daniellummis

Detect flaky tests from JUnit XML retries and emit a triage report with top unstable cases.

Audit GitHub Actions workflow files for hardening gaps (missing timeouts/permissions/concurrency and floating action refs).

Audit GitHub Actions mainline branch reliability by scoring failure rate, consecutive failures, and stale-success risk for critical workflows.

Summarize GitHub Actions matrix job failures across runs so you can spot unstable OS/runtime axes fast.

Audit GitHub merge queue workflow health with failure-rate, queue-latency, and stale-success risk scoring.

Audit GitHub Actions workflow files for secret exposure risks like pull_request_target secret usage, secret echo commands, and unpinned action secret passing.

Detect flaky GitHub Actions job steps by finding mixed success/failure conclusions across runs.

Audit GitHub Actions artifact storage usage from JSON exports so bloated artifacts are flagged before they inflate CI cost.

Quantify wasted GitHub Actions minutes caused by reruns so flaky workflows can be fixed with data.

Detect consecutive GitHub Actions failure streaks by repo/workflow/branch to prioritize unstable pipelines.

Audit GitHub Actions failure timing by day/hour to surface recurring outage windows and staffing hotspots.

Audit GitHub Actions runs for fail-then-success retry recovery patterns to quantify flaky rerun waste.

Audit pull-request and merge-queue GitHub Actions reliability by scoring failure rate, queue latency, and stale-success risk for merge gates.

Detect GitHub Actions workflow groups that stopped running on their normal cadence using median run intervals and current inactivity gap.

Audit GitHub Actions run reliability by actor to surface high-risk contributors and flaky automation owners.

Audit GitHub Actions rerun dependency and success-after-rerun effectiveness to highlight workflows wasting CI time.

Detect stale queued/in-progress GitHub Actions runs before they quietly block delivery.

Audit GitHub Actions workflow permission scope drift to enforce least-privilege token access.

Audit GitHub Actions run health by trigger event and workflow so flaky or noisy automation sources are easy to prioritize.

Audit GitHub Actions workflow conclusion volatility to surface unstable pipelines before they become chronic failures.

Audit GitHub Actions job runtime risk against timeout thresholds so near-timeout jobs get fixed before they fail CI.

Audit GitHub Actions workflows that use self-hosted runners for untrusted trigger and credential-hardening risks.

Group GitHub Actions failures by pipeline phase (setup/build/test/lint/deploy/security) with minute impact to prioritize fixes.

Detect config drift between required local env keys and a Render service before deploy; fails when required keys are missing remotely.

Sync TASKS.md current phase and in-progress checklist from the active PLAN.md phase to keep sprint execution aligned.

Audit .env alias groups for missing required config, conflicting values, and canonical-key drift before deploy.

Audit GitHub Actions reliability by commit SHA to surface risky commits causing repeated workflow failures across branches.

Cluster failed GitHub Actions runs into incident windows by repo to expose outage duration, impact scope, and escalation severity.

Statically audit Dockerfiles for common container hardening risks (root user, unpinned/latest base images, missing healthchecks, and risky build patterns).

Detect duplicate GitHub Actions run bursts by workflow/branch/commit and quantify wasted rerun minutes.

Audit deployment workflow risk from GitHub Actions runs by scoring failure rate, unresolved failure streaks, and time since last successful deploy.

Audit GitHub Actions cloud auth workflows for OIDC hardening gaps like missing id-token write permissions, static cloud secrets, and floating auth action refs.

Audit rerun debt by commit SHA to find commits that repeatedly burn CI minutes across workflows.

Detect sudden GitHub Actions failure-rate spikes by workflow group using recent-vs-baseline run windows.

Detect branch-level GitHub Actions reliability drift by comparing failure and runtime deltas against a mainline baseline.

Audit cancelled and timed-out GitHub Actions runs from JSON exports to surface wasted CI minutes and noisy workflows.

Audit manual GitHub Actions trigger dependence by workflow/event to flag automation gaps and intervention risk.

Measure GitHub Actions failure recovery latency and unresolved incident age by workflow group.

Preflight Prisma migration state before deploy; fails fast on drift, failed migrations, missing DB URLs, or unapplied migration files.

Preflight-check Render service environment variables before deploys; catches missing keys and placeholder/template values that commonly break production roll...

Replay signed Stripe webhook payloads to a local or staging endpoint for idempotency and retry debugging.

Generate and sync a README environment-variable table from .env.example using marker blocks, with drift detection for CI.

Cluster JUnit failures into stable fingerprints so CI triage focuses on root causes, not noisy one-off logs.

Audit GitHub Actions queue wait hotspots from run/job JSON so CI bottlenecks are visible before they stall merges.

Compare baseline vs current GitHub Actions run exports to catch workflow/job runtime regressions before CI costs and lead time spike.