Ran your repo through Trustabl and a few things caught my eye. The scan flagged 23 findings, including 4 critical ones. A couple of patterns that stood out were some bundled skill scripts reading credentials or secrets, and the LangChain tool body spawning a subprocess. Might be worth a look to ensure these are intentional and handled securely.
Add Trustabl to your CI — trustabl/trustabl-action:
- name: Trustabl scan
uses: trustabl/trustabl-action@v1
Ran your repo through Trustabl and a few things caught my eye. The scan flagged 23 findings, including 4 critical ones. A couple of patterns that stood out were some bundled skill scripts reading credentials or secrets, and the LangChain tool body spawning a subprocess. Might be worth a look to ensure these are intentional and handled securely.
Add Trustabl to your CI — trustabl/trustabl-action: