daniellummis

Audit GitHub Actions workflow cache usage for poisoning, keying, and secret-path risks.

Audit GitHub merge queue workflow health with failure-rate, queue-latency, and stale-success risk scoring.

Detect flaky GitHub Actions job steps by finding mixed success/failure conclusions across runs.

Summarize GitHub Actions matrix job failures across runs so you can spot unstable OS/runtime axes fast.

Detect flaky tests from JUnit XML retries and emit a triage report with top unstable cases.

Audit GitHub Actions mainline branch reliability by scoring failure rate, consecutive failures, and stale-success risk for critical workflows.

Audit GitHub Actions workflow files for secret exposure risks like pull_request_target secret usage, secret echo commands, and unpinned action secret passing.

Audit pull-request and merge-queue GitHub Actions reliability by scoring failure rate, queue latency, and stale-success risk for merge gates.

Audit deployment workflow risk from GitHub Actions runs by scoring failure rate, unresolved failure streaks, and time since last successful deploy.

Detect consecutive GitHub Actions failure streaks by repo/workflow/branch to prioritize unstable pipelines.

Group GitHub Actions failures by pipeline phase (setup/build/test/lint/deploy/security) with minute impact to prioritize fixes.

Audit cancelled and timed-out GitHub Actions runs from JSON exports to surface wasted CI minutes and noisy workflows.

Audit .env alias groups for missing required config, conflicting values, and canonical-key drift before deploy.

Preflight Prisma migration state before deploy; fails fast on drift, failed migrations, missing DB URLs, or unapplied migration files.

Audit GitHub Actions run health by trigger event and workflow so flaky or noisy automation sources are easy to prioritize.

Audit GitHub Actions workflow conclusion volatility to surface unstable pipelines before they become chronic failures.

Compare baseline vs current GitHub Actions run exports to catch workflow/job runtime regressions before CI costs and lead time spike.

Audit GitHub Actions run reliability by actor to surface high-risk contributors and flaky automation owners.

Audit GitHub Actions job runtime risk against timeout thresholds so near-timeout jobs get fixed before they fail CI.

Measure GitHub Actions failure recovery latency and unresolved incident age by workflow group.

Audit manual GitHub Actions trigger dependence by workflow/event to flag automation gaps and intervention risk.

Detect duplicate GitHub Actions run bursts by workflow/branch/commit and quantify wasted rerun minutes.

Detect sudden GitHub Actions failure-rate spikes by workflow group using recent-vs-baseline run windows.

Audit GitHub Actions workflow permission scope drift to enforce least-privilege token access.

Statically audit Dockerfiles for common container hardening risks (root user, unpinned/latest base images, missing healthchecks, and risky build patterns).

Preflight-check Render service environment variables before deploys; catches missing keys and placeholder/template values that commonly break production roll...

Audit GitHub Actions reliability by commit SHA to surface risky commits causing repeated workflow failures across branches.

Detect GitHub Actions workflow groups that stopped running on their normal cadence using median run intervals and current inactivity gap.

Audit GitHub Actions runs for fail-then-success retry recovery patterns to quantify flaky rerun waste.

Detect branch-level GitHub Actions reliability drift by comparing failure and runtime deltas against a mainline baseline.

Audit GitHub Actions workflows that use self-hosted runners for untrusted trigger and credential-hardening risks.

Quantify wasted GitHub Actions minutes caused by reruns so flaky workflows can be fixed with data.

Audit GitHub Actions cloud auth workflows for OIDC hardening gaps like missing id-token write permissions, static cloud secrets, and floating auth action refs.

Detect stale queued/in-progress GitHub Actions runs before they quietly block delivery.

Audit GitHub Actions rerun dependency and success-after-rerun effectiveness to highlight workflows wasting CI time.

Audit GitHub Actions failure timing by day/hour to surface recurring outage windows and staffing hotspots.

Cluster failed GitHub Actions runs into incident windows by repo to expose outage duration, impact scope, and escalation severity.

Audit GitHub Actions queue wait hotspots from run/job JSON so CI bottlenecks are visible before they stall merges.

Audit GitHub Actions artifact storage usage from JSON exports so bloated artifacts are flagged before they inflate CI cost.

Generate and sync a README environment-variable table from .env.example using marker blocks, with drift detection for CI.

Cluster JUnit failures into stable fingerprints so CI triage focuses on root causes, not noisy one-off logs.

Replay signed Stripe webhook payloads to a local or staging endpoint for idempotency and retry debugging.

Sync TASKS.md current phase and in-progress checklist from the active PLAN.md phase to keep sprint execution aligned.

Detect config drift between required local env keys and a Render service before deploy; fails when required keys are missing remotely.

Audit rerun debt by commit SHA to find commits that repeatedly burn CI minutes across workflows.