Skill audit report

Checkov Action audit report.

This GitHub Action runs Checkov against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues.

REVIEWED · REVIEWSafe to tryGenerated Jul 3, 2026Heuristic metadata audit
86
Audit
81
Trust
82
Quality
86
Security
100
Maintain
92
Install

OpenAgentSkill Trust Score

81
Strong shortlist

Stars, maintenance, license, docs, install safety, permission surface, and installability.

The Trust Score is OpenAgentSkill's adoption layer. It is designed to help an agent decide whether a skill is safe enough to shortlist before installation.

GitHub adoption

INFO

62

307 GitHub stars

Stars/forks activity

INFO

62

307 stars, 115 forks; issue activity unavailable in current metadata

Recent maintenance

PASS

100

22d since push

License clarity

PASS

86

Apache-2.0

README/SKILL.md completeness

PASS

90

Metadata includes enough usage and workflow context

Dependency/runtime risk

INFO

80

external package install surface

Install availability

PASS

92

npx skills add bridgecrewio/checkov-action

Install command safety

PASS

92

standard package or runtime install path

Permission surface

PASS

86

filesystem or document access

Repository evidence

PASS

86

https://github.com/bridgecrewio/checkov-action

Review status

PASS

88

AI review data available

Agent Proven outcomes

INFO

54

No agent outcome data yet

Checks

Install and adoption review

9 passed · 2 review

Install path

92

PASS

npx skills add bridgecrewio/checkov-action

Repository

88

PASS

https://github.com/bridgecrewio/checkov-action

License

86

PASS

Apache-2.0

Maintenance

100

PASS

22d since push

AI review

88

PASS

Approved with no listed issues

README/SKILL.md completeness

90

PASS

Usable description available

Dependency risk

80

PASS

external package install surface

Install command safety

92

PASS

standard package or runtime install path

Permission surface

86

PASS

filesystem or document access

Stars/forks activity

62

CHECK

307 stars, 115 forks; issue activity unavailable in current metadata

Adoption

68

INFO

307 GitHub stars

Warnings

  • Quality score needs review

Method

This report combines public metadata, AI review output, repository freshness, install readiness, OpenAgentSkill events, quality scoring, trust checks, and the agent safety gate. It is not a full source-code security review.

Compare nearby options

Related skills to audit next