name: 'AI Coding Shield Audit'
description: 'Security auditing tool for AI development workflows, skills, and MCPs'
branding:
icon: 'shield'
color: 'blue'
inputs:
path:
description: 'Path to scan'
required: true
default: '.'
severity:
description: 'Minimum severity level (low, medium, high, critical)'
required: false
default: 'medium'
fail-on:
description: 'Fail pipeline on risk level (low, medium, high, critical)'
required: false
default: 'critical'
runs:
using: "composite"
steps:
- name: Download AI Coding Shield
shell: bash
run: |
# Download binary based on runner OS (simplified for Linux runner)
curl -L -o /usr/local/bin/ai-coding-shield https://github.com/AI-Coding-Shield/ai-coding-shield/releases/latest/download/ai-coding-shield-linux-amd64
chmod +x /usr/local/bin/ai-coding-shield
- name: Run Audit
shell: bash
run: |
ai-coding-shield audit ${{ inputs.path }} \
--severity ${{ inputs.severity }} \
--ci-mode \
--fail-on ${{ inputs.fail_on }}