest/zemmali-devsecops-toolchain"}},"platforms":["HTML","DevOps","Claude Code"],"use_cases":[{"slug":"coding-agents","title":"Coding agents","url":"https://www.openagentskill.com/use-cases/coding-agents"},{"slug":"rag-knowledge","title":"RAG and knowledge","url":"https://www.openagentskill.com/use-cases/rag-knowledge"},{"slug":"workflow-automation","title":"Workflow automation","url":"https://www.openagentskill.com/use-cases/workflow-automation"},{"slug":"sports-analytics","title":"Sports analytics","url":"https://www.openagentskill.com/use-cases/sports-analytics"}],"install":"npx skills add zemmali/DevSecOps-Toolchain","install_targets":[{"id":"openagentskill-cli","label":"CLI","title":"OpenAgentSkill CLI","kind":"command","value":"npx skills add zemmali/DevSecOps-Toolchain","description":"Use the registry command when your workflow supports the OpenAgentSkill installer.","copyLabel":"Copy command"},{"id":"codex","label":"Codex","title":"Codex install prompt","kind":"agent-prompt","value":"Install the \"DevSecOps Toolchain\" agent skill from https://github.com/zemmali/DevSecOps-Toolchain. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: DevSecOps Toolchain","description":"Give Codex a repo-aware install prompt when the skill is not available through a local CLI.","copyLabel":"Copy prompt"},{"id":"claude-code","label":"Claude Code","title":"Claude Code skill prompt","kind":"agent-prompt","value":"Add \"DevSecOps Toolchain\" as a Claude Code skill from https://github.com/zemmali/DevSecOps-Toolchain. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: DevSecOps Toolchain","description":"Use this prompt to ask Claude Code to add the skill and explain the local activation steps.","copyLabel":"Copy prompt"},{"id":"cursor","label":"Cursor","title":"Cursor rule prompt","kind":"agent-prompt","value":"Turn \"DevSecOps Toolchain\" from https://github.com/zemmali/DevSecOps-Toolchain into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: DevSecOps Toolchain","description":"Use this when installing as Cursor project rules or reusable agent instructions.","copyLabel":"Copy prompt"}],"repository":"https://github.com/zemmali/DevSecOps-Toolchain","github_repo":"zemmali/DevSecOps-Toolchain","version":"1.0.0","license":"Apache-2.0","updated_at":"2026-07-04T03:00:37.794259+00:00","canonical_key":"zemmali/devsecops-toolchain","recommendation_reasons":["Matches task terms: devsecops","Install handoff is available","Repository freshness signal is available","Registry match score 33"],"urls":{"web":"https://www.openagentskill.com/skills/zemmali-devsecops-toolchain","api":"https://www.openagentskill.com/api/agent/skills/zemmali-devsecops-toolchain","install_api":"https://www.openagentskill.com/api/skills/zemmali-devsecops-toolchain/install","audit":"https://www.openagentskill.com/skills/zemmali-devsecops-toolchain/audit","repository":"https://github.com/zemmali/DevSecOps-Toolchain"}},{"rank":3,"match_score":31,"raw_match_score":318.9,"slug":"kenken64-nusiss-devsecopseng","name":"NUSISS DevSecOpsEng","description":"NUS ISS  DevSecOps Engineering - Git, Docker, Docker Compose,  Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible","tagline":"NUS ISS  DevSecOps Engineering - Git, Docker, Docker Compose,  Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible","category":"browser-automation","tags":["browser","automation","ansible","aws-codedeploy","docker","docker-compose","dockersc","puppet","puppeteer","terraform"],"author":{"name":"kenken64","verified":false,"url":"https://github.com/kenken64"},"attribution":{"status":"community_indexed","statusLabel":"Community indexed","shortLabel":"COMMUNITY INDEXED","sourceLabel":"GitHub star discovery","sourceDetail":"kenken64/NUSISS-DevSecOpsEng","creatorName":"kenken64","creatorUrl":"https://github.com/kenken64","sourceUrl":"https://github.com/kenken64/NUSISS-DevSecOpsEng","indexedBy":"OpenAgentSkill community index","claimUrl":"https://www.openagentskill.com/skills/kenken64-nusiss-devsecopseng#claim-this-skill","claimCta":"Claim this skill","trustNote":"This listing was indexed from public sources and is not marked official until a maintainer claim is approved.","publicNote":"Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals."},"stats":{"stars":178,"forks":469,"downloads":0,"rating":0,"review_count":0,"quality_score":46.47},"quality":{"score":69,"tier":"promising","label":"Promising","summary":"Useful candidate, but compare it with alternatives before adopting.","signals":[{"label":"GitHub stars","value":"178","tone":"neutral"},{"label":"Freshness","value":"3mo ago","tone":"positive"},{"label":"Install ready","value":"Yes","tone":"positive"},{"label":"License","value":"Unknown","tone":"neutral"}],"warnings":[]},"trust":{"version":"trust-score-v4","score":75,"tier":"strong","label":"Strong shortlist","summary":"Good trust signals with a few areas worth checking before rollout.","recommendedAction":"Test in a sandbox workflow and compare its install path with close alternatives.","dimensions":[{"id":"github_adoption","label":"GitHub adoption","score":62,"weight":0.13,"status":"info","detail":"178 GitHub stars"},{"id":"repo_activity","label":"Stars/forks activity","score":68,"weight":0.08,"status":"info","detail":"178 stars, 469 forks; issue activity unavailable in current metadata"},{"id":"maintenance","label":"Recent maintenance","score":88,"weight":0.14,"status":"pass","detail":"3mo since push"},{"id":"license","label":"License clarity","score":42,"weight":0.09,"status":"warn","detail":"Unknown"},{"id":"documentation","label":"README/SKILL.md completeness","score":90,"weight":0.14,"status":"pass","detail":"Metadata includes enough usage and workflow context"},{"id":"dependency_risk","label":"Dependency/runtime risk","score":72,"weight":0.12,"status":"info","detail":"external package install surface, network or browser surface"},{"id":"installability","label":"Install availability","score":92,"weight":0.1,"status":"pass","detail":"npx skills add kenken64/NUSISS-DevSecOpsEng"},{"id":"install_safety","label":"Install command safety","score":92,"weight":0.1,"status":"pass","detail":"standard package or runtime install path"},{"id":"permission_surface","label":"Permission surface","score":72,"weight":0.07,"status":"info","detail":"filesystem or document access, network or browser access"},{"id":"repository","label":"Repository evidence","score":86,"weight":0.04,"status":"pass","detail":"https://github.com/kenken64/NUSISS-DevSecOpsEng"},{"id":"review_status","label":"Review status","score":88,"weight":0.05,"status":"pass","detail":"AI review data available"},{"id":"agent_outcomes","label":"Agent Proven outcomes","score":54,"weight":0.13,"status":"info","detail":"No agent outcome data yet"}],"checks":[{"status":"info","label":"GitHub adoption","detail":"178 GitHub stars"},{"status":"info","label":"Stars/forks activity","detail":"178 stars, 469 forks; issue activity unavailable in current metadata"},{"status":"pass","label":"Recent maintenance","detail":"3mo since push"},{"status":"warn","label":"License clarity","detail":"Unknown"},{"status":"pass","label":"README/SKILL.md completeness","detail":"Metadata includes enough usage and workflow context"},{"status":"info","label":"Dependency/runtime risk","detail":"external package install surface, network or browser surface"},{"status":"pass","label":"Install availability","detail":"npx skills add kenken64/NUSISS-DevSecOpsEng"},{"status":"pass","label":"Install command safety","detail":"standard package or runtime install path"},{"status":"info","label":"Permission surface","detail":"filesystem or document access, network or browser access"},{"status":"pass","label":"Repository evidence","detail":"https://github.com/kenken64/NUSISS-DevSecOpsEng"},{"status":"pass","label":"Review status","detail":"AI review data available"},{"status":"info","label":"Agent Proven outcomes","detail":"No agent outcome data yet"},{"status":"warn","label":"Ownership","detail":"No approved owner claim yet"},{"status":"info","label":"OpenAgentSkill usage","detail":"No local usage activity yet"},{"status":"info","label":"Agent outcomes","detail":"No agent outcome data yet"}],"strengths":["AI review approved","Install path is available","Repository evidence is available","Recently maintained repository","Install command has no obvious high-risk pattern"],"warnings":["License is unclear","Quality score needs review","License clarity: Unknown"],"evidence":{"stars":"178 GitHub stars","repoActivity":"178 stars, 469 forks","lastPushed":"3mo since push","license":"Unknown","repository":"https://github.com/kenken64/NUSISS-DevSecOpsEng","install":"npx skills add kenken64/NUSISS-DevSecOpsEng","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access, network or browser access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"installReadiness":{"ready":true,"command":"npx skills add kenken64/NUSISS-DevSecOpsEng","policy":"human_review_before_install","label":"Human review before install","notes":["Install path is available","Repository evidence is available","License is unclear","No Agent Proven outcome evidence yet","3mo since push"]},"agentCompatibility":["HCL","Puppeteer","Codex","Claude Code","Cursor","OpenAgentSkill CLI"],"riskSummary":{"level":"medium","label":"Review before production","notes":["License is unclear","Quality score needs review","License clarity: Unknown"]},"outcomeEvidence":{"total":0,"successes":0,"failures":0,"notRelevant":0,"successRate":null,"installAttempts":0,"riskBlocked":0,"setupRequired":0,"installSuccessRate":null,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"recentSuccessRate":null,"recentFailureRate":null,"uniqueAgents":0,"agentProvenScore":0,"agentProvenLabel":"Needs first agent run","lastOutcomeAt":null,"label":"No agent outcome data yet"},"autoInstall":{"allowed":false,"sandboxRequired":true,"policy":"human_review_before_install","reason":"Human review or sandbox validation is required before automatic installation."},"bestFor":["browser-automation","browser","automation","ansible","aws-codedeploy","docker"],"doNotUseFor":["Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface","Automatic installation in a production workspace","Commercial reuse before clarifying license terms"],"knownRisks":["License is unclear","Quality score needs review","License clarity: Unknown"]},"safety":{"score":57,"level":"review_before_install","label":"Review before install","safety_tier":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","summary":"Sparse or mixed signals. Useful for discovery, but not for autonomous installation.","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","auto_install_policy":"review","reasons":["License is unclear","57/100 agent safety score"]},"auto_install_allowed":false,"human_review_required":true,"blocked":false,"audit_risk":"needs_review","permission_hints":[{"id":"browser","label":"Browser automation","reason":"Skill may drive a browser or interact with web pages.","severity":"medium"},{"id":"network","label":"Network access","reason":"Skill likely fetches remote pages, APIs, repositories, or external services.","severity":"medium"},{"id":"filesystem","label":"Filesystem access","reason":"Skill may read or write project files, documents, generated artifacts, or local workspace state.","severity":"medium"}],"policy_warnings":["License is unclear"],"constraints_applied":{"max_risk":"medium","needs_install_command":true,"min_stars":0}},"safety_gate":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","reasons":["License is unclear","57/100 agent safety score"]},"supply_profile":{"track":{"slug":"coding","label":"Coding and developer agents","shortLabel":"Coding","description":"Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills."},"scenario":{"label":"Coding agents","description":"I need a coding agent that can understand a repository, edit code, and review pull requests.","useCases":[{"slug":"browser-automation","title":"Browser automation"},{"slug":"coding-agents","title":"Coding agents"},{"slug":"rag-knowledge","title":"RAG and knowledge"}]},"applicableAgents":["Claude Code","Browser agents","CLI","Codex","Cursor"],"install":{"ready":true,"command":"npx skills add kenken64/NUSISS-DevSecOpsEng","primaryTarget":"CLI","targetCount":4},"githubQuality":{"stars":178,"starsLabel":"178","forks":469,"license":"Unknown","qualityScore":69,"trustScore":75,"auditScore":77},"maintenance":{"status":"active","label":"3mo since push","daysSincePush":82,"lastPushedAt":"2026-04-12T22:07:16+00:00"},"risk":{"level":"needs_review","label":"Needs review","requiresReview":true,"notes":["License is unclear","Quality score needs review","License clarity: Unknown","Needs review"]},"coverageTags":["Coding","Coding agents","browser-automation","browser","automation","ansible","aws-codedeploy","docker"]},"audit":{"audit_score":77,"risk_level":"needs_review","risk_label":"Needs review","warnings":["License is unclear","Quality score needs review","License clarity: Unknown"]},"decision":{"readiness_score":68,"readiness_label":"Prototype first","headline":"Fallback candidate for Browser automation","role":"Fallback candidate","primary_fit":"Browser automation","best_for":["Browser automation workflows","Claude Code teams","builders willing to evaluate younger projects"],"risks":["No OpenAgentSkill engagement data yet"],"next_steps":["Install it in a sandbox agent and run one Browser automation task end to end.","Compare output quality, latency, and failure behavior against at least one alternative.","Promote it into production only after reviewing repository permissions, license, and maintenance signals."]},"agent_readable_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"kenken64-nusiss-devsecopseng","name":"NUSISS DevSecOpsEng","description":"NUS ISS  DevSecOps Engineering - Git, Docker, Docker Compose,  Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible","category":"browser-automation","url":"https://www.openagentskill.com/skills/kenken64-nusiss-devsecopseng","repository":"https://github.com/kenken64/NUSISS-DevSecOpsEng","github_repo":"kenken64/NUSISS-DevSecOpsEng"},"suited_tasks":["Browser automation workflows","Claude Code teams","builders willing to evaluate younger projects","Navigate pages","Click and type safely","Check visual and DOM state","Inspect source files","Explain architecture"],"suited_agents":["HCL","Puppeteer","Codex","Claude Code","Cursor","OpenAgentSkill CLI","Browser agents","CLI"],"install":{"command":"npx skills add kenken64/NUSISS-DevSecOpsEng","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add kenken64/NUSISS-DevSecOpsEng"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"NUSISS DevSecOpsEng\" agent skill from https://github.com/kenken64/NUSISS-DevSecOpsEng. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: NUS ISS DevSecOps Engineering - Git, Docker, Docker Compose, Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible"},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"NUSISS DevSecOpsEng\" as a Claude Code skill from https://github.com/kenken64/NUSISS-DevSecOpsEng. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: NUS ISS DevSecOps Engineering - Git, Docker, Docker Compose, Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible"},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"NUSISS DevSecOpsEng\" from https://github.com/kenken64/NUSISS-DevSecOpsEng into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: NUS ISS DevSecOps Engineering - Git, Docker, Docker Compose, Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible"}],"handoff_url":"https://www.openagentskill.com/api/skills/kenken64-nusiss-devsecopseng/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/kenken64-nusiss-devsecopseng"},"trust":{"score":75,"label":"Strong shortlist","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"178 GitHub stars","repoActivity":"178 stars, 469 forks","lastPushed":"3mo since push","license":"Unknown","repository":"https://github.com/kenken64/NUSISS-DevSecOpsEng","install":"npx skills add kenken64/NUSISS-DevSecOpsEng","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access, network or browser access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["browser-automation","browser","automation","ansible","aws-codedeploy","docker"],"known_risks":["License is unclear","Quality score needs review","License clarity: Unknown"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":77,"risk_level":"needs_review","risk_label":"Needs review","warnings":["License is unclear","Quality score needs review","License clarity: Unknown"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":69,"label":"Promising"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"3mo since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that need a vendor-supported SLA","high-compliance environments without internal security review","No OpenAgentSkill engagement data yet","License is unclear","Quality score needs review","License clarity: Unknown","Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface"],"agent_contract":{"task_input":"Use NUSISS DevSecOpsEng in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 75/100 Strong shortlist","Audit: 77/100 Needs review","Safety: 57/100 Review before install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"kenken64-nusiss-devsecopseng (NUSISS DevSecOpsEng)","install_command":"npx skills add kenken64/NUSISS-DevSecOpsEng","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"kenken64-nusiss-devsecopseng","task":"Use NUSISS DevSecOpsEng in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/kenken64-nusiss-devsecopseng","api":"https://www.openagentskill.com/api/agent/skills/kenken64-nusiss-devsecopseng","audit":"https://www.openagentskill.com/skills/kenken64-nusiss-devsecopseng/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=kenken64-nusiss-devsecopseng&task=Use%20NUSISS%20DevSecOpsEng%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20NUSISS%20DevSecOpsEng%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20NUSISS%20DevSecOpsEng%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/kenken64-nusiss-devsecopseng/install","manifest":"https://www.openagentskill.com/api/registry/manifest/kenken64-nusiss-devsecopseng"}},"machine_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"kenken64-nusiss-devsecopseng","name":"NUSISS DevSecOpsEng","description":"NUS ISS  DevSecOps Engineering - Git, Docker, Docker Compose,  Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible","category":"browser-automation","url":"https://www.openagentskill.com/skills/kenken64-nusiss-devsecopseng","repository":"https://github.com/kenken64/NUSISS-DevSecOpsEng","github_repo":"kenken64/NUSISS-DevSecOpsEng"},"suited_tasks":["Browser automation workflows","Claude Code teams","builders willing to evaluate younger projects","Navigate pages","Click and type safely","Check visual and DOM state","Inspect source files","Explain architecture"],"suited_agents":["HCL","Puppeteer","Codex","Claude Code","Cursor","OpenAgentSkill CLI","Browser agents","CLI"],"install":{"command":"npx skills add kenken64/NUSISS-DevSecOpsEng","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add kenken64/NUSISS-DevSecOpsEng"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"NUSISS DevSecOpsEng\" agent skill from https://github.com/kenken64/NUSISS-DevSecOpsEng. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: NUS ISS DevSecOps Engineering - Git, Docker, Docker Compose, Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible"},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"NUSISS DevSecOpsEng\" as a Claude Code skill from https://github.com/kenken64/NUSISS-DevSecOpsEng. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: NUS ISS DevSecOps Engineering - Git, Docker, Docker Compose, Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible"},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"NUSISS DevSecOpsEng\" from https://github.com/kenken64/NUSISS-DevSecOpsEng into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: NUS ISS DevSecOps Engineering - Git, Docker, Docker Compose, Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible"}],"handoff_url":"https://www.openagentskill.com/api/skills/kenken64-nusiss-devsecopseng/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/kenken64-nusiss-devsecopseng"},"trust":{"score":75,"label":"Strong shortlist","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"178 GitHub stars","repoActivity":"178 stars, 469 forks","lastPushed":"3mo since push","license":"Unknown","repository":"https://github.com/kenken64/NUSISS-DevSecOpsEng","install":"npx skills add kenken64/NUSISS-DevSecOpsEng","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access, network or browser access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["browser-automation","browser","automation","ansible","aws-codedeploy","docker"],"known_risks":["License is unclear","Quality score needs review","License clarity: Unknown"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":77,"risk_level":"needs_review","risk_label":"Needs review","warnings":["License is unclear","Quality score needs review","License clarity: Unknown"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":69,"label":"Promising"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"3mo since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that need a vendor-supported SLA","high-compliance environments without internal security review","No OpenAgentSkill engagement data yet","License is unclear","Quality score needs review","License clarity: Unknown","Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface"],"agent_contract":{"task_input":"Use NUSISS DevSecOpsEng in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 75/100 Strong shortlist","Audit: 77/100 Needs review","Safety: 57/100 Review before install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"kenken64-nusiss-devsecopseng (NUSISS DevSecOpsEng)","install_command":"npx skills add kenken64/NUSISS-DevSecOpsEng","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"kenken64-nusiss-devsecopseng","task":"Use NUSISS DevSecOpsEng in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/kenken64-nusiss-devsecopseng","api":"https://www.openagentskill.com/api/agent/skills/kenken64-nusiss-devsecopseng","audit":"https://www.openagentskill.com/skills/kenken64-nusiss-devsecopseng/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=kenken64-nusiss-devsecopseng&task=Use%20NUSISS%20DevSecOpsEng%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20NUSISS%20DevSecOpsEng%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20NUSISS%20DevSecOpsEng%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/kenken64-nusiss-devsecopseng/install","manifest":"https://www.openagentskill.com/api/registry/manifest/kenken64-nusiss-devsecopseng"}},"platforms":["HCL","Puppeteer","Claude Code","Browser agents"],"use_cases":[{"slug":"browser-automation","title":"Browser automation","url":"https://www.openagentskill.com/use-cases/browser-automation"},{"slug":"coding-agents","title":"Coding agents","url":"https://www.openagentskill.com/use-cases/coding-agents"},{"slug":"rag-knowledge","title":"RAG and knowledge","url":"https://www.openagentskill.com/use-cases/rag-knowledge"},{"slug":"workflow-automation","title":"Workflow automation","url":"https://www.openagentskill.com/use-cases/workflow-automation"}],"install":"npx skills add kenken64/NUSISS-DevSecOpsEng","install_targets":[{"id":"openagentskill-cli","label":"CLI","title":"OpenAgentSkill CLI","kind":"command","value":"npx skills add kenken64/NUSISS-DevSecOpsEng","description":"Use the registry command when your workflow supports the OpenAgentSkill installer.","copyLabel":"Copy command"},{"id":"codex","label":"Codex","title":"Codex install prompt","kind":"agent-prompt","value":"Install the \"NUSISS DevSecOpsEng\" agent skill from https://github.com/kenken64/NUSISS-DevSecOpsEng. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: NUS ISS DevSecOps Engineering - Git, Docker, Docker Compose, Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible","description":"Give Codex a repo-aware install prompt when the skill is not available through a local CLI.","copyLabel":"Copy prompt"},{"id":"claude-code","label":"Claude Code","title":"Claude Code skill prompt","kind":"agent-prompt","value":"Add \"NUSISS DevSecOpsEng\" as a Claude Code skill from https://github.com/kenken64/NUSISS-DevSecOpsEng. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: NUS ISS DevSecOps Engineering - Git, Docker, Docker Compose, Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible","description":"Use this prompt to ask Claude Code to add the skill and explain the local activation steps.","copyLabel":"Copy prompt"},{"id":"cursor","label":"Cursor","title":"Cursor rule prompt","kind":"agent-prompt","value":"Turn \"NUSISS DevSecOpsEng\" from https://github.com/kenken64/NUSISS-DevSecOpsEng into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: NUS ISS DevSecOps Engineering - Git, Docker, Docker Compose, Puppet , AWS Code Pipeline/CodeStar, Docker , Kubernetes, Terraform, Ansible","description":"Use this when installing as Cursor project rules or reusable agent instructions.","copyLabel":"Copy prompt"}],"repository":"https://github.com/kenken64/NUSISS-DevSecOpsEng","github_repo":"kenken64/NUSISS-DevSecOpsEng","version":"1.0.0","license":"Unknown","updated_at":"2026-07-03T03:02:04.483105+00:00","canonical_key":"kenken64/nusiss-devsecopseng","recommendation_reasons":["Matches task terms: devsecops","Install handoff is available","Repository freshness signal is available","Registry match score 31"],"urls":{"web":"https://www.openagentskill.com/skills/kenken64-nusiss-devsecopseng","api":"https://www.openagentskill.com/api/agent/skills/kenken64-nusiss-devsecopseng","install_api":"https://www.openagentskill.com/api/skills/kenken64-nusiss-devsecopseng/install","audit":"https://www.openagentskill.com/skills/kenken64-nusiss-devsecopseng/audit","repository":"https://github.com/kenken64/NUSISS-DevSecOpsEng"}},{"rank":4,"match_score":31,"raw_match_score":318.2,"slug":"amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","name":"End To End Kubernetes DevSecOps Tetris Project","description":"Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality.","tagline":"Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality.","category":"devops","tags":["devops","automation","argocd","aws","cloud","jenkins","kubernetes","terraform","javascript","github"],"author":{"name":"AmanPathak-DevOps","verified":false,"url":"https://github.com/AmanPathak-DevOps"},"attribution":{"status":"community_indexed","statusLabel":"Community indexed","shortLabel":"COMMUNITY INDEXED","sourceLabel":"GitHub star discovery","sourceDetail":"AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","creatorName":"AmanPathak-DevOps","creatorUrl":"https://github.com/AmanPathak-DevOps","sourceUrl":"https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","indexedBy":"OpenAgentSkill community index","claimUrl":"https://www.openagentskill.com/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project#claim-this-skill","claimCta":"Claim this skill","trustNote":"This listing was indexed from public sources and is not marked official until a maintainer claim is approved.","publicNote":"Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals."},"stats":{"stars":108,"forks":339,"downloads":0,"rating":0,"review_count":0,"quality_score":47.96},"quality":{"score":74,"tier":"strong","label":"Strong","summary":"Solid option that is likely worth shortlisting for production workflows.","signals":[{"label":"GitHub stars","value":"108","tone":"neutral"},{"label":"Freshness","value":"1mo ago","tone":"positive"},{"label":"Install ready","value":"Yes","tone":"positive"},{"label":"License","value":"Apache-2.0","tone":"neutral"}],"warnings":[]},"trust":{"version":"trust-score-v4","score":80,"tier":"strong","label":"Strong shortlist","summary":"Good trust signals with a few areas worth checking before rollout.","recommendedAction":"Test in a sandbox workflow and compare its install path with close alternatives.","dimensions":[{"id":"github_adoption","label":"GitHub adoption","score":62,"weight":0.13,"status":"info","detail":"108 GitHub stars"},{"id":"repo_activity","label":"Stars/forks activity","score":68,"weight":0.08,"status":"info","detail":"108 stars, 339 forks; issue activity unavailable in current metadata"},{"id":"maintenance","label":"Recent maintenance","score":88,"weight":0.14,"status":"pass","detail":"1mo since push"},{"id":"license","label":"License clarity","score":86,"weight":0.09,"status":"pass","detail":"Apache-2.0"},{"id":"documentation","label":"README/SKILL.md completeness","score":90,"weight":0.14,"status":"pass","detail":"Metadata includes enough usage and workflow context"},{"id":"dependency_risk","label":"Dependency/runtime risk","score":80,"weight":0.12,"status":"info","detail":"external package install surface"},{"id":"installability","label":"Install availability","score":92,"weight":0.1,"status":"pass","detail":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project"},{"id":"install_safety","label":"Install command safety","score":92,"weight":0.1,"status":"pass","detail":"standard package or runtime install path"},{"id":"permission_surface","label":"Permission surface","score":86,"weight":0.07,"status":"pass","detail":"filesystem or document access"},{"id":"repository","label":"Repository evidence","score":86,"weight":0.04,"status":"pass","detail":"https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project"},{"id":"review_status","label":"Review status","score":88,"weight":0.05,"status":"pass","detail":"AI review data available"},{"id":"agent_outcomes","label":"Agent Proven outcomes","score":54,"weight":0.13,"status":"info","detail":"No agent outcome data yet"}],"checks":[{"status":"info","label":"GitHub adoption","detail":"108 GitHub stars"},{"status":"info","label":"Stars/forks activity","detail":"108 stars, 339 forks; issue activity unavailable in current metadata"},{"status":"pass","label":"Recent maintenance","detail":"1mo since push"},{"status":"pass","label":"License clarity","detail":"Apache-2.0"},{"status":"pass","label":"README/SKILL.md completeness","detail":"Metadata includes enough usage and workflow context"},{"status":"info","label":"Dependency/runtime risk","detail":"external package install surface"},{"status":"pass","label":"Install availability","detail":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project"},{"status":"pass","label":"Install command safety","detail":"standard package or runtime install path"},{"status":"pass","label":"Permission surface","detail":"filesystem or document access"},{"status":"pass","label":"Repository evidence","detail":"https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project"},{"status":"pass","label":"Review status","detail":"AI review data available"},{"status":"info","label":"Agent Proven outcomes","detail":"No agent outcome data yet"},{"status":"warn","label":"Ownership","detail":"No approved owner claim yet"},{"status":"info","label":"OpenAgentSkill usage","detail":"No local usage activity yet"},{"status":"info","label":"Agent outcomes","detail":"No agent outcome data yet"}],"strengths":["AI review approved","Install path is available","Repository evidence is available","Recently maintained repository","Install command has no obvious high-risk pattern"],"warnings":["Quality score needs review"],"evidence":{"stars":"108 GitHub stars","repoActivity":"108 stars, 339 forks","lastPushed":"1mo since push","license":"Apache-2.0","repository":"https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","install":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"installReadiness":{"ready":true,"command":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","policy":"human_review_before_install","label":"Human review before install","notes":["Install path is available","Repository evidence is available","License is declared","No Agent Proven outcome evidence yet","1mo since push"]},"agentCompatibility":["JavaScript","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI"],"riskSummary":{"level":"medium","label":"Review before production","notes":["Quality score needs review"]},"outcomeEvidence":{"total":0,"successes":0,"failures":0,"notRelevant":0,"successRate":null,"installAttempts":0,"riskBlocked":0,"setupRequired":0,"installSuccessRate":null,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"recentSuccessRate":null,"recentFailureRate":null,"uniqueAgents":0,"agentProvenScore":0,"agentProvenLabel":"Needs first agent run","lastOutcomeAt":null,"label":"No agent outcome data yet"},"autoInstall":{"allowed":false,"sandboxRequired":true,"policy":"human_review_before_install","reason":"Human review or sandbox validation is required before automatic installation."},"bestFor":["devops","automation","argocd","aws","cloud","jenkins"],"doNotUseFor":["Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface","Automatic installation in a production workspace"],"knownRisks":["Quality score needs review"]},"safety":{"score":66,"level":"review_before_install","label":"Review before install","safety_tier":{"tier":"reviewed","label":"Reviewed with permission notes","badge":"REVIEWED","summary":"Usable candidate, but the agent should surface permission and audit notes before installation.","recommended_action":"Require human approval before installing into a real workspace.","auto_install_policy":"review","reasons":["Quality score needs review","66/100 agent safety score"]},"auto_install_allowed":false,"human_review_required":true,"blocked":false,"audit_risk":"safe_to_try","permission_hints":[{"id":"network","label":"Network access","reason":"Skill likely fetches remote pages, APIs, repositories, or external services.","severity":"medium"},{"id":"filesystem","label":"Filesystem access","reason":"Skill may read or write project files, documents, generated artifacts, or local workspace state.","severity":"medium"}],"policy_warnings":["Quality score needs review"],"constraints_applied":{"max_risk":"medium","needs_install_command":true,"min_stars":0}},"safety_gate":{"tier":"reviewed","label":"Reviewed with permission notes","badge":"REVIEWED","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Require human approval before installing into a real workspace.","reasons":["Quality score needs review","66/100 agent safety score"]},"supply_profile":{"track":{"slug":"coding","label":"Coding and developer agents","shortLabel":"Coding","description":"Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills."},"scenario":{"label":"Coding agents","description":"I need a coding agent that can understand a repository, edit code, and review pull requests.","useCases":[{"slug":"coding-agents","title":"Coding agents"},{"slug":"github-automation","title":"GitHub automation"},{"slug":"security-compliance","title":"Security and compliance"}]},"applicableAgents":["Claude Code","CLI","Codex","Cursor","JavaScript"],"install":{"ready":true,"command":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","primaryTarget":"CLI","targetCount":4},"githubQuality":{"stars":108,"starsLabel":"108","forks":339,"license":"Apache-2.0","qualityScore":74,"trustScore":80,"auditScore":82},"maintenance":{"status":"active","label":"1mo since push","daysSincePush":41,"lastPushedAt":"2026-05-23T11:08:01+00:00"},"risk":{"level":"safe_to_try","label":"Safe to try","requiresReview":true,"notes":["Quality score needs review"]},"coverageTags":["Coding","Coding agents","devops","automation","argocd","aws","cloud","jenkins"]},"audit":{"audit_score":82,"risk_level":"safe_to_try","risk_label":"Safe to try","warnings":["Quality score needs review"]},"decision":{"readiness_score":73,"readiness_label":"Strong shortlist","headline":"Companion skill for Coding agents","role":"Companion skill","primary_fit":"Coding agents","best_for":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects"],"risks":["No OpenAgentSkill engagement data yet"],"next_steps":["Install it in a sandbox agent and run one Coding agents task end to end.","Compare output quality, latency, and failure behavior against at least one alternative.","Promote it into production only after reviewing repository permissions, license, and maintenance signals."]},"agent_readable_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","name":"End To End Kubernetes DevSecOps Tetris Project","description":"Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality.","category":"devops","url":"https://www.openagentskill.com/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","repository":"https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","github_repo":"AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project"},"suited_tasks":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects","Inspect source files","Explain architecture","Patch bugs and verify changes","Inspect repository metadata","Compare code changes"],"suited_agents":["JavaScript","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"End To End Kubernetes DevSecOps Tetris Project\" agent skill from https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"End To End Kubernetes DevSecOps Tetris Project\" as a Claude Code skill from https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"End To End Kubernetes DevSecOps Tetris Project\" from https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality."}],"handoff_url":"https://www.openagentskill.com/api/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project"},"trust":{"score":80,"label":"Strong shortlist","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"108 GitHub stars","repoActivity":"108 stars, 339 forks","lastPushed":"1mo since push","license":"Apache-2.0","repository":"https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","install":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","argocd","aws","cloud","jenkins"],"known_risks":["Quality score needs review"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":82,"risk_level":"safe_to_try","risk_label":"Safe to try","warnings":["Quality score needs review"]},"safety_gate":{"tier":"reviewed","label":"Reviewed with permission notes","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Require human approval before installing into a real workspace."},"quality":{"score":74,"label":"Strong"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"1mo since push","risk":"Safe to try"},"alternative_skills":[],"do_not_use_when":["teams that need a vendor-supported SLA","high-compliance environments without internal security review","No OpenAgentSkill engagement data yet","Quality score needs review","Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface","Automatic installation in a production workspace"],"agent_contract":{"task_input":"Use End To End Kubernetes DevSecOps Tetris Project in an agent workflow","recommended_action":"Require human approval before installing into a real workspace.","install_policy":"review","minimum_review_before_use":["Trust: 80/100 Strong shortlist","Audit: 82/100 Safe to try","Safety: 66/100 Review before install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project (End To End Kubernetes DevSecOps Tetris Project)","install_command":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","risk_summary":"Safe to try; Reviewed with permission notes; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","task":"Use End To End Kubernetes DevSecOps Tetris Project in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","api":"https://www.openagentskill.com/api/agent/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","audit":"https://www.openagentskill.com/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project&task=Use%20End%20To%20End%20Kubernetes%20DevSecOps%20Tetris%20Project%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20End%20To%20End%20Kubernetes%20DevSecOps%20Tetris%20Project%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20End%20To%20End%20Kubernetes%20DevSecOps%20Tetris%20Project%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project/install","manifest":"https://www.openagentskill.com/api/registry/manifest/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project"}},"machine_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","name":"End To End Kubernetes DevSecOps Tetris Project","description":"Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality.","category":"devops","url":"https://www.openagentskill.com/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","repository":"https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","github_repo":"AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project"},"suited_tasks":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects","Inspect source files","Explain architecture","Patch bugs and verify changes","Inspect repository metadata","Compare code changes"],"suited_agents":["JavaScript","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"End To End Kubernetes DevSecOps Tetris Project\" agent skill from https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"End To End Kubernetes DevSecOps Tetris Project\" as a Claude Code skill from https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"End To End Kubernetes DevSecOps Tetris Project\" from https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality."}],"handoff_url":"https://www.openagentskill.com/api/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project"},"trust":{"score":80,"label":"Strong shortlist","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"108 GitHub stars","repoActivity":"108 stars, 339 forks","lastPushed":"1mo since push","license":"Apache-2.0","repository":"https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","install":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","argocd","aws","cloud","jenkins"],"known_risks":["Quality score needs review"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":82,"risk_level":"safe_to_try","risk_label":"Safe to try","warnings":["Quality score needs review"]},"safety_gate":{"tier":"reviewed","label":"Reviewed with permission notes","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Require human approval before installing into a real workspace."},"quality":{"score":74,"label":"Strong"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"1mo since push","risk":"Safe to try"},"alternative_skills":[],"do_not_use_when":["teams that need a vendor-supported SLA","high-compliance environments without internal security review","No OpenAgentSkill engagement data yet","Quality score needs review","Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface","Automatic installation in a production workspace"],"agent_contract":{"task_input":"Use End To End Kubernetes DevSecOps Tetris Project in an agent workflow","recommended_action":"Require human approval before installing into a real workspace.","install_policy":"review","minimum_review_before_use":["Trust: 80/100 Strong shortlist","Audit: 82/100 Safe to try","Safety: 66/100 Review before install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project (End To End Kubernetes DevSecOps Tetris Project)","install_command":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","risk_summary":"Safe to try; Reviewed with permission notes; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","task":"Use End To End Kubernetes DevSecOps Tetris Project in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","api":"https://www.openagentskill.com/api/agent/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","audit":"https://www.openagentskill.com/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project&task=Use%20End%20To%20End%20Kubernetes%20DevSecOps%20Tetris%20Project%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20End%20To%20End%20Kubernetes%20DevSecOps%20Tetris%20Project%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20End%20To%20End%20Kubernetes%20DevSecOps%20Tetris%20Project%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project/install","manifest":"https://www.openagentskill.com/api/registry/manifest/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project"}},"platforms":["JavaScript","DevOps","Claude Code"],"use_cases":[{"slug":"coding-agents","title":"Coding agents","url":"https://www.openagentskill.com/use-cases/coding-agents"},{"slug":"github-automation","title":"GitHub automation","url":"https://www.openagentskill.com/use-cases/github-automation"},{"slug":"security-compliance","title":"Security and compliance","url":"https://www.openagentskill.com/use-cases/security-compliance"},{"slug":"rag-knowledge","title":"RAG and knowledge","url":"https://www.openagentskill.com/use-cases/rag-knowledge"}],"install":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","install_targets":[{"id":"openagentskill-cli","label":"CLI","title":"OpenAgentSkill CLI","kind":"command","value":"npx skills add AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","description":"Use the registry command when your workflow supports the OpenAgentSkill installer.","copyLabel":"Copy command"},{"id":"codex","label":"Codex","title":"Codex install prompt","kind":"agent-prompt","value":"Install the \"End To End Kubernetes DevSecOps Tetris Project\" agent skill from https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality.","description":"Give Codex a repo-aware install prompt when the skill is not available through a local CLI.","copyLabel":"Copy prompt"},{"id":"claude-code","label":"Claude Code","title":"Claude Code skill prompt","kind":"agent-prompt","value":"Add \"End To End Kubernetes DevSecOps Tetris Project\" as a Claude Code skill from https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality.","description":"Use this prompt to ask Claude Code to add the skill and explain the local activation steps.","copyLabel":"Copy prompt"},{"id":"cursor","label":"Cursor","title":"Cursor rule prompt","kind":"agent-prompt","value":"Turn \"End To End Kubernetes DevSecOps Tetris Project\" from https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Hands-on DevSecOps project deploying a Tetris game on AWS EKS. Features Jenkins CI/CD, ArgoCD GitOps, Terraform-based IaC, Kubernetes, Docker, Trivy vulnerability scanning, OWASP Dependency-Check, and SonarQube for code quality.","description":"Use this when installing as Cursor project rules or reusable agent instructions.","copyLabel":"Copy prompt"}],"repository":"https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","github_repo":"AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project","version":"1.0.0","license":"Apache-2.0","updated_at":"2026-06-21T02:11:20.862235+00:00","canonical_key":"amanpathak-devops/end-to-end-kubernetes-devsecops-tetris-project","recommendation_reasons":["Matches task terms: devsecops","Install handoff is available","Repository freshness signal is available","Registry match score 31"],"urls":{"web":"https://www.openagentskill.com/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","api":"https://www.openagentskill.com/api/agent/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project","install_api":"https://www.openagentskill.com/api/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project/install","audit":"https://www.openagentskill.com/skills/amanpathak-devops-end-to-end-kubernetes-devsecops-tetris-project/audit","repository":"https://github.com/AmanPathak-DevOps/End-to-End-Kubernetes-DevSecOps-Tetris-Project"}},{"rank":5,"match_score":29,"raw_match_score":296.3,"slug":"devopsinsiders-azure-devsecops-batch-15","name":"Azure Devsecops Batch 15","description":"Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions.","tagline":"Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions.","category":"devops","tags":["devops","automation","devsecops","gitops","hcl","github"],"author":{"name":"devopsinsiders","verified":false,"url":"https://github.com/devopsinsiders"},"attribution":{"status":"community_indexed","statusLabel":"Community indexed","shortLabel":"COMMUNITY INDEXED","sourceLabel":"GitHub star discovery","sourceDetail":"devopsinsiders/azure-devsecops-batch-15","creatorName":"devopsinsiders","creatorUrl":"https://github.com/devopsinsiders","sourceUrl":"https://github.com/devopsinsiders/azure-devsecops-batch-15","indexedBy":"OpenAgentSkill community index","claimUrl":"https://www.openagentskill.com/skills/devopsinsiders-azure-devsecops-batch-15#claim-this-skill","claimCta":"Claim this skill","trustNote":"This listing was indexed from public sources and is not marked official until a maintainer claim is approved.","publicNote":"Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals."},"stats":{"stars":104,"forks":38,"downloads":0,"rating":0,"review_count":0,"quality_score":32.85},"quality":{"score":46,"tier":"review","label":"Needs review","summary":"Inspect the repository carefully before adding it to an agent workflow.","signals":[{"label":"GitHub stars","value":"104","tone":"neutral"},{"label":"Freshness","value":"1y ago","tone":"warning"},{"label":"Install ready","value":"Yes","tone":"positive"},{"label":"License","value":"GPL-3.0","tone":"neutral"}],"warnings":["Repository looks stale"]},"trust":{"version":"trust-score-v4","score":74,"tier":"strong","label":"Strong shortlist","summary":"Good trust signals with a few areas worth checking before rollout.","recommendedAction":"Test in a sandbox workflow and compare its install path with close alternatives.","dimensions":[{"id":"github_adoption","label":"GitHub adoption","score":62,"weight":0.13,"status":"info","detail":"104 GitHub stars"},{"id":"repo_activity","label":"Stars/forks activity","score":57,"weight":0.08,"status":"warn","detail":"104 stars, 38 forks; issue activity unavailable in current metadata"},{"id":"maintenance","label":"Recent maintenance","score":38,"weight":0.14,"status":"fail","detail":"1y since push"},{"id":"license","label":"License clarity","score":86,"weight":0.09,"status":"pass","detail":"GPL-3.0"},{"id":"documentation","label":"README/SKILL.md completeness","score":90,"weight":0.14,"status":"pass","detail":"Metadata includes enough usage and workflow context"},{"id":"dependency_risk","label":"Dependency/runtime risk","score":90,"weight":0.12,"status":"pass","detail":"no major dependency risk hints in public metadata"},{"id":"installability","label":"Install availability","score":92,"weight":0.1,"status":"pass","detail":"npx skills add devopsinsiders/azure-devsecops-batch-15"},{"id":"install_safety","label":"Install command safety","score":92,"weight":0.1,"status":"pass","detail":"standard package or runtime install path"},{"id":"permission_surface","label":"Permission surface","score":86,"weight":0.07,"status":"pass","detail":"filesystem or document access"},{"id":"repository","label":"Repository evidence","score":86,"weight":0.04,"status":"pass","detail":"https://github.com/devopsinsiders/azure-devsecops-batch-15"},{"id":"review_status","label":"Review status","score":88,"weight":0.05,"status":"pass","detail":"AI review data available"},{"id":"agent_outcomes","label":"Agent Proven outcomes","score":54,"weight":0.13,"status":"info","detail":"No agent outcome data yet"}],"checks":[{"status":"info","label":"GitHub adoption","detail":"104 GitHub stars"},{"status":"warn","label":"Stars/forks activity","detail":"104 stars, 38 forks; issue activity unavailable in current metadata"},{"status":"fail","label":"Recent maintenance","detail":"1y since push"},{"status":"pass","label":"License clarity","detail":"GPL-3.0"},{"status":"pass","label":"README/SKILL.md completeness","detail":"Metadata includes enough usage and workflow context"},{"status":"pass","label":"Dependency/runtime risk","detail":"no major dependency risk hints in public metadata"},{"status":"pass","label":"Install availability","detail":"npx skills add devopsinsiders/azure-devsecops-batch-15"},{"status":"pass","label":"Install command safety","detail":"standard package or runtime install path"},{"status":"pass","label":"Permission surface","detail":"filesystem or document access"},{"status":"pass","label":"Repository evidence","detail":"https://github.com/devopsinsiders/azure-devsecops-batch-15"},{"status":"pass","label":"Review status","detail":"AI review data available"},{"status":"info","label":"Agent Proven outcomes","detail":"No agent outcome data yet"},{"status":"warn","label":"Ownership","detail":"No approved owner claim yet"},{"status":"info","label":"OpenAgentSkill usage","detail":"No local usage activity yet"},{"status":"info","label":"Agent outcomes","detail":"No agent outcome data yet"}],"strengths":["AI review approved","Install path is available","Repository evidence is available","Install command has no obvious high-risk pattern"],"warnings":["Repository looks stale","Quality score needs review","Stars/forks activity: 104 stars, 38 forks; issue activity unavailable in current metadata","Recent maintenance: 1y since push"],"evidence":{"stars":"104 GitHub stars","repoActivity":"104 stars, 38 forks","lastPushed":"1y since push","license":"GPL-3.0","repository":"https://github.com/devopsinsiders/azure-devsecops-batch-15","install":"npx skills add devopsinsiders/azure-devsecops-batch-15","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"installReadiness":{"ready":true,"command":"npx skills add devopsinsiders/azure-devsecops-batch-15","policy":"human_review_before_install","label":"Human review before install","notes":["Install path is available","Repository evidence is available","License is declared","No Agent Proven outcome evidence yet","1y since push"]},"agentCompatibility":["HCL","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI"],"riskSummary":{"level":"medium","label":"Review before production","notes":["Repository looks stale","Quality score needs review","Stars/forks activity: 104 stars, 38 forks; issue activity unavailable in current metadata","Recent maintenance: 1y since push"]},"outcomeEvidence":{"total":0,"successes":0,"failures":0,"notRelevant":0,"successRate":null,"installAttempts":0,"riskBlocked":0,"setupRequired":0,"installSuccessRate":null,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"recentSuccessRate":null,"recentFailureRate":null,"uniqueAgents":0,"agentProvenScore":0,"agentProvenLabel":"Needs first agent run","lastOutcomeAt":null,"label":"No agent outcome data yet"},"autoInstall":{"allowed":false,"sandboxRequired":true,"policy":"human_review_before_install","reason":"Human review or sandbox validation is required before automatic installation."},"bestFor":["devops","automation","devsecops","gitops","hcl","github"],"doNotUseFor":["Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface","Automatic installation in a production workspace"],"knownRisks":["Repository looks stale","Quality score needs review","Stars/forks activity: 104 stars, 38 forks; issue activity unavailable in current metadata","Recent maintenance: 1y since push"]},"safety":{"score":50,"level":"avoid_auto_install","label":"Avoid automatic install","safety_tier":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","summary":"Sparse or mixed signals. Useful for discovery, but not for autonomous installation.","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","auto_install_policy":"review","reasons":["Repository appears stale","50/100 agent safety score"]},"auto_install_allowed":false,"human_review_required":true,"blocked":false,"audit_risk":"needs_review","permission_hints":[{"id":"network","label":"Network access","reason":"Skill likely fetches remote pages, APIs, repositories, or external services.","severity":"medium"},{"id":"filesystem","label":"Filesystem access","reason":"Skill may read or write project files, documents, generated artifacts, or local workspace state.","severity":"medium"}],"policy_warnings":["Repository appears stale"],"constraints_applied":{"max_risk":"medium","needs_install_command":true,"min_stars":0}},"safety_gate":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","reasons":["Repository appears stale","50/100 agent safety score"]},"supply_profile":{"track":{"slug":"coding","label":"Coding and developer agents","shortLabel":"Coding","description":"Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills."},"scenario":{"label":"Coding agents","description":"I need a coding agent that can understand a repository, edit code, and review pull requests.","useCases":[{"slug":"coding-agents","title":"Coding agents"},{"slug":"github-automation","title":"GitHub automation"},{"slug":"rag-knowledge","title":"RAG and knowledge"}]},"applicableAgents":["Claude Code","CLI","Codex","Cursor","HCL"],"install":{"ready":true,"command":"npx skills add devopsinsiders/azure-devsecops-batch-15","primaryTarget":"CLI","targetCount":4},"githubQuality":{"stars":104,"starsLabel":"104","forks":38,"license":"GPL-3.0","qualityScore":46,"trustScore":74,"auditScore":66},"maintenance":{"status":"stale","label":"1y since push","daysSincePush":513,"lastPushedAt":"2025-02-05T17:45:51+00:00"},"risk":{"level":"needs_review","label":"Needs review","requiresReview":true,"notes":["Repository appears stale","Repository looks stale","Quality score needs review","Stars/forks activity: 104 stars, 38 forks; issue activity unavailable in current metadata","Recent maintenance: 1y since push"]},"coverageTags":["Coding","Coding agents","devops","automation","devsecops","gitops","hcl","github"]},"audit":{"audit_score":66,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Stars/forks activity: 104 stars, 38 forks; issue activity unavailable in current metadata","Recent maintenance: 1y since push"]},"decision":{"readiness_score":36,"readiness_label":"Needs manual review","headline":"Needs validation for Coding agents","role":"Needs validation","primary_fit":"Coding agents","best_for":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects"],"risks":["Repository looks stale","No OpenAgentSkill engagement data yet"],"next_steps":["Install it in a sandbox agent and run one Coding agents task end to end.","Compare output quality, latency, and failure behavior against at least one alternative.","Promote it into production only after reviewing repository permissions, license, and maintenance signals."]},"agent_readable_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"devopsinsiders-azure-devsecops-batch-15","name":"Azure Devsecops Batch 15","description":"Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions.","category":"devops","url":"https://www.openagentskill.com/skills/devopsinsiders-azure-devsecops-batch-15","repository":"https://github.com/devopsinsiders/azure-devsecops-batch-15","github_repo":"devopsinsiders/azure-devsecops-batch-15"},"suited_tasks":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects","Inspect source files","Explain architecture","Patch bugs and verify changes","Inspect repository metadata","Compare code changes"],"suited_agents":["HCL","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add devopsinsiders/azure-devsecops-batch-15","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add devopsinsiders/azure-devsecops-batch-15"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Azure Devsecops Batch 15\" agent skill from https://github.com/devopsinsiders/azure-devsecops-batch-15. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Azure Devsecops Batch 15\" as a Claude Code skill from https://github.com/devopsinsiders/azure-devsecops-batch-15. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Azure Devsecops Batch 15\" from https://github.com/devopsinsiders/azure-devsecops-batch-15 into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions."}],"handoff_url":"https://www.openagentskill.com/api/skills/devopsinsiders-azure-devsecops-batch-15/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/devopsinsiders-azure-devsecops-batch-15"},"trust":{"score":74,"label":"Strong shortlist","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"104 GitHub stars","repoActivity":"104 stars, 38 forks","lastPushed":"1y since push","license":"GPL-3.0","repository":"https://github.com/devopsinsiders/azure-devsecops-batch-15","install":"npx skills add devopsinsiders/azure-devsecops-batch-15","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","devsecops","gitops","hcl","github"],"known_risks":["Repository looks stale","Quality score needs review","Stars/forks activity: 104 stars, 38 forks; issue activity unavailable in current metadata","Recent maintenance: 1y since push"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":66,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Stars/forks activity: 104 stars, 38 forks; issue activity unavailable in current metadata","Recent maintenance: 1y since push"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":46,"label":"Needs review"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"1y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","Repository appears stale","Quality score needs review","Stars/forks activity: 104 stars, 38 forks; issue activity unavailable in current metadata","Recent maintenance: 1y since push"],"agent_contract":{"task_input":"Use Azure Devsecops Batch 15 in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 74/100 Strong shortlist","Audit: 66/100 Needs review","Safety: 50/100 Avoid automatic install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"devopsinsiders-azure-devsecops-batch-15 (Azure Devsecops Batch 15)","install_command":"npx skills add devopsinsiders/azure-devsecops-batch-15","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"devopsinsiders-azure-devsecops-batch-15","task":"Use Azure Devsecops Batch 15 in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/devopsinsiders-azure-devsecops-batch-15","api":"https://www.openagentskill.com/api/agent/skills/devopsinsiders-azure-devsecops-batch-15","audit":"https://www.openagentskill.com/skills/devopsinsiders-azure-devsecops-batch-15/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=devopsinsiders-azure-devsecops-batch-15&task=Use%20Azure%20Devsecops%20Batch%2015%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Azure%20Devsecops%20Batch%2015%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Azure%20Devsecops%20Batch%2015%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/devopsinsiders-azure-devsecops-batch-15/install","manifest":"https://www.openagentskill.com/api/registry/manifest/devopsinsiders-azure-devsecops-batch-15"}},"machine_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"devopsinsiders-azure-devsecops-batch-15","name":"Azure Devsecops Batch 15","description":"Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions.","category":"devops","url":"https://www.openagentskill.com/skills/devopsinsiders-azure-devsecops-batch-15","repository":"https://github.com/devopsinsiders/azure-devsecops-batch-15","github_repo":"devopsinsiders/azure-devsecops-batch-15"},"suited_tasks":["Coding agents workflows","Claude Code teams","builders willing to evaluate younger projects","Inspect source files","Explain architecture","Patch bugs and verify changes","Inspect repository metadata","Compare code changes"],"suited_agents":["HCL","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add devopsinsiders/azure-devsecops-batch-15","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add devopsinsiders/azure-devsecops-batch-15"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Azure Devsecops Batch 15\" agent skill from https://github.com/devopsinsiders/azure-devsecops-batch-15. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Azure Devsecops Batch 15\" as a Claude Code skill from https://github.com/devopsinsiders/azure-devsecops-batch-15. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Azure Devsecops Batch 15\" from https://github.com/devopsinsiders/azure-devsecops-batch-15 into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions."}],"handoff_url":"https://www.openagentskill.com/api/skills/devopsinsiders-azure-devsecops-batch-15/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/devopsinsiders-azure-devsecops-batch-15"},"trust":{"score":74,"label":"Strong shortlist","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"104 GitHub stars","repoActivity":"104 stars, 38 forks","lastPushed":"1y since push","license":"GPL-3.0","repository":"https://github.com/devopsinsiders/azure-devsecops-batch-15","install":"npx skills add devopsinsiders/azure-devsecops-batch-15","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","devsecops","gitops","hcl","github"],"known_risks":["Repository looks stale","Quality score needs review","Stars/forks activity: 104 stars, 38 forks; issue activity unavailable in current metadata","Recent maintenance: 1y since push"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":66,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Stars/forks activity: 104 stars, 38 forks; issue activity unavailable in current metadata","Recent maintenance: 1y since push"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":46,"label":"Needs review"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"1y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","Repository appears stale","Quality score needs review","Stars/forks activity: 104 stars, 38 forks; issue activity unavailable in current metadata","Recent maintenance: 1y since push"],"agent_contract":{"task_input":"Use Azure Devsecops Batch 15 in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 74/100 Strong shortlist","Audit: 66/100 Needs review","Safety: 50/100 Avoid automatic install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"devopsinsiders-azure-devsecops-batch-15 (Azure Devsecops Batch 15)","install_command":"npx skills add devopsinsiders/azure-devsecops-batch-15","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"devopsinsiders-azure-devsecops-batch-15","task":"Use Azure Devsecops Batch 15 in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/devopsinsiders-azure-devsecops-batch-15","api":"https://www.openagentskill.com/api/agent/skills/devopsinsiders-azure-devsecops-batch-15","audit":"https://www.openagentskill.com/skills/devopsinsiders-azure-devsecops-batch-15/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=devopsinsiders-azure-devsecops-batch-15&task=Use%20Azure%20Devsecops%20Batch%2015%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Azure%20Devsecops%20Batch%2015%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Azure%20Devsecops%20Batch%2015%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/devopsinsiders-azure-devsecops-batch-15/install","manifest":"https://www.openagentskill.com/api/registry/manifest/devopsinsiders-azure-devsecops-batch-15"}},"platforms":["HCL","DevOps","Claude Code"],"use_cases":[{"slug":"coding-agents","title":"Coding agents","url":"https://www.openagentskill.com/use-cases/coding-agents"},{"slug":"github-automation","title":"GitHub automation","url":"https://www.openagentskill.com/use-cases/github-automation"},{"slug":"rag-knowledge","title":"RAG and knowledge","url":"https://www.openagentskill.com/use-cases/rag-knowledge"},{"slug":"workflow-automation","title":"Workflow automation","url":"https://www.openagentskill.com/use-cases/workflow-automation"}],"install":"npx skills add devopsinsiders/azure-devsecops-batch-15","install_targets":[{"id":"openagentskill-cli","label":"CLI","title":"OpenAgentSkill CLI","kind":"command","value":"npx skills add devopsinsiders/azure-devsecops-batch-15","description":"Use the registry command when your workflow supports the OpenAgentSkill installer.","copyLabel":"Copy command"},{"id":"codex","label":"Codex","title":"Codex install prompt","kind":"agent-prompt","value":"Install the \"Azure Devsecops Batch 15\" agent skill from https://github.com/devopsinsiders/azure-devsecops-batch-15. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions.","description":"Give Codex a repo-aware install prompt when the skill is not available through a local CLI.","copyLabel":"Copy prompt"},{"id":"claude-code","label":"Claude Code","title":"Claude Code skill prompt","kind":"agent-prompt","value":"Add \"Azure Devsecops Batch 15\" as a Claude Code skill from https://github.com/devopsinsiders/azure-devsecops-batch-15. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions.","description":"Use this prompt to ask Claude Code to add the skill and explain the local activation steps.","copyLabel":"Copy prompt"},{"id":"cursor","label":"Cursor","title":"Cursor rule prompt","kind":"agent-prompt","value":"Turn \"Azure Devsecops Batch 15\" from https://github.com/devopsinsiders/azure-devsecops-batch-15 into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Welcome to the official repository for our class! 📚👩‍💻 Here, you'll find a organized collection of class notes, assignments, and code snippets generated during our sessions.","description":"Use this when installing as Cursor project rules or reusable agent instructions.","copyLabel":"Copy prompt"}],"repository":"https://github.com/devopsinsiders/azure-devsecops-batch-15","github_repo":"devopsinsiders/azure-devsecops-batch-15","version":"1.0.0","license":"GPL-3.0","updated_at":"2026-06-22T03:01:12.023352+00:00","canonical_key":"devopsinsiders/azure-devsecops-batch-15","recommendation_reasons":["Matches task terms: devsecops","Install handoff is available","Repository freshness signal is available","Registry match score 29"],"urls":{"web":"https://www.openagentskill.com/skills/devopsinsiders-azure-devsecops-batch-15","api":"https://www.openagentskill.com/api/agent/skills/devopsinsiders-azure-devsecops-batch-15","install_api":"https://www.openagentskill.com/api/skills/devopsinsiders-azure-devsecops-batch-15/install","audit":"https://www.openagentskill.com/skills/devopsinsiders-azure-devsecops-batch-15/audit","repository":"https://github.com/devopsinsiders/azure-devsecops-batch-15"}},{"rank":6,"match_score":19,"raw_match_score":200.3,"slug":"devsecops-bootcamp","name":"Bootcamp","description":"A open contribute bootcamp to develop DevSecOps skills...","tagline":"A open contribute bootcamp to develop DevSecOps skills...","category":"devops","tags":["devops","automation","shell","github"],"author":{"name":"devsecops","verified":false,"url":"https://github.com/devsecops"},"attribution":{"status":"community_indexed","statusLabel":"Community indexed","shortLabel":"COMMUNITY INDEXED","sourceLabel":"GitHub star discovery","sourceDetail":"devsecops/bootcamp","creatorName":"devsecops","creatorUrl":"https://github.com/devsecops","sourceUrl":"https://github.com/devsecops/bootcamp","indexedBy":"OpenAgentSkill community index","claimUrl":"https://www.openagentskill.com/skills/devsecops-bootcamp#claim-this-skill","claimCta":"Claim this skill","trustNote":"This listing was indexed from public sources and is not marked official until a maintainer claim is approved.","publicNote":"Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals."},"stats":{"stars":794,"forks":366,"downloads":0,"rating":0,"review_count":0,"quality_score":39},"quality":{"score":55,"tier":"promising","label":"Promising","summary":"Useful candidate, but compare it with alternatives before adopting.","signals":[{"label":"GitHub stars","value":"794","tone":"positive"},{"label":"Freshness","value":"3y ago","tone":"warning"},{"label":"Install ready","value":"Yes","tone":"positive"},{"label":"License","value":"Apache-2.0","tone":"neutral"}],"warnings":["Repository looks stale"]},"trust":{"version":"trust-score-v4","score":70,"tier":"review","label":"Manual review","summary":"Potentially useful, but at least one trust signal needs human inspection.","recommendedAction":"Inspect the repository, license, and recent activity before connecting it to agent workflows.","dimensions":[{"id":"github_adoption","label":"GitHub adoption","score":76,"weight":0.13,"status":"info","detail":"794 GitHub stars"},{"id":"repo_activity","label":"Stars/forks activity","score":77,"weight":0.08,"status":"info","detail":"794 stars, 366 forks; issue activity unavailable in current metadata"},{"id":"maintenance","label":"Recent maintenance","score":22,"weight":0.14,"status":"fail","detail":"3y since push"},{"id":"license","label":"License clarity","score":86,"weight":0.09,"status":"pass","detail":"Apache-2.0"},{"id":"documentation","label":"README/SKILL.md completeness","score":74,"weight":0.14,"status":"info","detail":"Public metadata needs stronger README/SKILL.md context"},{"id":"dependency_risk","label":"Dependency/runtime risk","score":72,"weight":0.12,"status":"info","detail":"command execution surface"},{"id":"installability","label":"Install availability","score":92,"weight":0.1,"status":"pass","detail":"npx skills add devsecops/bootcamp"},{"id":"install_safety","label":"Install command safety","score":92,"weight":0.1,"status":"pass","detail":"standard package or runtime install path"},{"id":"permission_surface","label":"Permission surface","score":62,"weight":0.07,"status":"info","detail":"shell or command execution, filesystem or document access"},{"id":"repository","label":"Repository evidence","score":86,"weight":0.04,"status":"pass","detail":"https://github.com/devsecops/bootcamp"},{"id":"review_status","label":"Review status","score":88,"weight":0.05,"status":"pass","detail":"AI review data available"},{"id":"agent_outcomes","label":"Agent Proven outcomes","score":54,"weight":0.13,"status":"info","detail":"No agent outcome data yet"}],"checks":[{"status":"info","label":"GitHub adoption","detail":"794 GitHub stars"},{"status":"info","label":"Stars/forks activity","detail":"794 stars, 366 forks; issue activity unavailable in current metadata"},{"status":"fail","label":"Recent maintenance","detail":"3y since push"},{"status":"pass","label":"License clarity","detail":"Apache-2.0"},{"status":"info","label":"README/SKILL.md completeness","detail":"Public metadata needs stronger README/SKILL.md context"},{"status":"info","label":"Dependency/runtime risk","detail":"command execution surface"},{"status":"pass","label":"Install availability","detail":"npx skills add devsecops/bootcamp"},{"status":"pass","label":"Install command safety","detail":"standard package or runtime install path"},{"status":"info","label":"Permission surface","detail":"shell or command execution, filesystem or document access"},{"status":"pass","label":"Repository evidence","detail":"https://github.com/devsecops/bootcamp"},{"status":"pass","label":"Review status","detail":"AI review data available"},{"status":"info","label":"Agent Proven outcomes","detail":"No agent outcome data yet"},{"status":"warn","label":"Ownership","detail":"No approved owner claim yet"},{"status":"info","label":"OpenAgentSkill usage","detail":"No local usage activity yet"},{"status":"info","label":"Agent outcomes","detail":"No agent outcome data yet"}],"strengths":["AI review approved","Install path is available","Repository evidence is available","Meaningful GitHub adoption signal","Install command has no obvious high-risk pattern"],"warnings":["Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"],"evidence":{"stars":"794 GitHub stars","repoActivity":"794 stars, 366 forks","lastPushed":"3y since push","license":"Apache-2.0","repository":"https://github.com/devsecops/bootcamp","install":"npx skills add devsecops/bootcamp","installSafety":"standard package or runtime install path","permissionSurface":"shell or command execution, filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"installReadiness":{"ready":true,"command":"npx skills add devsecops/bootcamp","policy":"human_review_before_install","label":"Human review before install","notes":["Install path is available","Repository evidence is available","License is declared","No Agent Proven outcome evidence yet","3y since push"]},"agentCompatibility":["Shell","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI"],"riskSummary":{"level":"medium","label":"Review before production","notes":["Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"outcomeEvidence":{"total":0,"successes":0,"failures":0,"notRelevant":0,"successRate":null,"installAttempts":0,"riskBlocked":0,"setupRequired":0,"installSuccessRate":null,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"recentSuccessRate":null,"recentFailureRate":null,"uniqueAgents":0,"agentProvenScore":0,"agentProvenLabel":"Needs first agent run","lastOutcomeAt":null,"label":"No agent outcome data yet"},"autoInstall":{"allowed":false,"sandboxRequired":true,"policy":"human_review_before_install","reason":"Human review or sandbox validation is required before automatic installation."},"bestFor":["devops","automation","shell","github"],"doNotUseFor":["Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface","Automatic installation in a production workspace"],"knownRisks":["Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"safety":{"score":36,"level":"avoid_auto_install","label":"Avoid automatic install","safety_tier":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","summary":"Sparse or mixed signals. Useful for discovery, but not for autonomous installation.","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","auto_install_policy":"review","reasons":["High-risk permission hints: Shell or command execution","36/100 agent safety score"]},"auto_install_allowed":false,"human_review_required":true,"blocked":false,"audit_risk":"needs_review","permission_hints":[{"id":"shell","label":"Shell or command execution","reason":"Skill metadata references terminal, CLI, shell, subprocess, or command execution workflows.","severity":"high"},{"id":"network","label":"Network access","reason":"Skill likely fetches remote pages, APIs, repositories, or external services.","severity":"medium"},{"id":"filesystem","label":"Filesystem access","reason":"Skill may read or write project files, documents, generated artifacts, or local workspace state.","severity":"medium"}],"policy_warnings":["High-risk permission hints: Shell or command execution","Repository appears stale"],"constraints_applied":{"max_risk":"medium","needs_install_command":true,"min_stars":0}},"safety_gate":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","reasons":["High-risk permission hints: Shell or command execution","36/100 agent safety score"]},"supply_profile":{"track":{"slug":"coding","label":"Coding and developer agents","shortLabel":"Coding","description":"Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills."},"scenario":{"label":"Coding agents","description":"I need a coding agent that can understand a repository, edit code, and review pull requests.","useCases":[{"slug":"coding-agents","title":"Coding agents"},{"slug":"rag-knowledge","title":"RAG and knowledge"},{"slug":"workflow-automation","title":"Workflow automation"}]},"applicableAgents":["Claude Code","CLI","Codex","Cursor","Shell"],"install":{"ready":true,"command":"npx skills add devsecops/bootcamp","primaryTarget":"CLI","targetCount":4},"githubQuality":{"stars":794,"starsLabel":"794","forks":366,"license":"Apache-2.0","qualityScore":55,"trustScore":70,"auditScore":64},"maintenance":{"status":"stale","label":"3y since push","daysSincePush":1019,"lastPushedAt":"2023-09-18T22:13:31+00:00"},"risk":{"level":"needs_review","label":"Needs review","requiresReview":true,"notes":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 3y since push","Needs review"]},"coverageTags":["Coding","Coding agents","devops","automation","shell","github"]},"audit":{"audit_score":64,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"decision":{"readiness_score":57,"readiness_label":"Needs manual review","headline":"Needs validation for Coding agents","role":"Needs validation","primary_fit":"Coding agents","best_for":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals"],"risks":["Repository looks stale","No OpenAgentSkill engagement data yet"],"next_steps":["Install it in a sandbox agent and run one Coding agents task end to end.","Compare output quality, latency, and failure behavior against at least one alternative.","Promote it into production only after reviewing repository permissions, license, and maintenance signals."]},"agent_readable_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"devsecops-bootcamp","name":"Bootcamp","description":"A open contribute bootcamp to develop DevSecOps skills...","category":"devops","url":"https://www.openagentskill.com/skills/devsecops-bootcamp","repository":"https://github.com/devsecops/bootcamp","github_repo":"devsecops/bootcamp"},"suited_tasks":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals","Inspect source files","Explain architecture","Patch bugs and verify changes","Chunk documents","Create embeddings"],"suited_agents":["Shell","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add devsecops/bootcamp","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add devsecops/bootcamp"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Bootcamp\" agent skill from https://github.com/devsecops/bootcamp. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: A open contribute bootcamp to develop DevSecOps skills..."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Bootcamp\" as a Claude Code skill from https://github.com/devsecops/bootcamp. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: A open contribute bootcamp to develop DevSecOps skills..."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Bootcamp\" from https://github.com/devsecops/bootcamp into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: A open contribute bootcamp to develop DevSecOps skills..."}],"handoff_url":"https://www.openagentskill.com/api/skills/devsecops-bootcamp/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/devsecops-bootcamp"},"trust":{"score":70,"label":"Manual review","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"794 GitHub stars","repoActivity":"794 stars, 366 forks","lastPushed":"3y since push","license":"Apache-2.0","repository":"https://github.com/devsecops/bootcamp","install":"npx skills add devsecops/bootcamp","installSafety":"standard package or runtime install path","permissionSurface":"shell or command execution, filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","shell","github"],"known_risks":["Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":64,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":55,"label":"Promising"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"3y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","High-risk permission hints: Shell or command execution","Repository appears stale","Quality score needs review","Recent maintenance: 3y since push"],"agent_contract":{"task_input":"Use Bootcamp in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 70/100 Manual review","Audit: 64/100 Needs review","Safety: 36/100 Avoid automatic install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"devsecops-bootcamp (Bootcamp)","install_command":"npx skills add devsecops/bootcamp","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"devsecops-bootcamp","task":"Use Bootcamp in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/devsecops-bootcamp","api":"https://www.openagentskill.com/api/agent/skills/devsecops-bootcamp","audit":"https://www.openagentskill.com/skills/devsecops-bootcamp/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=devsecops-bootcamp&task=Use%20Bootcamp%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Bootcamp%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Bootcamp%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/devsecops-bootcamp/install","manifest":"https://www.openagentskill.com/api/registry/manifest/devsecops-bootcamp"}},"machine_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"devsecops-bootcamp","name":"Bootcamp","description":"A open contribute bootcamp to develop DevSecOps skills...","category":"devops","url":"https://www.openagentskill.com/skills/devsecops-bootcamp","repository":"https://github.com/devsecops/bootcamp","github_repo":"devsecops/bootcamp"},"suited_tasks":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals","Inspect source files","Explain architecture","Patch bugs and verify changes","Chunk documents","Create embeddings"],"suited_agents":["Shell","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add devsecops/bootcamp","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add devsecops/bootcamp"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Bootcamp\" agent skill from https://github.com/devsecops/bootcamp. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: A open contribute bootcamp to develop DevSecOps skills..."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Bootcamp\" as a Claude Code skill from https://github.com/devsecops/bootcamp. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: A open contribute bootcamp to develop DevSecOps skills..."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Bootcamp\" from https://github.com/devsecops/bootcamp into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: A open contribute bootcamp to develop DevSecOps skills..."}],"handoff_url":"https://www.openagentskill.com/api/skills/devsecops-bootcamp/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/devsecops-bootcamp"},"trust":{"score":70,"label":"Manual review","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"794 GitHub stars","repoActivity":"794 stars, 366 forks","lastPushed":"3y since push","license":"Apache-2.0","repository":"https://github.com/devsecops/bootcamp","install":"npx skills add devsecops/bootcamp","installSafety":"standard package or runtime install path","permissionSurface":"shell or command execution, filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","shell","github"],"known_risks":["Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":64,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":55,"label":"Promising"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"3y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","High-risk permission hints: Shell or command execution","Repository appears stale","Quality score needs review","Recent maintenance: 3y since push"],"agent_contract":{"task_input":"Use Bootcamp in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 70/100 Manual review","Audit: 64/100 Needs review","Safety: 36/100 Avoid automatic install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"devsecops-bootcamp (Bootcamp)","install_command":"npx skills add devsecops/bootcamp","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"devsecops-bootcamp","task":"Use Bootcamp in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/devsecops-bootcamp","api":"https://www.openagentskill.com/api/agent/skills/devsecops-bootcamp","audit":"https://www.openagentskill.com/skills/devsecops-bootcamp/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=devsecops-bootcamp&task=Use%20Bootcamp%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Bootcamp%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Bootcamp%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/devsecops-bootcamp/install","manifest":"https://www.openagentskill.com/api/registry/manifest/devsecops-bootcamp"}},"platforms":["Shell","DevOps","Claude Code"],"use_cases":[{"slug":"coding-agents","title":"Coding agents","url":"https://www.openagentskill.com/use-cases/coding-agents"},{"slug":"rag-knowledge","title":"RAG and knowledge","url":"https://www.openagentskill.com/use-cases/rag-knowledge"},{"slug":"workflow-automation","title":"Workflow automation","url":"https://www.openagentskill.com/use-cases/workflow-automation"},{"slug":"sports-analytics","title":"Sports analytics","url":"https://www.openagentskill.com/use-cases/sports-analytics"}],"install":"npx skills add devsecops/bootcamp","install_targets":[{"id":"openagentskill-cli","label":"CLI","title":"OpenAgentSkill CLI","kind":"command","value":"npx skills add devsecops/bootcamp","description":"Use the registry command when your workflow supports the OpenAgentSkill installer.","copyLabel":"Copy command"},{"id":"codex","label":"Codex","title":"Codex install prompt","kind":"agent-prompt","value":"Install the \"Bootcamp\" agent skill from https://github.com/devsecops/bootcamp. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: A open contribute bootcamp to develop DevSecOps skills...","description":"Give Codex a repo-aware install prompt when the skill is not available through a local CLI.","copyLabel":"Copy prompt"},{"id":"claude-code","label":"Claude Code","title":"Claude Code skill prompt","kind":"agent-prompt","value":"Add \"Bootcamp\" as a Claude Code skill from https://github.com/devsecops/bootcamp. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: A open contribute bootcamp to develop DevSecOps skills...","description":"Use this prompt to ask Claude Code to add the skill and explain the local activation steps.","copyLabel":"Copy prompt"},{"id":"cursor","label":"Cursor","title":"Cursor rule prompt","kind":"agent-prompt","value":"Turn \"Bootcamp\" from https://github.com/devsecops/bootcamp into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: A open contribute bootcamp to develop DevSecOps skills...","description":"Use this when installing as Cursor project rules or reusable agent instructions.","copyLabel":"Copy prompt"}],"repository":"https://github.com/devsecops/bootcamp","github_repo":"devsecops/bootcamp","version":"1.0.0","license":"Apache-2.0","updated_at":"2026-06-16T09:15:53.166225+00:00","canonical_key":"devsecops/bootcamp","recommendation_reasons":["Matches task terms: devsecops","Useful GitHub adoption: 794 stars","Install handoff is available","Repository freshness signal is available","Registry match score 19"],"urls":{"web":"https://www.openagentskill.com/skills/devsecops-bootcamp","api":"https://www.openagentskill.com/api/agent/skills/devsecops-bootcamp","install_api":"https://www.openagentskill.com/api/skills/devsecops-bootcamp/install","audit":"https://www.openagentskill.com/skills/devsecops-bootcamp/audit","repository":"https://github.com/devsecops/bootcamp"}},{"rank":7,"match_score":14,"raw_match_score":143.3,"slug":"defectdojo-django-defectdojo","name":"Django DefectDojo","description":"Open-Source Unified Vulnerability Management, DevSecOps & ASPM","tagline":"Open-Source Unified Vulnerability Management, DevSecOps & ASPM","category":"devops","tags":["kubernetes","devops","analytics","appsec","automation","devsecops","django","hacktoberfest","owasp","python"],"author":{"name":"DefectDojo","verified":true,"url":"https://github.com/DefectDojo"},"attribution":{"status":"community_indexed","statusLabel":"Community indexed","shortLabel":"COMMUNITY INDEXED","sourceLabel":"GitHub star discovery","sourceDetail":"DefectDojo/django-DefectDojo","creatorName":"DefectDojo","creatorUrl":"https://github.com/DefectDojo","sourceUrl":"https://github.com/DefectDojo/django-DefectDojo","indexedBy":"OpenAgentSkill community index","claimUrl":"https://www.openagentskill.com/skills/defectdojo-django-defectdojo#claim-this-skill","claimCta":"Claim this skill","trustNote":"This listing was indexed from public sources and is not marked official until a maintainer claim is approved.","publicNote":"Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals."},"stats":{"stars":4764,"forks":1883,"downloads":0,"rating":0,"review_count":0,"quality_score":67.45},"quality":{"score":100,"tier":"excellent","label":"Excellent","summary":"High-confidence pick with strong adoption and healthy maintenance signals.","signals":[{"label":"GitHub stars","value":"4.8K","tone":"positive"},{"label":"Freshness","value":"17d ago","tone":"positive"},{"label":"Install ready","value":"Yes","tone":"positive"},{"label":"License","value":"BSD-3-Clause","tone":"neutral"}],"warnings":[]},"trust":{"version":"trust-score-v4","score":89,"tier":"production","label":"Production candidate","summary":"Strong OpenAgentSkill Trust Score across adoption, recent maintenance, license clarity, documentation, dependency/runtime risk, install safety, permission surface, and install availability.","recommendedAction":"Shortlist for production use, then run a normal repository and dependency review.","dimensions":[{"id":"github_adoption","label":"GitHub adoption","score":86,"weight":0.13,"status":"pass","detail":"4.8K GitHub stars"},{"id":"repo_activity","label":"Stars/forks activity","score":88,"weight":0.08,"status":"pass","detail":"4.8K stars, 1.9K forks; issue activity unavailable in current metadata"},{"id":"maintenance","label":"Recent maintenance","score":100,"weight":0.14,"status":"pass","detail":"17d since push"},{"id":"license","label":"License clarity","score":86,"weight":0.09,"status":"pass","detail":"BSD-3-Clause"},{"id":"documentation","label":"README/SKILL.md completeness","score":74,"weight":0.14,"status":"info","detail":"Public metadata needs stronger README/SKILL.md context"},{"id":"dependency_risk","label":"Dependency/runtime risk","score":90,"weight":0.12,"status":"pass","detail":"no major dependency risk hints in public metadata"},{"id":"installability","label":"Install availability","score":92,"weight":0.1,"status":"pass","detail":"npx skills add DefectDojo/django-DefectDojo"},{"id":"install_safety","label":"Install command safety","score":92,"weight":0.1,"status":"pass","detail":"standard package or runtime install path"},{"id":"permission_surface","label":"Permission surface","score":86,"weight":0.07,"status":"pass","detail":"filesystem or document access"},{"id":"repository","label":"Repository evidence","score":86,"weight":0.04,"status":"pass","detail":"https://github.com/DefectDojo/django-DefectDojo"},{"id":"review_status","label":"Review status","score":88,"weight":0.05,"status":"pass","detail":"AI review data available"},{"id":"agent_outcomes","label":"Agent Proven outcomes","score":54,"weight":0.13,"status":"info","detail":"No agent outcome data yet"}],"checks":[{"status":"pass","label":"GitHub adoption","detail":"4.8K GitHub stars"},{"status":"pass","label":"Stars/forks activity","detail":"4.8K stars, 1.9K forks; issue activity unavailable in current metadata"},{"status":"pass","label":"Recent maintenance","detail":"17d since push"},{"status":"pass","label":"License clarity","detail":"BSD-3-Clause"},{"status":"info","label":"README/SKILL.md completeness","detail":"Public metadata needs stronger README/SKILL.md context"},{"status":"pass","label":"Dependency/runtime risk","detail":"no major dependency risk hints in public metadata"},{"status":"pass","label":"Install availability","detail":"npx skills add DefectDojo/django-DefectDojo"},{"status":"pass","label":"Install command safety","detail":"standard package or runtime install path"},{"status":"pass","label":"Permission surface","detail":"filesystem or document access"},{"status":"pass","label":"Repository evidence","detail":"https://github.com/DefectDojo/django-DefectDojo"},{"status":"pass","label":"Review status","detail":"AI review data available"},{"status":"info","label":"Agent Proven outcomes","detail":"No agent outcome data yet"},{"status":"pass","label":"Ownership","detail":"Listing manually verified"},{"status":"info","label":"OpenAgentSkill usage","detail":"No local usage activity yet"},{"status":"info","label":"Agent outcomes","detail":"No agent outcome data yet"}],"strengths":["Manually verified listing","AI review approved","Install path is available","Repository evidence is available","Recently maintained repository","Meaningful GitHub adoption signal","Install command has no obvious high-risk pattern"],"warnings":[],"evidence":{"stars":"4.8K GitHub stars","repoActivity":"4.8K stars, 1.9K forks","lastPushed":"17d since push","license":"BSD-3-Clause","repository":"https://github.com/DefectDojo/django-DefectDojo","install":"npx skills add DefectDojo/django-DefectDojo","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"installReadiness":{"ready":true,"command":"npx skills add DefectDojo/django-DefectDojo","policy":"agent_install_candidate","label":"Agent install candidate","notes":["Install path is available","Repository evidence is available","License is declared","No Agent Proven outcome evidence yet","17d since push"]},"agentCompatibility":["HTML","Kubernetes","Codex","Claude Code","Cursor","OpenAgentSkill CLI"],"riskSummary":{"level":"low","label":"Low metadata risk","notes":["No major trust warnings detected from available metadata"]},"outcomeEvidence":{"total":0,"successes":0,"failures":0,"notRelevant":0,"successRate":null,"installAttempts":0,"riskBlocked":0,"setupRequired":0,"installSuccessRate":null,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"recentSuccessRate":null,"recentFailureRate":null,"uniqueAgents":0,"agentProvenScore":0,"agentProvenLabel":"Needs first agent run","lastOutcomeAt":null,"label":"No agent outcome data yet"},"autoInstall":{"allowed":true,"sandboxRequired":true,"policy":"agent_install_candidate","reason":"Trust Score v4 allows sandbox-first agent installation after normal workspace review."},"bestFor":["devops","kubernetes","analytics","appsec","automation","devsecops"],"doNotUseFor":["Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface"],"knownRisks":[]},"safety":{"score":86,"level":"safe_to_install","label":"Safe to install with normal review","safety_tier":{"tier":"verified","label":"Verified","badge":"VERIFIED","summary":"Strong metadata, audit, install, and review signals. Suitable for agent shortlists after normal workspace review.","recommended_action":"Allow agent install in a sandbox or low-risk workspace, then promote after one successful narrow task.","auto_install_policy":"allow","reasons":["Verified listing","Safe-to-try audit","86/100 agent safety score"]},"auto_install_allowed":true,"human_review_required":false,"blocked":false,"audit_risk":"safe_to_try","permission_hints":[{"id":"network","label":"Network access","reason":"Skill likely fetches remote pages, APIs, repositories, or external services.","severity":"medium"},{"id":"filesystem","label":"Filesystem access","reason":"Skill may read or write project files, documents, generated artifacts, or local workspace state.","severity":"medium"}],"policy_warnings":[],"constraints_applied":{"max_risk":"medium","needs_install_command":true,"min_stars":0}},"safety_gate":{"tier":"verified","label":"Verified","badge":"VERIFIED","auto_install_policy":"allow","auto_install_allowed":true,"human_review_required":false,"blocked":false,"recommended_action":"Allow agent install in a sandbox or low-risk workspace, then promote after one successful narrow task.","reasons":["Verified listing","Safe-to-try audit","86/100 agent safety score"]},"supply_profile":{"track":{"slug":"coding","label":"Coding and developer agents","shortLabel":"Coding","description":"Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills."},"scenario":{"label":"Coding agents","description":"I need a coding agent that can understand a repository, edit code, and review pull requests.","useCases":[{"slug":"coding-agents","title":"Coding agents"},{"slug":"rag-knowledge","title":"RAG and knowledge"},{"slug":"workflow-automation","title":"Workflow automation"}]},"applicableAgents":["Claude Code","CLI","Codex","Cursor","HTML"],"install":{"ready":true,"command":"npx skills add DefectDojo/django-DefectDojo","primaryTarget":"CLI","targetCount":4},"githubQuality":{"stars":4764,"starsLabel":"4.8K","forks":1883,"license":"BSD-3-Clause","qualityScore":100,"trustScore":89,"auditScore":94},"maintenance":{"status":"fresh","label":"17d since push","daysSincePush":17,"lastPushedAt":"2026-06-16T06:52:55+00:00"},"risk":{"level":"safe_to_try","label":"Safe to try","requiresReview":false,"notes":["No major risk signals from available metadata"]},"coverageTags":["Coding","Coding agents","devops","kubernetes","analytics","appsec","automation","devsecops"]},"audit":{"audit_score":94,"risk_level":"safe_to_try","risk_label":"Safe to try","warnings":[]},"decision":{"readiness_score":100,"readiness_label":"Production-ready","headline":"Primary pick for Coding agents","role":"Primary pick","primary_fit":"Coding agents","best_for":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals"],"risks":["No OpenAgentSkill engagement data yet"],"next_steps":["Install it in a sandbox agent and run one Coding agents task end to end.","Compare output quality, latency, and failure behavior against at least one alternative.","Promote it into production only after reviewing repository permissions, license, and maintenance signals."]},"agent_readable_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"defectdojo-django-defectdojo","name":"Django DefectDojo","description":"Open-Source Unified Vulnerability Management, DevSecOps & ASPM","category":"devops","url":"https://www.openagentskill.com/skills/defectdojo-django-defectdojo","repository":"https://github.com/DefectDojo/django-DefectDojo","github_repo":"DefectDojo/django-DefectDojo"},"suited_tasks":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals","Inspect source files","Explain architecture","Patch bugs and verify changes","Chunk documents","Create embeddings"],"suited_agents":["HTML","Kubernetes","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add DefectDojo/django-DefectDojo","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add DefectDojo/django-DefectDojo"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Django DefectDojo\" agent skill from https://github.com/DefectDojo/django-DefectDojo. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Open-Source Unified Vulnerability Management, DevSecOps & ASPM"},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Django DefectDojo\" as a Claude Code skill from https://github.com/DefectDojo/django-DefectDojo. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Open-Source Unified Vulnerability Management, DevSecOps & ASPM"},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Django DefectDojo\" from https://github.com/DefectDojo/django-DefectDojo into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Open-Source Unified Vulnerability Management, DevSecOps & ASPM"}],"handoff_url":"https://www.openagentskill.com/api/skills/defectdojo-django-defectdojo/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/defectdojo-django-defectdojo"},"trust":{"score":89,"label":"Production candidate","version":"trust-score-v4","install_policy":"agent_install_candidate","evidence":{"stars":"4.8K GitHub stars","repoActivity":"4.8K stars, 1.9K forks","lastPushed":"17d since push","license":"BSD-3-Clause","repository":"https://github.com/DefectDojo/django-DefectDojo","install":"npx skills add DefectDojo/django-DefectDojo","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":true,"sandbox_required":true,"reason":"Trust Score v4 allows sandbox-first agent installation after normal workspace review."},"best_for":["devops","kubernetes","analytics","appsec","automation","devsecops"],"known_risks":[]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":94,"risk_level":"safe_to_try","risk_label":"Safe to try","warnings":[]},"safety_gate":{"tier":"verified","label":"Verified","auto_install_policy":"allow","auto_install_allowed":true,"human_review_required":false,"blocked":false,"recommended_action":"Allow agent install in a sandbox or low-risk workspace, then promote after one successful narrow task."},"quality":{"score":100,"label":"Excellent"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"17d since push","risk":"Safe to try"},"alternative_skills":[],"do_not_use_when":["teams that need a vendor-supported SLA","high-compliance environments without internal security review","No OpenAgentSkill engagement data yet","No major trust warnings detected from available metadata","Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface"],"agent_contract":{"task_input":"Use Django DefectDojo in an agent workflow","recommended_action":"Allow agent install in a sandbox or low-risk workspace, then promote after one successful narrow task.","install_policy":"allow","minimum_review_before_use":["Trust: 89/100 Production candidate","Audit: 94/100 Safe to try","Safety: 86/100 Safe to install with normal review","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"defectdojo-django-defectdojo (Django DefectDojo)","install_command":"npx skills add DefectDojo/django-DefectDojo","risk_summary":"Safe to try; Verified; Low metadata risk","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"defectdojo-django-defectdojo","task":"Use Django DefectDojo in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/defectdojo-django-defectdojo","api":"https://www.openagentskill.com/api/agent/skills/defectdojo-django-defectdojo","audit":"https://www.openagentskill.com/skills/defectdojo-django-defectdojo/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=defectdojo-django-defectdojo&task=Use%20Django%20DefectDojo%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Django%20DefectDojo%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Django%20DefectDojo%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/defectdojo-django-defectdojo/install","manifest":"https://www.openagentskill.com/api/registry/manifest/defectdojo-django-defectdojo"}},"machine_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"defectdojo-django-defectdojo","name":"Django DefectDojo","description":"Open-Source Unified Vulnerability Management, DevSecOps & ASPM","category":"devops","url":"https://www.openagentskill.com/skills/defectdojo-django-defectdojo","repository":"https://github.com/DefectDojo/django-DefectDojo","github_repo":"DefectDojo/django-DefectDojo"},"suited_tasks":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals","Inspect source files","Explain architecture","Patch bugs and verify changes","Chunk documents","Create embeddings"],"suited_agents":["HTML","Kubernetes","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add DefectDojo/django-DefectDojo","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add DefectDojo/django-DefectDojo"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Django DefectDojo\" agent skill from https://github.com/DefectDojo/django-DefectDojo. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Open-Source Unified Vulnerability Management, DevSecOps & ASPM"},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Django DefectDojo\" as a Claude Code skill from https://github.com/DefectDojo/django-DefectDojo. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Open-Source Unified Vulnerability Management, DevSecOps & ASPM"},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Django DefectDojo\" from https://github.com/DefectDojo/django-DefectDojo into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Open-Source Unified Vulnerability Management, DevSecOps & ASPM"}],"handoff_url":"https://www.openagentskill.com/api/skills/defectdojo-django-defectdojo/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/defectdojo-django-defectdojo"},"trust":{"score":89,"label":"Production candidate","version":"trust-score-v4","install_policy":"agent_install_candidate","evidence":{"stars":"4.8K GitHub stars","repoActivity":"4.8K stars, 1.9K forks","lastPushed":"17d since push","license":"BSD-3-Clause","repository":"https://github.com/DefectDojo/django-DefectDojo","install":"npx skills add DefectDojo/django-DefectDojo","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":true,"sandbox_required":true,"reason":"Trust Score v4 allows sandbox-first agent installation after normal workspace review."},"best_for":["devops","kubernetes","analytics","appsec","automation","devsecops"],"known_risks":[]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":94,"risk_level":"safe_to_try","risk_label":"Safe to try","warnings":[]},"safety_gate":{"tier":"verified","label":"Verified","auto_install_policy":"allow","auto_install_allowed":true,"human_review_required":false,"blocked":false,"recommended_action":"Allow agent install in a sandbox or low-risk workspace, then promote after one successful narrow task."},"quality":{"score":100,"label":"Excellent"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"17d since push","risk":"Safe to try"},"alternative_skills":[],"do_not_use_when":["teams that need a vendor-supported SLA","high-compliance environments without internal security review","No OpenAgentSkill engagement data yet","No major trust warnings detected from available metadata","Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface"],"agent_contract":{"task_input":"Use Django DefectDojo in an agent workflow","recommended_action":"Allow agent install in a sandbox or low-risk workspace, then promote after one successful narrow task.","install_policy":"allow","minimum_review_before_use":["Trust: 89/100 Production candidate","Audit: 94/100 Safe to try","Safety: 86/100 Safe to install with normal review","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"defectdojo-django-defectdojo (Django DefectDojo)","install_command":"npx skills add DefectDojo/django-DefectDojo","risk_summary":"Safe to try; Verified; Low metadata risk","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"defectdojo-django-defectdojo","task":"Use Django DefectDojo in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/defectdojo-django-defectdojo","api":"https://www.openagentskill.com/api/agent/skills/defectdojo-django-defectdojo","audit":"https://www.openagentskill.com/skills/defectdojo-django-defectdojo/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=defectdojo-django-defectdojo&task=Use%20Django%20DefectDojo%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Django%20DefectDojo%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Django%20DefectDojo%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/defectdojo-django-defectdojo/install","manifest":"https://www.openagentskill.com/api/registry/manifest/defectdojo-django-defectdojo"}},"platforms":["HTML","Kubernetes","Claude Code"],"use_cases":[{"slug":"coding-agents","title":"Coding agents","url":"https://www.openagentskill.com/use-cases/coding-agents"},{"slug":"rag-knowledge","title":"RAG and knowledge","url":"https://www.openagentskill.com/use-cases/rag-knowledge"},{"slug":"workflow-automation","title":"Workflow automation","url":"https://www.openagentskill.com/use-cases/workflow-automation"},{"slug":"sports-analytics","title":"Sports analytics","url":"https://www.openagentskill.com/use-cases/sports-analytics"}],"install":"npx skills add DefectDojo/django-DefectDojo","install_targets":[{"id":"openagentskill-cli","label":"CLI","title":"OpenAgentSkill CLI","kind":"command","value":"npx skills add DefectDojo/django-DefectDojo","description":"Use the registry command when your workflow supports the OpenAgentSkill installer.","copyLabel":"Copy command"},{"id":"codex","label":"Codex","title":"Codex install prompt","kind":"agent-prompt","value":"Install the \"Django DefectDojo\" agent skill from https://github.com/DefectDojo/django-DefectDojo. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Open-Source Unified Vulnerability Management, DevSecOps & ASPM","description":"Give Codex a repo-aware install prompt when the skill is not available through a local CLI.","copyLabel":"Copy prompt"},{"id":"claude-code","label":"Claude Code","title":"Claude Code skill prompt","kind":"agent-prompt","value":"Add \"Django DefectDojo\" as a Claude Code skill from https://github.com/DefectDojo/django-DefectDojo. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Open-Source Unified Vulnerability Management, DevSecOps & ASPM","description":"Use this prompt to ask Claude Code to add the skill and explain the local activation steps.","copyLabel":"Copy prompt"},{"id":"cursor","label":"Cursor","title":"Cursor rule prompt","kind":"agent-prompt","value":"Turn \"Django DefectDojo\" from https://github.com/DefectDojo/django-DefectDojo into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Open-Source Unified Vulnerability Management, DevSecOps & ASPM","description":"Use this when installing as Cursor project rules or reusable agent instructions.","copyLabel":"Copy prompt"}],"repository":"https://github.com/DefectDojo/django-DefectDojo","github_repo":"DefectDojo/django-DefectDojo","version":"1.0.0","license":"BSD-3-Clause","updated_at":"2026-06-16T09:06:48.555156+00:00","canonical_key":"defectdojo/django-defectdojo","recommendation_reasons":["Matches task terms: devsecops","Useful GitHub adoption: 4,764 stars","Install handoff is available","Repository freshness signal is available","Registry match score 14"],"urls":{"web":"https://www.openagentskill.com/skills/defectdojo-django-defectdojo","api":"https://www.openagentskill.com/api/agent/skills/defectdojo-django-defectdojo","install_api":"https://www.openagentskill.com/api/skills/defectdojo-django-defectdojo/install","audit":"https://www.openagentskill.com/skills/defectdojo-django-defectdojo/audit","repository":"https://github.com/DefectDojo/django-DefectDojo"}},{"rank":8,"match_score":14,"raw_match_score":140.2,"slug":"m14r41-pentestingeverything","name":"PentestingEverything","description":"Complete Solution for VAPT/AppSec and Pentesting Guide:  Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc...","tagline":"Complete Solution for VAPT/AppSec and Pentesting Guide:  Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc...","category":"security","tags":["security","static-analysis","active-directory","api-pentesting","appsec","cybersecurity","devsecops","mobile-penetration-testing","networking","osint-resources"],"author":{"name":"m14r41","verified":true,"url":"https://github.com/m14r41"},"attribution":{"status":"community_indexed","statusLabel":"Community indexed","shortLabel":"COMMUNITY INDEXED","sourceLabel":"GitHub star discovery","sourceDetail":"m14r41/PentestingEverything","creatorName":"m14r41","creatorUrl":"https://github.com/m14r41","sourceUrl":"https://github.com/m14r41/PentestingEverything","indexedBy":"OpenAgentSkill community index","claimUrl":"https://www.openagentskill.com/skills/m14r41-pentestingeverything#claim-this-skill","claimCta":"Claim this skill","trustNote":"This listing was indexed from public sources and is not marked official until a maintainer claim is approved.","publicNote":"Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals."},"stats":{"stars":1700,"forks":383,"downloads":0,"rating":0,"review_count":0,"quality_score":64.31},"quality":{"score":100,"tier":"excellent","label":"Excellent","summary":"High-confidence pick with strong adoption and healthy maintenance signals.","signals":[{"label":"GitHub stars","value":"1.7K","tone":"positive"},{"label":"Freshness","value":"27d ago","tone":"positive"},{"label":"Install ready","value":"Yes","tone":"positive"},{"label":"License","value":"MIT","tone":"neutral"}],"warnings":[]},"trust":{"version":"trust-score-v4","score":86,"tier":"production","label":"Production candidate","summary":"Strong OpenAgentSkill Trust Score across adoption, recent maintenance, license clarity, documentation, dependency/runtime risk, install safety, permission surface, and install availability.","recommendedAction":"Shortlist for production use, then run a normal repository and dependency review.","dimensions":[{"id":"github_adoption","label":"GitHub adoption","score":86,"weight":0.13,"status":"pass","detail":"1.7K GitHub stars"},{"id":"repo_activity","label":"Stars/forks activity","score":83,"weight":0.08,"status":"pass","detail":"1.7K stars, 383 forks; issue activity unavailable in current metadata"},{"id":"maintenance","label":"Recent maintenance","score":100,"weight":0.14,"status":"pass","detail":"27d since push"},{"id":"license","label":"License clarity","score":86,"weight":0.09,"status":"pass","detail":"MIT"},{"id":"documentation","label":"README/SKILL.md completeness","score":90,"weight":0.14,"status":"pass","detail":"Metadata includes enough usage and workflow context"},{"id":"dependency_risk","label":"Dependency/runtime risk","score":64,"weight":0.12,"status":"info","detail":"command execution surface, network or browser surface"},{"id":"installability","label":"Install availability","score":92,"weight":0.1,"status":"pass","detail":"npx skills add m14r41/PentestingEverything"},{"id":"install_safety","label":"Install command safety","score":92,"weight":0.1,"status":"pass","detail":"standard package or runtime install path"},{"id":"permission_surface","label":"Permission surface","score":48,"weight":0.07,"status":"warn","detail":"shell or command execution, filesystem or document access"},{"id":"repository","label":"Repository evidence","score":86,"weight":0.04,"status":"pass","detail":"https://github.com/m14r41/PentestingEverything"},{"id":"review_status","label":"Review status","score":88,"weight":0.05,"status":"pass","detail":"AI review data available"},{"id":"agent_outcomes","label":"Agent Proven outcomes","score":54,"weight":0.13,"status":"info","detail":"No agent outcome data yet"}],"checks":[{"status":"pass","label":"GitHub adoption","detail":"1.7K GitHub stars"},{"status":"pass","label":"Stars/forks activity","detail":"1.7K stars, 383 forks; issue activity unavailable in current metadata"},{"status":"pass","label":"Recent maintenance","detail":"27d since push"},{"status":"pass","label":"License clarity","detail":"MIT"},{"status":"pass","label":"README/SKILL.md completeness","detail":"Metadata includes enough usage and workflow context"},{"status":"info","label":"Dependency/runtime risk","detail":"command execution surface, network or browser surface"},{"status":"pass","label":"Install availability","detail":"npx skills add m14r41/PentestingEverything"},{"status":"pass","label":"Install command safety","detail":"standard package or runtime install path"},{"status":"warn","label":"Permission surface","detail":"shell or command execution, filesystem or document access"},{"status":"pass","label":"Repository evidence","detail":"https://github.com/m14r41/PentestingEverything"},{"status":"pass","label":"Review status","detail":"AI review data available"},{"status":"info","label":"Agent Proven outcomes","detail":"No agent outcome data yet"},{"status":"pass","label":"Ownership","detail":"Listing manually verified"},{"status":"info","label":"OpenAgentSkill usage","detail":"No local usage activity yet"},{"status":"info","label":"Agent outcomes","detail":"No agent outcome data yet"}],"strengths":["Manually verified listing","AI review approved","Install path is available","Repository evidence is available","Recently maintained repository","Meaningful GitHub adoption signal","Install command has no obvious high-risk pattern"],"warnings":["Permission surface needs review: shell or command execution, filesystem or document access","Permission surface: shell or command execution, filesystem or document access"],"evidence":{"stars":"1.7K GitHub stars","repoActivity":"1.7K stars, 383 forks","lastPushed":"27d since push","license":"MIT","repository":"https://github.com/m14r41/PentestingEverything","install":"npx skills add m14r41/PentestingEverything","installSafety":"standard package or runtime install path","permissionSurface":"shell or command execution, filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"installReadiness":{"ready":true,"command":"npx skills add m14r41/PentestingEverything","policy":"agent_install_candidate","label":"Agent install candidate","notes":["Install path is available","Repository evidence is available","License is declared","No Agent Proven outcome evidence yet","27d since push"]},"agentCompatibility":["Shell","SAST","Codex","Claude Code","Cursor","OpenAgentSkill CLI"],"riskSummary":{"level":"medium","label":"Review before production","notes":["Permission surface needs review: shell or command execution, filesystem or document access","Permission surface: shell or command execution, filesystem or document access"]},"outcomeEvidence":{"total":0,"successes":0,"failures":0,"notRelevant":0,"successRate":null,"installAttempts":0,"riskBlocked":0,"setupRequired":0,"installSuccessRate":null,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"recentSuccessRate":null,"recentFailureRate":null,"uniqueAgents":0,"agentProvenScore":0,"agentProvenLabel":"Needs first agent run","lastOutcomeAt":null,"label":"No agent outcome data yet"},"autoInstall":{"allowed":true,"sandboxRequired":true,"policy":"agent_install_candidate","reason":"Trust Score v4 allows sandbox-first agent installation after normal workspace review."},"bestFor":["security","static-analysis","active-directory","api-pentesting","appsec","cybersecurity"],"doNotUseFor":["Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface"],"knownRisks":["Permission surface needs review: shell or command execution, filesystem or document access","Permission surface: shell or command execution, filesystem or document access"]},"safety":{"score":64,"level":"review_before_install","label":"Review before install","safety_tier":{"tier":"reviewed","label":"Reviewed with permission notes","badge":"REVIEWED","summary":"Usable candidate, but the agent should surface permission and audit notes before installation.","recommended_action":"Require human approval before installing into a real workspace.","auto_install_policy":"review","reasons":["High-risk permission hints: Shell or command execution","64/100 agent safety score"]},"auto_install_allowed":false,"human_review_required":true,"blocked":false,"audit_risk":"safe_to_try","permission_hints":[{"id":"shell","label":"Shell or command execution","reason":"Skill metadata references terminal, CLI, shell, subprocess, or command execution workflows.","severity":"high"},{"id":"network","label":"Network access","reason":"Skill likely fetches remote pages, APIs, repositories, or external services.","severity":"medium"},{"id":"filesystem","label":"Filesystem access","reason":"Skill may read or write project files, documents, generated artifacts, or local workspace state.","severity":"medium"}],"policy_warnings":["High-risk permission hints: Shell or command execution","Permission surface may require sandboxing"],"constraints_applied":{"max_risk":"medium","needs_install_command":true,"min_stars":0}},"safety_gate":{"tier":"reviewed","label":"Reviewed with permission notes","badge":"REVIEWED","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Require human approval before installing into a real workspace.","reasons":["High-risk permission hints: Shell or command execution","64/100 agent safety score"]},"supply_profile":{"track":{"slug":"coding","label":"Coding and developer agents","shortLabel":"Coding","description":"Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills."},"scenario":{"label":"Coding agents","description":"I need a coding agent that can understand a repository, edit code, and review pull requests.","useCases":[{"slug":"coding-agents","title":"Coding agents"},{"slug":"browser-automation","title":"Browser automation"},{"slug":"github-automation","title":"GitHub automation"}]},"applicableAgents":["Claude Code","CLI","Codex","Cursor","Shell"],"install":{"ready":true,"command":"npx skills add m14r41/PentestingEverything","primaryTarget":"CLI","targetCount":4},"githubQuality":{"stars":1700,"starsLabel":"1.7K","forks":383,"license":"MIT","qualityScore":100,"trustScore":86,"auditScore":92},"maintenance":{"status":"fresh","label":"27d since push","daysSincePush":27,"lastPushedAt":"2026-06-06T15:51:16+00:00"},"risk":{"level":"safe_to_try","label":"Safe to try","requiresReview":true,"notes":["Permission surface may require sandboxing","Permission surface needs review: shell or command execution, filesystem or document access","Permission surface: shell or command execution, filesystem or document access"]},"coverageTags":["Coding","Coding agents","security","static-analysis","active-directory","api-pentesting","appsec","cybersecurity"]},"audit":{"audit_score":92,"risk_level":"safe_to_try","risk_label":"Safe to try","warnings":["Permission surface may require sandboxing","Permission surface needs review: shell or command execution, filesystem or document access","Permission surface: shell or command execution, filesystem or document access"]},"decision":{"readiness_score":100,"readiness_label":"Production-ready","headline":"Primary pick for Coding agents","role":"Primary pick","primary_fit":"Coding agents","best_for":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals"],"risks":["No OpenAgentSkill engagement data yet"],"next_steps":["Install it in a sandbox agent and run one Coding agents task end to end.","Compare output quality, latency, and failure behavior against at least one alternative.","Promote it into production only after reviewing repository permissions, license, and maintenance signals."]},"agent_readable_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"m14r41-pentestingeverything","name":"PentestingEverything","description":"Complete Solution for VAPT/AppSec and Pentesting Guide:  Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc...","category":"security","url":"https://www.openagentskill.com/skills/m14r41-pentestingeverything","repository":"https://github.com/m14r41/PentestingEverything","github_repo":"m14r41/PentestingEverything"},"suited_tasks":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals","Inspect source files","Explain architecture","Patch bugs and verify changes","Navigate pages","Click and type safely"],"suited_agents":["Shell","SAST","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add m14r41/PentestingEverything","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add m14r41/PentestingEverything"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"PentestingEverything\" agent skill from https://github.com/m14r41/PentestingEverything. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc..."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"PentestingEverything\" as a Claude Code skill from https://github.com/m14r41/PentestingEverything. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc..."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"PentestingEverything\" from https://github.com/m14r41/PentestingEverything into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc..."}],"handoff_url":"https://www.openagentskill.com/api/skills/m14r41-pentestingeverything/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/m14r41-pentestingeverything"},"trust":{"score":86,"label":"Production candidate","version":"trust-score-v4","install_policy":"agent_install_candidate","evidence":{"stars":"1.7K GitHub stars","repoActivity":"1.7K stars, 383 forks","lastPushed":"27d since push","license":"MIT","repository":"https://github.com/m14r41/PentestingEverything","install":"npx skills add m14r41/PentestingEverything","installSafety":"standard package or runtime install path","permissionSurface":"shell or command execution, filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":true,"sandbox_required":true,"reason":"Trust Score v4 allows sandbox-first agent installation after normal workspace review."},"best_for":["security","static-analysis","active-directory","api-pentesting","appsec","cybersecurity"],"known_risks":["Permission surface needs review: shell or command execution, filesystem or document access","Permission surface: shell or command execution, filesystem or document access"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":92,"risk_level":"safe_to_try","risk_label":"Safe to try","warnings":["Permission surface may require sandboxing","Permission surface needs review: shell or command execution, filesystem or document access","Permission surface: shell or command execution, filesystem or document access"]},"safety_gate":{"tier":"reviewed","label":"Reviewed with permission notes","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Require human approval before installing into a real workspace."},"quality":{"score":100,"label":"Excellent"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"27d since push","risk":"Safe to try"},"alternative_skills":[],"do_not_use_when":["teams that need a vendor-supported SLA","high-compliance environments without internal security review","No OpenAgentSkill engagement data yet","High-risk permission hints: Shell or command execution","Permission surface may require sandboxing","Permission surface needs review: shell or command execution, filesystem or document access","Permission surface: shell or command execution, filesystem or document access","Production credentials, payments, or irreversible account changes without explicit human review"],"agent_contract":{"task_input":"Use PentestingEverything in an agent workflow","recommended_action":"Require human approval before installing into a real workspace.","install_policy":"review","minimum_review_before_use":["Trust: 86/100 Production candidate","Audit: 92/100 Safe to try","Safety: 64/100 Review before install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"m14r41-pentestingeverything (PentestingEverything)","install_command":"npx skills add m14r41/PentestingEverything","risk_summary":"Safe to try; Reviewed with permission notes; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"m14r41-pentestingeverything","task":"Use PentestingEverything in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/m14r41-pentestingeverything","api":"https://www.openagentskill.com/api/agent/skills/m14r41-pentestingeverything","audit":"https://www.openagentskill.com/skills/m14r41-pentestingeverything/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=m14r41-pentestingeverything&task=Use%20PentestingEverything%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20PentestingEverything%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20PentestingEverything%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/m14r41-pentestingeverything/install","manifest":"https://www.openagentskill.com/api/registry/manifest/m14r41-pentestingeverything"}},"machine_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"m14r41-pentestingeverything","name":"PentestingEverything","description":"Complete Solution for VAPT/AppSec and Pentesting Guide:  Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc...","category":"security","url":"https://www.openagentskill.com/skills/m14r41-pentestingeverything","repository":"https://github.com/m14r41/PentestingEverything","github_repo":"m14r41/PentestingEverything"},"suited_tasks":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals","Inspect source files","Explain architecture","Patch bugs and verify changes","Navigate pages","Click and type safely"],"suited_agents":["Shell","SAST","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add m14r41/PentestingEverything","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add m14r41/PentestingEverything"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"PentestingEverything\" agent skill from https://github.com/m14r41/PentestingEverything. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc..."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"PentestingEverything\" as a Claude Code skill from https://github.com/m14r41/PentestingEverything. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc..."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"PentestingEverything\" from https://github.com/m14r41/PentestingEverything into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc..."}],"handoff_url":"https://www.openagentskill.com/api/skills/m14r41-pentestingeverything/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/m14r41-pentestingeverything"},"trust":{"score":86,"label":"Production candidate","version":"trust-score-v4","install_policy":"agent_install_candidate","evidence":{"stars":"1.7K GitHub stars","repoActivity":"1.7K stars, 383 forks","lastPushed":"27d since push","license":"MIT","repository":"https://github.com/m14r41/PentestingEverything","install":"npx skills add m14r41/PentestingEverything","installSafety":"standard package or runtime install path","permissionSurface":"shell or command execution, filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":true,"sandbox_required":true,"reason":"Trust Score v4 allows sandbox-first agent installation after normal workspace review."},"best_for":["security","static-analysis","active-directory","api-pentesting","appsec","cybersecurity"],"known_risks":["Permission surface needs review: shell or command execution, filesystem or document access","Permission surface: shell or command execution, filesystem or document access"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":92,"risk_level":"safe_to_try","risk_label":"Safe to try","warnings":["Permission surface may require sandboxing","Permission surface needs review: shell or command execution, filesystem or document access","Permission surface: shell or command execution, filesystem or document access"]},"safety_gate":{"tier":"reviewed","label":"Reviewed with permission notes","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Require human approval before installing into a real workspace."},"quality":{"score":100,"label":"Excellent"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"27d since push","risk":"Safe to try"},"alternative_skills":[],"do_not_use_when":["teams that need a vendor-supported SLA","high-compliance environments without internal security review","No OpenAgentSkill engagement data yet","High-risk permission hints: Shell or command execution","Permission surface may require sandboxing","Permission surface needs review: shell or command execution, filesystem or document access","Permission surface: shell or command execution, filesystem or document access","Production credentials, payments, or irreversible account changes without explicit human review"],"agent_contract":{"task_input":"Use PentestingEverything in an agent workflow","recommended_action":"Require human approval before installing into a real workspace.","install_policy":"review","minimum_review_before_use":["Trust: 86/100 Production candidate","Audit: 92/100 Safe to try","Safety: 64/100 Review before install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"m14r41-pentestingeverything (PentestingEverything)","install_command":"npx skills add m14r41/PentestingEverything","risk_summary":"Safe to try; Reviewed with permission notes; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"m14r41-pentestingeverything","task":"Use PentestingEverything in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/m14r41-pentestingeverything","api":"https://www.openagentskill.com/api/agent/skills/m14r41-pentestingeverything","audit":"https://www.openagentskill.com/skills/m14r41-pentestingeverything/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=m14r41-pentestingeverything&task=Use%20PentestingEverything%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20PentestingEverything%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20PentestingEverything%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/m14r41-pentestingeverything/install","manifest":"https://www.openagentskill.com/api/registry/manifest/m14r41-pentestingeverything"}},"platforms":["Shell","SAST","Claude Code"],"use_cases":[{"slug":"coding-agents","title":"Coding agents","url":"https://www.openagentskill.com/use-cases/coding-agents"},{"slug":"browser-automation","title":"Browser automation","url":"https://www.openagentskill.com/use-cases/browser-automation"},{"slug":"github-automation","title":"GitHub automation","url":"https://www.openagentskill.com/use-cases/github-automation"},{"slug":"local-desktop","title":"Local desktop","url":"https://www.openagentskill.com/use-cases/local-desktop"}],"install":"npx skills add m14r41/PentestingEverything","install_targets":[{"id":"openagentskill-cli","label":"CLI","title":"OpenAgentSkill CLI","kind":"command","value":"npx skills add m14r41/PentestingEverything","description":"Use the registry command when your workflow supports the OpenAgentSkill installer.","copyLabel":"Copy command"},{"id":"codex","label":"Codex","title":"Codex install prompt","kind":"agent-prompt","value":"Install the \"PentestingEverything\" agent skill from https://github.com/m14r41/PentestingEverything. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc...","description":"Give Codex a repo-aware install prompt when the skill is not available through a local CLI.","copyLabel":"Copy prompt"},{"id":"claude-code","label":"Claude Code","title":"Claude Code skill prompt","kind":"agent-prompt","value":"Add \"PentestingEverything\" as a Claude Code skill from https://github.com/m14r41/PentestingEverything. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc...","description":"Use this prompt to ask Claude Code to add the skill and explain the local activation steps.","copyLabel":"Copy prompt"},{"id":"cursor","label":"Cursor","title":"Cursor rule prompt","kind":"agent-prompt","value":"Turn \"PentestingEverything\" from https://github.com/m14r41/PentestingEverything into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Complete Solution for VAPT/AppSec and Pentesting Guide: Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting | SAST | DAST etc...","description":"Use this when installing as Cursor project rules or reusable agent instructions.","copyLabel":"Copy prompt"}],"repository":"https://github.com/m14r41/PentestingEverything","github_repo":"m14r41/PentestingEverything","version":"1.0.0","license":"MIT","updated_at":"2026-06-12T14:00:29.61816+00:00","canonical_key":"m14r41/pentestingeverything","recommendation_reasons":["Matches task terms: devsecops","Useful GitHub adoption: 1,700 stars","Install handoff is available","Repository freshness signal is available","Registry match score 14"],"urls":{"web":"https://www.openagentskill.com/skills/m14r41-pentestingeverything","api":"https://www.openagentskill.com/api/agent/skills/m14r41-pentestingeverything","install_api":"https://www.openagentskill.com/api/skills/m14r41-pentestingeverything/install","audit":"https://www.openagentskill.com/skills/m14r41-pentestingeverything/audit","repository":"https://github.com/m14r41/PentestingEverything"}},{"rank":9,"match_score":13,"raw_match_score":137.6,"slug":"archerysec-archerysec","name":"Archerysec","description":"ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.","tagline":"ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.","category":"devops","tags":["devops","automation","asoc","aspm","devops-tools","devsecops","opensource","pentesters","pentesting","scanning"],"author":{"name":"archerysec","verified":true,"url":"https://github.com/archerysec"},"attribution":{"status":"community_indexed","statusLabel":"Community indexed","shortLabel":"COMMUNITY INDEXED","sourceLabel":"GitHub star discovery","sourceDetail":"archerysec/archerysec","creatorName":"archerysec","creatorUrl":"https://github.com/archerysec","sourceUrl":"https://github.com/archerysec/archerysec","indexedBy":"OpenAgentSkill community index","claimUrl":"https://www.openagentskill.com/skills/archerysec-archerysec#claim-this-skill","claimCta":"Claim this skill","trustNote":"This listing was indexed from public sources and is not marked official until a maintainer claim is approved.","publicNote":"Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals."},"stats":{"stars":2460,"forks":524,"downloads":0,"rating":0,"review_count":0,"quality_score":50.44},"quality":{"score":74,"tier":"strong","label":"Strong","summary":"Solid option that is likely worth shortlisting for production workflows.","signals":[{"label":"GitHub stars","value":"2.5K","tone":"positive"},{"label":"Freshness","value":"1y ago","tone":"warning"},{"label":"Install ready","value":"Yes","tone":"positive"},{"label":"License","value":"GPL-3.0","tone":"neutral"}],"warnings":["Repository looks stale"]},"trust":{"version":"trust-score-v4","score":82,"tier":"strong","label":"Strong shortlist","summary":"Good trust signals with a few areas worth checking before rollout.","recommendedAction":"Test in a sandbox workflow and compare its install path with close alternatives.","dimensions":[{"id":"github_adoption","label":"GitHub adoption","score":86,"weight":0.13,"status":"pass","detail":"2.5K GitHub stars"},{"id":"repo_activity","label":"Stars/forks activity","score":83,"weight":0.08,"status":"pass","detail":"2.5K stars, 524 forks; issue activity unavailable in current metadata"},{"id":"maintenance","label":"Recent maintenance","score":38,"weight":0.14,"status":"fail","detail":"1y since push"},{"id":"license","label":"License clarity","score":86,"weight":0.09,"status":"pass","detail":"GPL-3.0"},{"id":"documentation","label":"README/SKILL.md completeness","score":74,"weight":0.14,"status":"info","detail":"Public metadata needs stronger README/SKILL.md context"},{"id":"dependency_risk","label":"Dependency/runtime risk","score":90,"weight":0.12,"status":"pass","detail":"no major dependency risk hints in public metadata"},{"id":"installability","label":"Install availability","score":92,"weight":0.1,"status":"pass","detail":"npx skills add archerysec/archerysec"},{"id":"install_safety","label":"Install command safety","score":92,"weight":0.1,"status":"pass","detail":"standard package or runtime install path"},{"id":"permission_surface","label":"Permission surface","score":86,"weight":0.07,"status":"pass","detail":"filesystem or document access"},{"id":"repository","label":"Repository evidence","score":86,"weight":0.04,"status":"pass","detail":"https://github.com/archerysec/archerysec"},{"id":"review_status","label":"Review status","score":88,"weight":0.05,"status":"pass","detail":"AI review data available"},{"id":"agent_outcomes","label":"Agent Proven outcomes","score":54,"weight":0.13,"status":"info","detail":"No agent outcome data yet"}],"checks":[{"status":"pass","label":"GitHub adoption","detail":"2.5K GitHub stars"},{"status":"pass","label":"Stars/forks activity","detail":"2.5K stars, 524 forks; issue activity unavailable in current metadata"},{"status":"fail","label":"Recent maintenance","detail":"1y since push"},{"status":"pass","label":"License clarity","detail":"GPL-3.0"},{"status":"info","label":"README/SKILL.md completeness","detail":"Public metadata needs stronger README/SKILL.md context"},{"status":"pass","label":"Dependency/runtime risk","detail":"no major dependency risk hints in public metadata"},{"status":"pass","label":"Install availability","detail":"npx skills add archerysec/archerysec"},{"status":"pass","label":"Install command safety","detail":"standard package or runtime install path"},{"status":"pass","label":"Permission surface","detail":"filesystem or document access"},{"status":"pass","label":"Repository evidence","detail":"https://github.com/archerysec/archerysec"},{"status":"pass","label":"Review status","detail":"AI review data available"},{"status":"info","label":"Agent Proven outcomes","detail":"No agent outcome data yet"},{"status":"pass","label":"Ownership","detail":"Listing manually verified"},{"status":"info","label":"OpenAgentSkill usage","detail":"No local usage activity yet"},{"status":"info","label":"Agent outcomes","detail":"No agent outcome data yet"}],"strengths":["Manually verified listing","AI review approved","Install path is available","Repository evidence is available","Meaningful GitHub adoption signal","Install command has no obvious high-risk pattern"],"warnings":["Repository looks stale","Quality score needs review","Recent maintenance: 1y since push"],"evidence":{"stars":"2.5K GitHub stars","repoActivity":"2.5K stars, 524 forks","lastPushed":"1y since push","license":"GPL-3.0","repository":"https://github.com/archerysec/archerysec","install":"npx skills add archerysec/archerysec","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"installReadiness":{"ready":true,"command":"npx skills add archerysec/archerysec","policy":"human_review_before_install","label":"Human review before install","notes":["Install path is available","Repository evidence is available","License is declared","No Agent Proven outcome evidence yet","1y since push"]},"agentCompatibility":["JavaScript","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI"],"riskSummary":{"level":"medium","label":"Review before production","notes":["Repository looks stale","Quality score needs review","Recent maintenance: 1y since push"]},"outcomeEvidence":{"total":0,"successes":0,"failures":0,"notRelevant":0,"successRate":null,"installAttempts":0,"riskBlocked":0,"setupRequired":0,"installSuccessRate":null,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"recentSuccessRate":null,"recentFailureRate":null,"uniqueAgents":0,"agentProvenScore":0,"agentProvenLabel":"Needs first agent run","lastOutcomeAt":null,"label":"No agent outcome data yet"},"autoInstall":{"allowed":false,"sandboxRequired":true,"policy":"human_review_before_install","reason":"Human review or sandbox validation is required before automatic installation."},"bestFor":["devops","automation","asoc","aspm","devops-tools","devsecops"],"doNotUseFor":["Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface","Automatic installation in a production workspace"],"knownRisks":["Repository looks stale","Quality score needs review","Recent maintenance: 1y since push"]},"safety":{"score":60,"level":"review_before_install","label":"Review before install","safety_tier":{"tier":"reviewed","label":"Reviewed with permission notes","badge":"REVIEWED","summary":"Usable candidate, but the agent should surface permission and audit notes before installation.","recommended_action":"Require human approval before installing into a real workspace.","auto_install_policy":"review","reasons":["Repository appears stale","60/100 agent safety score"]},"auto_install_allowed":false,"human_review_required":true,"blocked":false,"audit_risk":"needs_review","permission_hints":[{"id":"network","label":"Network access","reason":"Skill likely fetches remote pages, APIs, repositories, or external services.","severity":"medium"},{"id":"filesystem","label":"Filesystem access","reason":"Skill may read or write project files, documents, generated artifacts, or local workspace state.","severity":"medium"}],"policy_warnings":["Repository appears stale"],"constraints_applied":{"max_risk":"medium","needs_install_command":true,"min_stars":0}},"safety_gate":{"tier":"reviewed","label":"Reviewed with permission notes","badge":"REVIEWED","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Require human approval before installing into a real workspace.","reasons":["Repository appears stale","60/100 agent safety score"]},"supply_profile":{"track":{"slug":"coding","label":"Coding and developer agents","shortLabel":"Coding","description":"Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills."},"scenario":{"label":"Coding agents","description":"I need a coding agent that can understand a repository, edit code, and review pull requests.","useCases":[{"slug":"coding-agents","title":"Coding agents"},{"slug":"rag-knowledge","title":"RAG and knowledge"},{"slug":"browser-automation","title":"Browser automation"}]},"applicableAgents":["Claude Code","CLI","Codex","Cursor","JavaScript"],"install":{"ready":true,"command":"npx skills add archerysec/archerysec","primaryTarget":"CLI","targetCount":4},"githubQuality":{"stars":2460,"starsLabel":"2.5K","forks":524,"license":"GPL-3.0","qualityScore":74,"trustScore":82,"auditScore":76},"maintenance":{"status":"stale","label":"1y since push","daysSincePush":387,"lastPushedAt":"2025-06-11T06:33:14+00:00"},"risk":{"level":"needs_review","label":"Needs review","requiresReview":true,"notes":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 1y since push","Needs review"]},"coverageTags":["Coding","Coding agents","devops","automation","asoc","aspm","devops-tools","devsecops"]},"audit":{"audit_score":76,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 1y since push"]},"decision":{"readiness_score":76,"readiness_label":"Strong shortlist","headline":"Companion skill for Coding agents","role":"Companion skill","primary_fit":"Coding agents","best_for":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals"],"risks":["Repository looks stale","No OpenAgentSkill engagement data yet"],"next_steps":["Install it in a sandbox agent and run one Coding agents task end to end.","Compare output quality, latency, and failure behavior against at least one alternative.","Promote it into production only after reviewing repository permissions, license, and maintenance signals."]},"agent_readable_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"archerysec-archerysec","name":"Archerysec","description":"ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.","category":"devops","url":"https://www.openagentskill.com/skills/archerysec-archerysec","repository":"https://github.com/archerysec/archerysec","github_repo":"archerysec/archerysec"},"suited_tasks":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals","Inspect source files","Explain architecture","Patch bugs and verify changes","Chunk documents","Create embeddings"],"suited_agents":["JavaScript","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add archerysec/archerysec","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add archerysec/archerysec"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Archerysec\" agent skill from https://github.com/archerysec/archerysec. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Archerysec\" as a Claude Code skill from https://github.com/archerysec/archerysec. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Archerysec\" from https://github.com/archerysec/archerysec into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec."}],"handoff_url":"https://www.openagentskill.com/api/skills/archerysec-archerysec/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/archerysec-archerysec"},"trust":{"score":82,"label":"Strong shortlist","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"2.5K GitHub stars","repoActivity":"2.5K stars, 524 forks","lastPushed":"1y since push","license":"GPL-3.0","repository":"https://github.com/archerysec/archerysec","install":"npx skills add archerysec/archerysec","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","asoc","aspm","devops-tools","devsecops"],"known_risks":["Repository looks stale","Quality score needs review","Recent maintenance: 1y since push"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":76,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 1y since push"]},"safety_gate":{"tier":"reviewed","label":"Reviewed with permission notes","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Require human approval before installing into a real workspace."},"quality":{"score":74,"label":"Strong"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"1y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","Repository appears stale","Quality score needs review","Recent maintenance: 1y since push","Production credentials, payments, or irreversible account changes without explicit human review"],"agent_contract":{"task_input":"Use Archerysec in an agent workflow","recommended_action":"Require human approval before installing into a real workspace.","install_policy":"review","minimum_review_before_use":["Trust: 82/100 Strong shortlist","Audit: 76/100 Needs review","Safety: 60/100 Review before install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"archerysec-archerysec (Archerysec)","install_command":"npx skills add archerysec/archerysec","risk_summary":"Needs review; Reviewed with permission notes; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"archerysec-archerysec","task":"Use Archerysec in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/archerysec-archerysec","api":"https://www.openagentskill.com/api/agent/skills/archerysec-archerysec","audit":"https://www.openagentskill.com/skills/archerysec-archerysec/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=archerysec-archerysec&task=Use%20Archerysec%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Archerysec%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Archerysec%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/archerysec-archerysec/install","manifest":"https://www.openagentskill.com/api/registry/manifest/archerysec-archerysec"}},"machine_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"archerysec-archerysec","name":"Archerysec","description":"ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.","category":"devops","url":"https://www.openagentskill.com/skills/archerysec-archerysec","repository":"https://github.com/archerysec/archerysec","github_repo":"archerysec/archerysec"},"suited_tasks":["Coding agents workflows","Claude Code teams","teams that value GitHub adoption signals","Inspect source files","Explain architecture","Patch bugs and verify changes","Chunk documents","Create embeddings"],"suited_agents":["JavaScript","DevOps","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add archerysec/archerysec","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add archerysec/archerysec"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Archerysec\" agent skill from https://github.com/archerysec/archerysec. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Archerysec\" as a Claude Code skill from https://github.com/archerysec/archerysec. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Archerysec\" from https://github.com/archerysec/archerysec into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec."}],"handoff_url":"https://www.openagentskill.com/api/skills/archerysec-archerysec/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/archerysec-archerysec"},"trust":{"score":82,"label":"Strong shortlist","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"2.5K GitHub stars","repoActivity":"2.5K stars, 524 forks","lastPushed":"1y since push","license":"GPL-3.0","repository":"https://github.com/archerysec/archerysec","install":"npx skills add archerysec/archerysec","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Usable metadata, review docs","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["devops","automation","asoc","aspm","devops-tools","devsecops"],"known_risks":["Repository looks stale","Quality score needs review","Recent maintenance: 1y since push"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":76,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 1y since push"]},"safety_gate":{"tier":"reviewed","label":"Reviewed with permission notes","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Require human approval before installing into a real workspace."},"quality":{"score":74,"label":"Strong"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"1y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","Repository appears stale","Quality score needs review","Recent maintenance: 1y since push","Production credentials, payments, or irreversible account changes without explicit human review"],"agent_contract":{"task_input":"Use Archerysec in an agent workflow","recommended_action":"Require human approval before installing into a real workspace.","install_policy":"review","minimum_review_before_use":["Trust: 82/100 Strong shortlist","Audit: 76/100 Needs review","Safety: 60/100 Review before install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"archerysec-archerysec (Archerysec)","install_command":"npx skills add archerysec/archerysec","risk_summary":"Needs review; Reviewed with permission notes; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"archerysec-archerysec","task":"Use Archerysec in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/archerysec-archerysec","api":"https://www.openagentskill.com/api/agent/skills/archerysec-archerysec","audit":"https://www.openagentskill.com/skills/archerysec-archerysec/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=archerysec-archerysec&task=Use%20Archerysec%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Archerysec%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Archerysec%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/archerysec-archerysec/install","manifest":"https://www.openagentskill.com/api/registry/manifest/archerysec-archerysec"}},"platforms":["JavaScript","DevOps","Claude Code"],"use_cases":[{"slug":"coding-agents","title":"Coding agents","url":"https://www.openagentskill.com/use-cases/coding-agents"},{"slug":"rag-knowledge","title":"RAG and knowledge","url":"https://www.openagentskill.com/use-cases/rag-knowledge"},{"slug":"browser-automation","title":"Browser automation","url":"https://www.openagentskill.com/use-cases/browser-automation"},{"slug":"workflow-automation","title":"Workflow automation","url":"https://www.openagentskill.com/use-cases/workflow-automation"}],"install":"npx skills add archerysec/archerysec","install_targets":[{"id":"openagentskill-cli","label":"CLI","title":"OpenAgentSkill CLI","kind":"command","value":"npx skills add archerysec/archerysec","description":"Use the registry command when your workflow supports the OpenAgentSkill installer.","copyLabel":"Copy command"},{"id":"codex","label":"Codex","title":"Codex install prompt","kind":"agent-prompt","value":"Install the \"Archerysec\" agent skill from https://github.com/archerysec/archerysec. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.","description":"Give Codex a repo-aware install prompt when the skill is not available through a local CLI.","copyLabel":"Copy prompt"},{"id":"claude-code","label":"Claude Code","title":"Claude Code skill prompt","kind":"agent-prompt","value":"Add \"Archerysec\" as a Claude Code skill from https://github.com/archerysec/archerysec. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.","description":"Use this prompt to ask Claude Code to add the skill and explain the local activation steps.","copyLabel":"Copy prompt"},{"id":"cursor","label":"Cursor","title":"Cursor rule prompt","kind":"agent-prompt","value":"Turn \"Archerysec\" from https://github.com/archerysec/archerysec into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.","description":"Use this when installing as Cursor project rules or reusable agent instructions.","copyLabel":"Copy prompt"}],"repository":"https://github.com/archerysec/archerysec","github_repo":"archerysec/archerysec","version":"1.0.0","license":"GPL-3.0","updated_at":"2026-06-16T08:54:02.04773+00:00","canonical_key":"archerysec/archerysec","recommendation_reasons":["Matches task terms: devsecops","Useful GitHub adoption: 2,460 stars","Install handoff is available","Repository freshness signal is available","Registry match score 13"],"urls":{"web":"https://www.openagentskill.com/skills/archerysec-archerysec","api":"https://www.openagentskill.com/api/agent/skills/archerysec-archerysec","install_api":"https://www.openagentskill.com/api/skills/archerysec-archerysec/install","audit":"https://www.openagentskill.com/skills/archerysec-archerysec/audit","repository":"https://github.com/archerysec/archerysec"}},{"rank":10,"match_score":12,"raw_match_score":126.5,"slug":"shiftleftsecurity-sast-scan","name":"Sast Scan","description":"Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.","tagline":"Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.","category":"security","tags":["security","static-analysis","appsec","dependency-scan","devsecops","license-scan","sast","scanners","workflow","python"],"author":{"name":"ShiftLeftSecurity","verified":false,"url":"https://github.com/ShiftLeftSecurity"},"attribution":{"status":"community_indexed","statusLabel":"Community indexed","shortLabel":"COMMUNITY INDEXED","sourceLabel":"GitHub star discovery","sourceDetail":"ShiftLeftSecurity/sast-scan","creatorName":"ShiftLeftSecurity","creatorUrl":"https://github.com/ShiftLeftSecurity","sourceUrl":"https://github.com/ShiftLeftSecurity/sast-scan","indexedBy":"OpenAgentSkill community index","claimUrl":"https://www.openagentskill.com/skills/shiftleftsecurity-sast-scan#claim-this-skill","claimCta":"Claim this skill","trustNote":"This listing was indexed from public sources and is not marked official until a maintainer claim is approved.","publicNote":"Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals."},"stats":{"stars":878,"forks":125,"downloads":0,"rating":0,"review_count":0,"quality_score":39.31},"quality":{"score":56,"tier":"promising","label":"Promising","summary":"Useful candidate, but compare it with alternatives before adopting.","signals":[{"label":"GitHub stars","value":"878","tone":"positive"},{"label":"Freshness","value":"3y ago","tone":"warning"},{"label":"Install ready","value":"Yes","tone":"positive"},{"label":"License","value":"Apache-2.0","tone":"neutral"}],"warnings":["Repository looks stale"]},"trust":{"version":"trust-score-v4","score":75,"tier":"strong","label":"Strong shortlist","summary":"Good trust signals with a few areas worth checking before rollout.","recommendedAction":"Test in a sandbox workflow and compare its install path with close alternatives.","dimensions":[{"id":"github_adoption","label":"GitHub adoption","score":76,"weight":0.13,"status":"info","detail":"878 GitHub stars"},{"id":"repo_activity","label":"Stars/forks activity","score":71,"weight":0.08,"status":"info","detail":"878 stars, 125 forks; issue activity unavailable in current metadata"},{"id":"maintenance","label":"Recent maintenance","score":22,"weight":0.14,"status":"fail","detail":"3y since push"},{"id":"license","label":"License clarity","score":86,"weight":0.09,"status":"pass","detail":"Apache-2.0"},{"id":"documentation","label":"README/SKILL.md completeness","score":90,"weight":0.14,"status":"pass","detail":"Metadata includes enough usage and workflow context"},{"id":"dependency_risk","label":"Dependency/runtime risk","score":90,"weight":0.12,"status":"pass","detail":"no major dependency risk hints in public metadata"},{"id":"installability","label":"Install availability","score":92,"weight":0.1,"status":"pass","detail":"npx skills add ShiftLeftSecurity/sast-scan"},{"id":"install_safety","label":"Install command safety","score":92,"weight":0.1,"status":"pass","detail":"standard package or runtime install path"},{"id":"permission_surface","label":"Permission surface","score":86,"weight":0.07,"status":"pass","detail":"filesystem or document access"},{"id":"repository","label":"Repository evidence","score":86,"weight":0.04,"status":"pass","detail":"https://github.com/ShiftLeftSecurity/sast-scan"},{"id":"review_status","label":"Review status","score":88,"weight":0.05,"status":"pass","detail":"AI review data available"},{"id":"agent_outcomes","label":"Agent Proven outcomes","score":54,"weight":0.13,"status":"info","detail":"No agent outcome data yet"}],"checks":[{"status":"info","label":"GitHub adoption","detail":"878 GitHub stars"},{"status":"info","label":"Stars/forks activity","detail":"878 stars, 125 forks; issue activity unavailable in current metadata"},{"status":"fail","label":"Recent maintenance","detail":"3y since push"},{"status":"pass","label":"License clarity","detail":"Apache-2.0"},{"status":"pass","label":"README/SKILL.md completeness","detail":"Metadata includes enough usage and workflow context"},{"status":"pass","label":"Dependency/runtime risk","detail":"no major dependency risk hints in public metadata"},{"status":"pass","label":"Install availability","detail":"npx skills add ShiftLeftSecurity/sast-scan"},{"status":"pass","label":"Install command safety","detail":"standard package or runtime install path"},{"status":"pass","label":"Permission surface","detail":"filesystem or document access"},{"status":"pass","label":"Repository evidence","detail":"https://github.com/ShiftLeftSecurity/sast-scan"},{"status":"pass","label":"Review status","detail":"AI review data available"},{"status":"info","label":"Agent Proven outcomes","detail":"No agent outcome data yet"},{"status":"warn","label":"Ownership","detail":"No approved owner claim yet"},{"status":"info","label":"OpenAgentSkill usage","detail":"No local usage activity yet"},{"status":"info","label":"Agent outcomes","detail":"No agent outcome data yet"}],"strengths":["AI review approved","Install path is available","Repository evidence is available","Meaningful GitHub adoption signal","Install command has no obvious high-risk pattern"],"warnings":["Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"],"evidence":{"stars":"878 GitHub stars","repoActivity":"878 stars, 125 forks","lastPushed":"3y since push","license":"Apache-2.0","repository":"https://github.com/ShiftLeftSecurity/sast-scan","install":"npx skills add ShiftLeftSecurity/sast-scan","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"installReadiness":{"ready":true,"command":"npx skills add ShiftLeftSecurity/sast-scan","policy":"human_review_before_install","label":"Human review before install","notes":["Install path is available","Repository evidence is available","License is declared","No Agent Proven outcome evidence yet","3y since push"]},"agentCompatibility":["Python","SAST","Codex","Claude Code","Cursor","OpenAgentSkill CLI"],"riskSummary":{"level":"medium","label":"Review before production","notes":["Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"outcomeEvidence":{"total":0,"successes":0,"failures":0,"notRelevant":0,"successRate":null,"installAttempts":0,"riskBlocked":0,"setupRequired":0,"installSuccessRate":null,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"recentSuccessRate":null,"recentFailureRate":null,"uniqueAgents":0,"agentProvenScore":0,"agentProvenLabel":"Needs first agent run","lastOutcomeAt":null,"label":"No agent outcome data yet"},"autoInstall":{"allowed":false,"sandboxRequired":true,"policy":"human_review_before_install","reason":"Human review or sandbox validation is required before automatic installation."},"bestFor":["security","static-analysis","appsec","dependency-scan","devsecops","license-scan"],"doNotUseFor":["Production credentials, payments, or irreversible account changes without explicit human review","Sensitive private data before reviewing repository code, license, and permission surface","Automatic installation in a production workspace"],"knownRisks":["Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"safety":{"score":50,"level":"avoid_auto_install","label":"Avoid automatic install","safety_tier":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","summary":"Sparse or mixed signals. Useful for discovery, but not for autonomous installation.","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","auto_install_policy":"review","reasons":["Repository appears stale","50/100 agent safety score"]},"auto_install_allowed":false,"human_review_required":true,"blocked":false,"audit_risk":"needs_review","permission_hints":[{"id":"network","label":"Network access","reason":"Skill likely fetches remote pages, APIs, repositories, or external services.","severity":"medium"},{"id":"filesystem","label":"Filesystem access","reason":"Skill may read or write project files, documents, generated artifacts, or local workspace state.","severity":"medium"}],"policy_warnings":["Repository appears stale"],"constraints_applied":{"max_risk":"medium","needs_install_command":true,"min_stars":0}},"safety_gate":{"tier":"experimental","label":"Experimental","badge":"EXPERIMENTAL","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","reasons":["Repository appears stale","50/100 agent safety score"]},"supply_profile":{"track":{"slug":"coding","label":"Coding and developer agents","shortLabel":"Coding","description":"Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills."},"scenario":{"label":"Coding agents","description":"I need a coding agent that can understand a repository, edit code, and review pull requests.","useCases":[{"slug":"security-compliance","title":"Security and compliance"},{"slug":"coding-agents","title":"Coding agents"},{"slug":"browser-automation","title":"Browser automation"}]},"applicableAgents":["Claude Code","CLI","Codex","Cursor","Python"],"install":{"ready":true,"command":"npx skills add ShiftLeftSecurity/sast-scan","primaryTarget":"CLI","targetCount":4},"githubQuality":{"stars":878,"starsLabel":"878","forks":125,"license":"Apache-2.0","qualityScore":56,"trustScore":75,"auditScore":66},"maintenance":{"status":"stale","label":"3y since push","daysSincePush":1036,"lastPushedAt":"2023-09-01T12:48:17+00:00"},"risk":{"level":"needs_review","label":"Needs review","requiresReview":true,"notes":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 3y since push","Needs review"]},"coverageTags":["Coding","Coding agents","security","static-analysis","appsec","dependency-scan","devsecops","license-scan"]},"audit":{"audit_score":66,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"decision":{"readiness_score":58,"readiness_label":"Prototype first","headline":"Fallback candidate for Security and compliance","role":"Fallback candidate","primary_fit":"Security and compliance","best_for":["Security and compliance workflows","Claude Code teams","teams that value GitHub adoption signals"],"risks":["Repository looks stale","No OpenAgentSkill engagement data yet"],"next_steps":["Install it in a sandbox agent and run one Security and compliance task end to end.","Compare output quality, latency, and failure behavior against at least one alternative.","Promote it into production only after reviewing repository permissions, license, and maintenance signals."]},"agent_readable_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"shiftleftsecurity-sast-scan","name":"Sast Scan","description":"Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.","category":"security","url":"https://www.openagentskill.com/skills/shiftleftsecurity-sast-scan","repository":"https://github.com/ShiftLeftSecurity/sast-scan","github_repo":"ShiftLeftSecurity/sast-scan"},"suited_tasks":["Security and compliance workflows","Claude Code teams","teams that value GitHub adoption signals","Inspect risky files","Prioritize findings","Explain remediation steps","Inspect source files","Explain architecture"],"suited_agents":["Python","SAST","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add ShiftLeftSecurity/sast-scan","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add ShiftLeftSecurity/sast-scan"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Sast Scan\" agent skill from https://github.com/ShiftLeftSecurity/sast-scan. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Sast Scan\" as a Claude Code skill from https://github.com/ShiftLeftSecurity/sast-scan. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Sast Scan\" from https://github.com/ShiftLeftSecurity/sast-scan into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly."}],"handoff_url":"https://www.openagentskill.com/api/skills/shiftleftsecurity-sast-scan/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/shiftleftsecurity-sast-scan"},"trust":{"score":75,"label":"Strong shortlist","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"878 GitHub stars","repoActivity":"878 stars, 125 forks","lastPushed":"3y since push","license":"Apache-2.0","repository":"https://github.com/ShiftLeftSecurity/sast-scan","install":"npx skills add ShiftLeftSecurity/sast-scan","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["security","static-analysis","appsec","dependency-scan","devsecops","license-scan"],"known_risks":["Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":66,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":56,"label":"Promising"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"3y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","Repository appears stale","Quality score needs review","Recent maintenance: 3y since push","Production credentials, payments, or irreversible account changes without explicit human review"],"agent_contract":{"task_input":"Use Sast Scan in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 75/100 Strong shortlist","Audit: 66/100 Needs review","Safety: 50/100 Avoid automatic install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"shiftleftsecurity-sast-scan (Sast Scan)","install_command":"npx skills add ShiftLeftSecurity/sast-scan","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"shiftleftsecurity-sast-scan","task":"Use Sast Scan in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/shiftleftsecurity-sast-scan","api":"https://www.openagentskill.com/api/agent/skills/shiftleftsecurity-sast-scan","audit":"https://www.openagentskill.com/skills/shiftleftsecurity-sast-scan/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=shiftleftsecurity-sast-scan&task=Use%20Sast%20Scan%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Sast%20Scan%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Sast%20Scan%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/shiftleftsecurity-sast-scan/install","manifest":"https://www.openagentskill.com/api/registry/manifest/shiftleftsecurity-sast-scan"}},"machine_metadata":{"version":"openagentskill-agent-metadata-v2","skill":{"slug":"shiftleftsecurity-sast-scan","name":"Sast Scan","description":"Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.","category":"security","url":"https://www.openagentskill.com/skills/shiftleftsecurity-sast-scan","repository":"https://github.com/ShiftLeftSecurity/sast-scan","github_repo":"ShiftLeftSecurity/sast-scan"},"suited_tasks":["Security and compliance workflows","Claude Code teams","teams that value GitHub adoption signals","Inspect risky files","Prioritize findings","Explain remediation steps","Inspect source files","Explain architecture"],"suited_agents":["Python","SAST","Codex","Claude Code","Cursor","OpenAgentSkill CLI","CLI"],"install":{"command":"npx skills add ShiftLeftSecurity/sast-scan","ready":true,"targets":[{"id":"openagentskill-cli","label":"CLI","kind":"command","value":"npx skills add ShiftLeftSecurity/sast-scan"},{"id":"codex","label":"Codex","kind":"agent-prompt","value":"Install the \"Sast Scan\" agent skill from https://github.com/ShiftLeftSecurity/sast-scan. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly."},{"id":"claude-code","label":"Claude Code","kind":"agent-prompt","value":"Add \"Sast Scan\" as a Claude Code skill from https://github.com/ShiftLeftSecurity/sast-scan. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly."},{"id":"cursor","label":"Cursor","kind":"agent-prompt","value":"Turn \"Sast Scan\" from https://github.com/ShiftLeftSecurity/sast-scan into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly."}],"handoff_url":"https://www.openagentskill.com/api/skills/shiftleftsecurity-sast-scan/install","manifest_url":"https://www.openagentskill.com/api/registry/manifest/shiftleftsecurity-sast-scan"},"trust":{"score":75,"label":"Strong shortlist","version":"trust-score-v4","install_policy":"human_review_before_install","evidence":{"stars":"878 GitHub stars","repoActivity":"878 stars, 125 forks","lastPushed":"3y since push","license":"Apache-2.0","repository":"https://github.com/ShiftLeftSecurity/sast-scan","install":"npx skills add ShiftLeftSecurity/sast-scan","installSafety":"standard package or runtime install path","permissionSurface":"filesystem or document access","documentation":"Strong README/SKILL.md context","agentOutcomes":"No agent outcome data yet"},"outcome_evidence":{"total":0,"successes":0,"failures":0,"not_relevant":0,"success_rate":null,"recent_success_rate":null,"recent_failure_rate":null,"install_attempts":0,"install_success_rate":null,"risk_blocked":0,"setup_required":0,"avg_output_quality":null,"production_outcomes":0,"last_outcome_at":null,"label":"No agent outcome data yet"},"auto_install":{"allowed":false,"sandbox_required":true,"reason":"Human review or sandbox validation is required before automatic installation."},"best_for":["security","static-analysis","appsec","dependency-scan","devsecops","license-scan"],"known_risks":["Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"agent_proven":{"version":"agent-proven-v1","score":0,"tier":"unproven","label":"Needs first agent run","summary":"No agent outcome reports yet. Use Resolve, run one narrow sandbox task, then report the result.","metrics":{"totalOutcomes":0,"successfulOutcomes":0,"failedOutcomes":0,"installAttempts":0,"installSuccessRate":null,"successRate":null,"recentSuccessRate":null,"recentFailureRate":null,"riskBlocked":0,"setupRequired":0,"notRelevant":0,"avgOutputQuality":null,"avgTimeToUsefulMs":null,"productionOutcomes":0,"humanReviewRequired":0,"uniqueAgents":0,"lastOutcomeAt":null},"signals":[],"penalties":["No real agent outcome evidence yet"]},"audit":{"score":66,"risk_level":"needs_review","risk_label":"Needs review","warnings":["Repository appears stale","Repository looks stale","Quality score needs review","Recent maintenance: 3y since push"]},"safety_gate":{"tier":"experimental","label":"Experimental","auto_install_policy":"review","auto_install_allowed":false,"human_review_required":true,"blocked":false,"recommended_action":"Test manually in an isolated workspace and compare against safer alternatives."},"quality":{"score":56,"label":"Promising"},"supply":{"track":"Coding and developer agents","scenario":"Coding agents","maintenance":"3y since push","risk":"Needs review"},"alternative_skills":[],"do_not_use_when":["teams that require actively maintained dependencies","production agents without a repository review","Repository looks stale","No OpenAgentSkill engagement data yet","Repository appears stale","Quality score needs review","Recent maintenance: 3y since push","Production credentials, payments, or irreversible account changes without explicit human review"],"agent_contract":{"task_input":"Use Sast Scan in an agent workflow","recommended_action":"Test manually in an isolated workspace and compare against safer alternatives.","install_policy":"review","minimum_review_before_use":["Trust: 75/100 Strong shortlist","Audit: 66/100 Needs review","Safety: 50/100 Avoid automatic install","Review repository, license, install command, and permission surface before production use."],"expected_agent_output":{"selected_skill":"shiftleftsecurity-sast-scan (Sast Scan)","install_command":"npx skills add ShiftLeftSecurity/sast-scan","risk_summary":"Needs review; Experimental; Review before production","verification_result":"Report the smallest successful task, files touched, warnings, and any missing setup."}},"outcome_feedback":{"endpoint":"https://www.openagentskill.com/api/agent/outcome","method":"POST","requires_resolve_event_id":true,"event_id_source":"Use install_receipt.outcome_feedback.event_id or feedback.event_id returned by /api/agent/resolve for the current task.","expected_outcomes":["success","failed","not_relevant","blocked_by_risk","setup_required"],"payload_template":{"event_id":"<install_receipt.outcome_feedback.event_id or feedback.event_id from /api/agent/resolve>","skill_slug":"shiftleftsecurity-sast-scan","task":"Use Sast Scan in an agent workflow","agent":"codex","outcome":"success","install_used":true,"risk_blocked":false,"setup_required":false,"task_success":true,"output_quality":4,"error_type":null,"human_review_required":false,"workspace":"sandbox","time_to_useful_ms":120000,"notes":"Report the smallest successful task, setup friction, files touched, and risk notes."}},"endpoints":{"web":"https://www.openagentskill.com/skills/shiftleftsecurity-sast-scan","api":"https://www.openagentskill.com/api/agent/skills/shiftleftsecurity-sast-scan","audit":"https://www.openagentskill.com/skills/shiftleftsecurity-sast-scan/audit","eval":"https://www.openagentskill.com/api/agent/evals?slug=shiftleftsecurity-sast-scan&task=Use%20Sast%20Scan%20in%20an%20agent%20workflow&max_risk=medium","resolve":"https://www.openagentskill.com/api/agent/resolve?task=Use%20Sast%20Scan%20in%20an%20agent%20workflow&agent=codex&max_risk=medium","receipt":"https://www.openagentskill.com/api/agent/receipt?task=Use%20Sast%20Scan%20in%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text","install":"https://www.openagentskill.com/api/skills/shiftleftsecurity-sast-scan/install","manifest":"https://www.openagentskill.com/api/registry/manifest/shiftleftsecurity-sast-scan"}},"platforms":["Python","SAST","Claude Code"],"use_cases":[{"slug":"security-compliance","title":"Security and compliance","url":"https://www.openagentskill.com/use-cases/security-compliance"},{"slug":"coding-agents","title":"Coding agents","url":"https://www.openagentskill.com/use-cases/coding-agents"},{"slug":"browser-automation","title":"Browser automation","url":"https://www.openagentskill.com/use-cases/browser-automation"},{"slug":"github-automation","title":"GitHub automation","url":"https://www.openagentskill.com/use-cases/github-automation"}],"install":"npx skills add ShiftLeftSecurity/sast-scan","install_targets":[{"id":"openagentskill-cli","label":"CLI","title":"OpenAgentSkill CLI","kind":"command","value":"npx skills add ShiftLeftSecurity/sast-scan","description":"Use the registry command when your workflow supports the OpenAgentSkill installer.","copyLabel":"Copy command"},{"id":"codex","label":"Codex","title":"Codex install prompt","kind":"agent-prompt","value":"Install the \"Sast Scan\" agent skill from https://github.com/ShiftLeftSecurity/sast-scan. Read its SKILL.md or equivalent instructions first, install only the files needed for this workspace, and summarize any required setup before using it. Skill purpose: Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.","description":"Give Codex a repo-aware install prompt when the skill is not available through a local CLI.","copyLabel":"Copy prompt"},{"id":"claude-code","label":"Claude Code","title":"Claude Code skill prompt","kind":"agent-prompt","value":"Add \"Sast Scan\" as a Claude Code skill from https://github.com/ShiftLeftSecurity/sast-scan. Inspect the skill instructions, place the reusable skill files in the appropriate local skills location for this project, and report the activation steps. Skill purpose: Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.","description":"Use this prompt to ask Claude Code to add the skill and explain the local activation steps.","copyLabel":"Copy prompt"},{"id":"cursor","label":"Cursor","title":"Cursor rule prompt","kind":"agent-prompt","value":"Turn \"Sast Scan\" from https://github.com/ShiftLeftSecurity/sast-scan into a reusable Cursor project rule or agent instruction. Preserve the core workflow, adapt paths to this repo, and keep the rule scoped to tasks where it is relevant. Skill purpose: Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.","description":"Use this when installing as Cursor project rules or reusable agent instructions.","copyLabel":"Copy prompt"}],"repository":"https://github.com/ShiftLeftSecurity/sast-scan","github_repo":"ShiftLeftSecurity/sast-scan","version":"1.0.0","license":"Apache-2.0","updated_at":"2026-06-12T14:00:29.80532+00:00","canonical_key":"shiftleftsecurity/sast-scan","recommendation_reasons":["Matches task terms: devsecops","Useful GitHub adoption: 878 stars","Install handoff is available","Repository freshness signal is available","Registry match score 12"],"urls":{"web":"https://www.openagentskill.com/skills/shiftleftsecurity-sast-scan","api":"https://www.openagentskill.com/api/agent/skills/shiftleftsecurity-sast-scan","install_api":"https://www.openagentskill.com/api/skills/shiftleftsecurity-sast-scan/install","audit":"https://www.openagentskill.com/skills/shiftleftsecurity-sast-scan/audit","repository":"https://github.com/ShiftLeftSecurity/sast-scan"}}],"meta":{"endpoint":"/api/skills/search","canonical_agent_endpoint":"/api/agent/resolve","safety_policy":"Blocked candidates are excluded by default. Pass include_blocked=true only for manual audit workflows.","agent_friendly":true,"api_version":"1.0","generated_at":"2026-07-04T03:46:07.131Z"}}