Harden Runner
Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-time.
Supply asset profile
Coding and developer agents
Code review, repo analysis, testing, CI, GitHub, DevOps, and developer workflow skills.
Scenario
GitHub automation
I need my agent to triage GitHub issues, review pull requests, and summarize repository changes.
Agent fit
Claude Code + CLI + Codex
Codex, Claude Code, Cursor, CLI, or custom agents.
Install
Ready
npx skills add step-security/harden-runner
Maintenance
fresh
3d since push
Risk
Safe to try
No major risk signals from available metadata
GitHub quality
1.2K
100/100 quality · 96/100 trust
Coverage tags
Review notes
No major risk signals from available metadata
Agent adoption scorecard
Trust, audit, and install readiness at a glance
These scores combine public repository metadata, OpenAgentSkill review signals, maintenance freshness, and install readiness. They are a shortlist signal, not a replacement for human review.
Quality
ExcellentHigh-confidence pick with strong adoption and healthy maintenance signals.
Trust
Production candidateStrong OpenAgentSkill Trust Score across adoption, recent maintenance, license clarity, documentation, dependency risk, and install availability.
Audit
Safe to tryInstall readiness, security metadata, maintenance, and adoption risk.
Agent safety v2
89/100 · Safe to install with normal review
Strong metadata, audit, install, and review signals. Suitable for agent shortlists after normal workspace review.
Allow agent install in a sandbox or low-risk workspace, then promote after one successful narrow task.
medium
Network access
Skill likely fetches remote pages, APIs, repositories, or external services.
medium
Filesystem access
Skill may read or write project files, documents, generated artifacts, or local workspace state.
Install targets
Install this skill in your agent workflow
Copy the registry command or an agent-specific install prompt for Codex, Claude Code, and Cursor.
OpenAgentSkill CLI
Use the registry command when your workflow supports the OpenAgentSkill installer.
$ npx skills add step-security/harden-runnerAgent resolve plan
Let an agent verify fit before installing.
The Resolve API returns the selected skill, alternatives, safety policy, audit notes, install target, and copy-paste prompt an agent can follow without scraping this page.
Resolve JSON
/api/agent/resolve?task=Use%20Harden%20Runner%20for%20an%20agent%20workflow&agent=codex&max_risk=medium
Resolve text
/api/agent/resolve?task=Use%20Harden%20Runner%20for%20an%20agent%20workflow&agent=codex&max_risk=medium&format=text
Install handoff
/api/skills/step-security-harden-runner/install
Agent should check
- Task fit and alternatives from Resolve API.
- Audit score, trust score, and safety policy warnings.
- Install target compatibility for Codex, Claude Code, Cursor, or CLI.
Copy prompt
Task: Use Harden Runner in this workspace.
Resolve first: https://www.openagentskill.com/api/agent/resolve?task=Use%20Harden%20Runner%20for%20an%20agent%20workflow&agent=codex&max_risk=medium
Review install handoff: https://www.openagentskill.com/api/skills/step-security-harden-runner/install
Install command: npx skills add step-security/harden-runner
Before running it, summarize audit warnings, required permissions, and the fallback skill if install is risky.Agent handoff
Give an agent the install path, not another directory page.
Use the public install endpoint to fetch the command, safety checklist, target prompts, and canonical links for this skill.
Install handoff
/api/skills/step-security-harden-runner/install
LLM text format
/api/skills/step-security-harden-runner/install?format=text
Find alternatives
/api/skills/search?q=Harden%20Runner&limit=3
Agent prompt
Use Harden Runner for this task. Review https://www.openagentskill.com/api/skills/step-security-harden-runner/install, then install with: npx skills add step-security/harden-runnerRegistry metadata
Agent-readable profile for automatic skill selection.
This page exposes the same decision, trust, audit, use-case, and install signals through the Registry API, so agents can rank this skill without scraping the UI.
Manifest
/api/registry/manifest/step-security-harden-runner
LLM text
/api/registry/manifest/step-security-harden-runner?format=text
Install alias
/api/registry/install/step-security-harden-runner
Recommend
/api/registry/recommend?task=Use%20Harden%20Runner%20in%20an%20agent%20workflow&limit=3
Agent fit
GitHub automation
Use-case tags
Platforms
TypeScript, GitHub, Claude Code
Audit report
Safe to try · 97/100
Review install readiness, maintenance, trust, quality, and metadata warnings before adding this skill to an agent workflow.
Agent decision cockpit
Primary pick for GitHub automation
Use this as a leading candidate, then validate the README and install path in your own agent stack.
Role in stack
Primary pick
Primary fit
GitHub automation
Trust label
Production-ready
Install path
Command ready
Use when
- GitHub automation workflows
- Claude Code teams
- teams that value GitHub adoption signals
Evidence
- 1,200 GitHub stars
- recent repository activity
- install command or GitHub repo available
- 100/100 quality profile
Review first
- No OpenAgentSkill engagement data yet
Implementation path
- 1Install it in a sandbox agent and run one GitHub automation task end to end.
- 2Compare output quality, latency, and failure behavior against at least one alternative.
- 3Promote it into production only after reviewing repository permissions, license, and maintenance signals.
Trust profile
Production candidate
Strong OpenAgentSkill Trust Score across adoption, recent maintenance, license clarity, documentation, dependency risk, and install availability.
GitHub adoption
PASS1.2K GitHub stars
Recent maintenance
PASS3d since push
License clarity
PASSApache-2.0
README/SKILL.md completeness
PASSMetadata includes enough usage and workflow context
Good signals
- Manually verified listing
- AI review approved
- Install path is available
- Repository evidence is available
- Recently maintained repository
- Meaningful GitHub adoption signal
Review before install
No major trust warnings detected from available metadata.
Recommended action
Shortlist for production use, then run a normal repository and dependency review.
Quality profile
Excellent candidate for agent workflows
High-confidence pick with strong adoption and healthy maintenance signals.
Workflow fit
Use this skill in these scenarios
Manage repositories
GitHub automation
I need my agent to triage GitHub issues, review pull requests, and summarize repository changes.
Build and ship code
Coding agents
I need a coding agent that can understand a repository, edit code, and review pull requests.
Automate repeated work
Workflow automation
I need my agent to automate a repeated workflow across tools and files.
Stack fit
Add it to a complete workflow
Turn skills into distribution
Content growth agent
A stack for turning newly indexed skills into SEO briefs, social drafts, comparison pages, and reusable publishing workflows.
Inspect, patch, and verify code
Coding review agent
A stack for software agents that inspect repositories, review pull requests, generate tests, and turn findings into shippable patches.
Ingest, retrieve, and cite
RAG knowledge base
A stack for document-heavy agents that ingest files, create searchable knowledge, retrieve relevant context, and answer with grounded sources.
Alternative shortlist
Compare before you install
Similar skills in this category, ranked with the same readiness and quality signals.
Act
Run your GitHub Actions locally 🚀
Gitea
Git with a cup of tea! Painless self-hosted all-in-one software development service, including Git hosting, code review, team collaboration, package registry and CI/CD
Goreleaser
Release engineering, simplified
Ubicloud
Open source alternative to AWS. Elastic compute, block storage (non replicated), firewall and load balancer, managed Postgres, K8s, AI inference, and IAM services.
Overview
Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-time.
Imported by the skill-only GitHub discovery pipeline because it matches agent skill, automation, domain workflow, RAG, document-processing, data, finance, security, or developer-tool signals. Protocol-server projects are excluded from automated imports.
Platform Compatibility
Technical Details
- Version
- 1.0.0
- License
- Apache-2.0
- Last Updated
- 6/16/2026
- Published
- 6/16/2026
Frameworks & Tools
Decision snapshot
Primary pick
1,200 GitHub stars
Audit Snapshot
Install and adoption review
- Security
- 97/100
- Maintenance
- 100/100
- Install
- 92/100
Growth loop
Share this skill
Scenario-led draft for Harden Runner, with the OpenAgentSkill Update theme and canonical URL.
OpenAgentSkill Update Today: Harden Runner Use it when you need an agent to browse, extract, or monitor web pages without building a scraper... 1.2K stars - github-automation Link: https://www.openagentskill.com/skills/step-security-harden-runner?ref=x #AIAgents #OpenAgentSkill
Optional reply with install command
Link for Harden Runner: https://www.openagentskill.com/skills/step-security-harden-runner?ref=x Install: npx skills add step-security/harden-runner
Listing source
Community indexed
This listing was indexed from public sources and is not marked official until a maintainer claim is approved.
- Creator
- step-security
- Indexed by
- OpenAgentSkill community index
Attribution links to the public repository or creator profile. Creators can claim the listing to update ownership signals.
Claim this skillOwner claim
Claim this skill listing
This community indexed listing is attributed to step-security but is not marked official yet. Claim it to add a verified owner signal and make future launch, install, and audit updates easier to trust.
README badge
Add this badge to your GitHub README to show the listing, trust score, and install handoff.
[](https://www.openagentskill.com/skills/step-security-harden-runner)Author
step-security✓
@step-security
Tags
Platform Fit
Health Signals
- GitHub stars
- 1.2K
- Quality score
- 63/100
- Last GitHub push
- Jun 13, 2026
- Framework hints
- 2
- OpenAgentSkill views
- 0
- Install copies
- 0
- Outbound clicks
- 0
Community Signal
Share whether this skill looks useful for your agent workflow. Aggregated feedback improves rankings over time.
Trust & Safety
Production candidate
- GitHub adoption1.2K GitHub starsPASS
- Recent maintenance3d since pushPASS
- License clarityApache-2.0PASS
- README/SKILL.md completenessMetadata includes enough usage and workflow contextPASS
- Dependency riskno major dependency risk hints in public metadataPASS
- Install availabilitynpx skills add step-security/harden-runnerPASS
Related Skills
Act
Run your GitHub Actions locally 🚀
70.8K stars · 0 installsGitea
Git with a cup of tea! Painless self-hosted all-in-one software development service, including Git hosting, code review, team collaboration, package registry and CI/CD
56.3K stars · 0 installsGoreleaser
Release engineering, simplified
15.9K stars · 0 installsUbicloud
Open source alternative to AWS. Elastic compute, block storage (non replicated), firewall and load balancer, managed Postgres, K8s, AI inference, and IAM services.
12.1K stars · 0 installs