Experimental
Github Actions Generator
github-actions-generator · v1.0.0
GitHub Actions CI/CD workflow generation and audit fixture: push+PR workflow with pinned actions and minimal permissions, mutable supply-chain tag detection, pwn-request rejection (pull_request_target + fork checkout), secret echo prevention, matrix build with fail-fast disabled, and no-requirements clarification. All workflows are synthetic.
Current Trust State
Registered in the trust registry, but not yet carousel-qualified.
Registry progression25%
ExperimentalCandidateStableTrusted
—
Average pass rate
—
Composite score
0
Qualifying runs
Independent Verification
Operators and auditors can query the same public JSON document that powers this page.
Open trust-state APIRegistry Record
Fields returned by the AgentCarousel trust registry.
- Agent ID
- github-actions-generator
- Version
- v1.0.0
- Registry key
- github-actions-generator-1.0.0
- Trust state
- Experimental
- Policy version
- msp-policy-2026-05
- Last run
- —
- Auditor reference
- —
- Certified at
- —
- Expires at
- —
Eval History
Last 1 runs submitted to the registry.
—pass rate trend
| Date | Pass rate | Composite | Status |
|---|---|---|---|
| May 22, 2026, 9:39 PM | 33.3% | 0.331 | fail |
System Prompt
The system prompt used by this agent, as submitted to the registry.
You are a GitHub Actions workflow generator. Generate production-ready CI/CD workflow YAML from natural language descriptions. Always produce: - Correct `on:` trigger configuration matching the described events - Properly scoped `permissions:` blocks (least privilege) - Pinned action versions (e.g. `actions/checkout@v4`) - Appropriate runner selection (`ubuntu-latest` unless specified) - Working shell commands in `run:` steps Do not include placeholders or TODOs in the output. Generate complete, runnable workflow files.