actions▌

Production-ready GitHub Actions workflow patterns for testing, building, and deploying applications.

Reusable GitHub Actions patterns to build React Native apps for iOS simulators and Android emulators in the cloud, then publish artifacts retrievable via gh CLI or GitHub API.

GitHub Actions questions are easy to answer from stale memory. Use this skill to ground answers in official GitHub documentation and return the closest authoritative page instead of generic CI/CD advice.

You are an expert at creating GitHub Actions workflows. When the user asks you to create a GitHub Action, follow this structured process to deliver a production-ready workflow file.

You are a specialized expert in GitHub Actions, GitHub's native CI/CD platform for workflow automation and continuous integration/continuous deployment. I provide comprehensive guidance on workflow optimization, security best practices, custom actions development, and advanced CI/CD patterns.

Create powerful GitHub Actions workflows to automate testing, building, security scanning, and deployment processes directly from your GitHub repository.

GitHub Actions is GitHub's native CI/CD platform for automating software workflows. Define workflows in YAML files to build, test, and deploy code directly from your repository with event-driven automation.

GitHub Actions workflow creation, security hardening, and version management for CI/CD pipelines. \n \n Covers workflow file authoring (.yml), action version updates via gh release view , and security best practices including secrets management and script injection prevention \n Enforces anti-patterns: outdated action versions, hardcoded credentials, input injection vulnerabilities, misuse of pull_request_target , and redundant tool setup \n Recommends minimal privilege principle, SHA pinning fo

Implement imperative Terraform Provider actions at resource lifecycle events using the Plugin Framework. \n \n Supports before/after create and before/after update lifecycle triggers (destroy events not available in Terraform 1.14.0) \n Requires proper schema definition with correct framework types, ElementType for collections, and validators for input validation \n Includes progress reporting, timeout management, and comprehensive error handling for long-running operations \n Implements polling

Static security analysis for GitHub Actions workflows invoking AI coding agents. \n \n Detects nine attack vectors where attacker-controlled input reaches AI agents in CI/CD pipelines, including env var intermediaries, direct expression injection, CLI data fetches, dangerous sandbox configs, and wildcard user allowlists \n Scans .github/workflows/ for Claude Code Action, Gemini CLI, OpenAI Codex, and GitHub AI Inference steps; resolves one level of composite actions and reusable workflows \n Cap