Functions§
- artifact_
boundary_ crossing - MVP Rule 5: Artifact produced by privileged step consumed across trust boundary.
- authority_
cycle - Rule: circular DelegatesTo chain — workflow calls itself transitively.
- authority_
propagation - MVP Rule 1: Authority (secret/identity) propagated across a trust boundary.
- cross_
workflow_ authority_ chain - Rule: authority (secret/identity) flows into an opaque external workflow via DelegatesTo.
- floating_
image - Tier 6 Rule: Container image without Docker digest pinning.
- long_
lived_ credential - Stretch Rule 9: Secret name matches known long-lived/static credential pattern.
- over_
privileged_ identity - MVP Rule 2: Identity scope broader than actual usage.
- persisted_
credential - Stretch Rule: checkout step with
persistCredentials: truewrites credentials to disk. - run_
all_ rules - Run all rules against a graph.
- self_
hosted_ pool_ pr_ hijack - Rule: self-hosted agent pool used by a PR-triggered pipeline that also checks out the repo.
- self_
mutating_ pipeline - Rule: step writes to the environment gate ($GITHUB_ENV / ##vso[task.setvariable]).
- service_
connection_ scope_ mismatch - Rule: ADO service connection with broad/unknown scope and no OIDC federation, reachable from a PR-triggered job.
- trigger_
context_ mismatch - Rule: dangerous trigger type (pull_request_target / pr) combined with secret/identity access.
- unpinned_
action - MVP Rule 3: Third-party action/image without SHA pin.
- untrusted_
with_ authority - MVP Rule 4: Untrusted step has direct access to secret/identity.
- uplift_
without_ attestation - Rule: privileged workflow (OIDC/federated identity) with no provenance attestation step.
- variable_
group_ in_ pr_ job - Rule: ADO variable group consumed by a PR-triggered job.