Hi maintainers,\n\nI maintain �gentic-actions-guard, a small OSS scanner for AI/agent GitHub Actions workflow boundaries: https://github.com/sho-tado/agentic-actions-guard\n\nI'm doing consent-first reviews of public AI GitHub Actions workflows. The review looks only at public workflow files and focuses on maintainer-safety boundaries such as untrusted GitHub event input, secrets, token permissions, pull_request_target, checkout credentials, mutable AI action refs, and AI output flowing into shell execution.\n\nWould you be open to receiving a lightweight Markdown review report for this repository's public workflows?\n\nIf yes, I'll share a concise report in this issue or wherever you prefer. If not, no worries, I will not post repo-specific findings.\n\nI will not include secrets, private prompts, exploit payloads, or non-public repository content.
Hi maintainers,\n\nI maintain �gentic-actions-guard, a small OSS scanner for AI/agent GitHub Actions workflow boundaries: https://github.com/sho-tado/agentic-actions-guard\n\nI'm doing consent-first reviews of public AI GitHub Actions workflows. The review looks only at public workflow files and focuses on maintainer-safety boundaries such as untrusted GitHub event input, secrets, token permissions, pull_request_target, checkout credentials, mutable AI action refs, and AI output flowing into shell execution.\n\nWould you be open to receiving a lightweight Markdown review report for this repository's public workflows?\n\nIf yes, I'll share a concise report in this issue or wherever you prefer. If not, no worries, I will not post repo-specific findings.\n\nI will not include secrets, private prompts, exploit payloads, or non-public repository content.