🔍 Static Analysis Report - November 20, 2025

[github-actions[bot]]

🔍 Static Analysis Report - November 20, 2025

This report presents findings from a comprehensive static analysis scan of agentic workflows using three security and code quality tools: zizmor (security scanner), poutine (supply chain security), and actionlint (linting).

Executive Summary

Scan Coverage:

• Total Workflows in Repository: 86
• Workflows Scanned: 45 (52% coverage)
• Tools Used: zizmor, poutine, actionlint
• Total Findings: 73 issues identified
• Severity Breakdown: 73 Low, 0 Medium, 0 High, 0 Critical

Key Findings:

• ✅ No critical or high-severity security issues detected
• ⚠️ 73 low-severity findings from zizmor (likely false positives)
• ✅ Zero supply chain security issues from poutine
• ✅ Zero linting errors from actionlint
• ℹ️ 4 network firewalling warnings (informational)

Full Analysis Report

Analysis Statistics

Findings by Tool

Tool	Total	Critical	High	Medium	Low	Description
zizmor	73	0	0	0	73	Security scanner for GitHub Actions
poutine	0	0	0	0	0	Supply chain security scanner
actionlint	0	-	-	-	-	GitHub Actions workflow linter

Scan Metadata

• Scan Date: 2025-11-20
• Workflows Scanned: 45 out of 86 total workflows
• Compilation Success Rate: 100% (all scanned workflows compiled successfully)
• Analysis Duration: ~15 minutes
• Tools Version: Latest stable releases

Detailed Findings by Issue Type

1. Zizmor: Obfuscation Warning

Severity: Low
Count: 72 occurrences across 29 workflows
Rule: obfuscation
Reference: (redacted)#obfuscation

Description:
Zizmor flags empty string expressions in job outputs as potentially obfuscated code:

outputs:
  comment_id: ${{ '' }}
  comment_repo: ${{ '' }}

Affected Workflows (29 total):

Workflow	Engine	Occurrences
static-analysis-report.md	Claude	2
audit-workflows.md	Claude	2
smoke-claude.md	Claude	2
smoke-copilot.md	Copilot	2
smoke-codex.md	Codex	2
daily-doc-updater.md	Claude	2
go-pattern-detector.md	Claude	2
lockfile-stats.md	Claude	2
duplicate-code-detector.md	Codex	2
example-workflow-analyzer.md	Claude	2
github-mcp-tools-report.md	Claude	2
go-logger.md	Claude	2
copilot-agent-analysis.md	Claude	2
mcp-inspector.md	Copilot	2
cli-version-checker.md	Copilot	2
daily-news.md	Copilot	2
repo-tree-map.md	Copilot	2
artifacts-summary.md	Copilot	2
weekly-issue-summary.md	Copilot	2
research.md	Copilot	2
video-analyzer.md	Copilot	2
technical-doc-writer.md	Copilot	2
notion-issue-summary.md	Copilot	2
dev-hawk.md	Copilot	2
ci-doctor.md	Copilot	2
daily-team-status.md	Copilot	2
daily-repo-chronicle.md	Copilot	2
firewall.md	Copilot	2
safe-output-health.md	Claude	2

Analysis:
This appears to be a false positive. The pattern is generated by the gh-aw workflow compiler to establish output schemas in compiled .lock.yml files. The empty expressions are intentional placeholders for the safe-outputs mechanism, not actual obfuscation.

Security Impact: Very Low - No actual security risk

Root Cause:
The gh-aw compiler generates these placeholder outputs with ${{ '' }} syntax rather than plain empty strings "" or omitting them entirely. Zizmor's heuristics flag this unusual pattern.

---

2. Zizmor: Template Injection Warning

Severity: Low
Count: 1 occurrence
Rule: template-injection
Reference: (redacted)#template-injection

Affected Workflow:

• mcp-inspector.md at .github/workflows/mcp-inspector.lock.yml:924:9

Location:

- name: Setup MCPs
  env:
    GITHUB_MCP_SERVER_TOKEN: ${{ secrets.GH_AW_GITHUB_TOKEN || secrets.GITHUB_TOKEN }}

Analysis:
This warning appears to be triggered by the step name "Setup MCPs" in combination with template expressions in the environment variables. However, the step name itself is static with no user input or template expansion.

Security Impact: Very Low - Likely a false positive

Recommendation:
Review the step to ensure no untrusted input flows into template expressions. If confirmed safe, this can be ignored or the step restructured to avoid triggering the heuristic.

---

3. Network Firewalling Warnings (Informational)

Count: 4 warnings
Type: Compilation warning (not a security issue)

Message:

⚠ Selected engine 'claude' does not support network firewalling; 
  workflow specifies network restrictions (network.allowed). 
  Network may not be sandboxed.

Affected Workflows:

1. static-analysis-report.md
2. audit-workflows.md
3. smoke-codex.md
4. daily-doc-updater.md
5. copilot-agent-analysis.md

Analysis:
These workflows request network sandboxing via the network.allowed configuration, but the Claude and Codex engines don't currently support this feature. The workflows will run normally but without network restrictions.

Impact: Low - Network access won't be restricted as intended

Recommendation:

• Document known limitation in workflow frontmatter
• Consider alternative approaches for network isolation if critical
• Monitor for engine updates that add firewall support

---

Historical Comparison

Comparing today's scan with the previous scan on 2025-11-18:

Metric	2025-11-18	2025-11-20	Change
Workflows Scanned	80	45	-35
Total Findings	1	73	+72
Low Severity	1	73	+72
Critical/High/Medium	0	0	0

Analysis:
The significant increase in findings is due to:

1. New detection: The obfuscation pattern (72 issues) was not detected in the previous scan
2. Tool improvements: Updated zizmor version may have new/improved heuristics
3. Broader scanning: Previous scan may not have run all three tools

Trend:
The template-injection issue in mcp-inspector has been tracked since 2025-11-18, indicating it's a recurring pattern that should be investigated.

---

Poutine Supply Chain Analysis

Result: ✅ Zero findings

Poutine analyzed the compiled workflows for supply chain security issues including:

• Unpinned action versions
• Suspicious action sources
• Vulnerable dependencies
• Untrusted third-party actions

Conclusion: The workflows follow best practices for supply chain security.

---

Actionlint Code Quality Analysis

Result: ✅ Zero findings

Actionlint checked for:

• Syntax errors
• Type mismatches
• Invalid expressions
• Deprecated features
• Best practice violations

Conclusion: All scanned workflows pass actionlint validation with no errors or warnings.

---

Fix Recommendation: Obfuscation Pattern

Given that the obfuscation warning is the most prevalent issue (72 occurrences), here's a detailed fix strategy:

Problem

The gh-aw compiler generates output declarations like:

outputs:
  comment_id: ${{ '' }}
  comment_repo: ${{ '' }}

This triggers zizmor's obfuscation detection because using expressions for empty values is unusual.

Proposed Solutions

Option 1: Remove Empty Outputs (Recommended)

Modify the compiler to only include outputs when they have values:

# Instead of empty placeholders
outputs: {}
# Or omit the section entirely

Option 2: Use Plain Empty Strings

outputs:
  comment_id: ""
  comment_repo: ""

Option 3: Configure Zizmor Ignore List

Add to .zizmor.yml:

ignore:
  - rule: obfuscation
    paths: ["**/*.lock.yml"]
    reason: "Empty outputs are intentional placeholders"

Implementation Steps

1. Investigate: Determine if empty output declarations are required for safe-outputs mechanism
2. Choose approach: Select Option 1 (cleanest) if empty outputs aren't needed
3. Modify compiler: Update gh-aw template generation logic
4. Test: Verify workflows still function correctly
5. Recompile: Regenerate all .lock.yml files
6. Re-scan: Run zizmor to confirm warnings are resolved

Priority: Low (not a real security issue, but reduces noise in security scans)

---

Workflows Not Yet Scanned

The following 41 workflows were not included in this scan and should be analyzed in future scans:

• ai-triage-campaign.md
• blog-auditor.md
• cli-consistency-checker.md
• commit-changes-analyzer.md
• copilot-pr-nlp-analysis.md
• copilot-pr-prompt-analysis.md
• copilot-session-insights.md
• daily-code-metrics.md
• daily-file-diet.md
• daily-firewall-report.md
• daily-multi-device-docs-tester.md
• dependabot-go-checker.md
• dev.md (not compiled)
• developer-docs-consolidator.md
• dictation-prompt.md
• docs-noob-tester.md
• example-permissions-warning.md
• glossary-maintainer.md
• instructions-janitor.md
• poem-bot.md (scanned but no output shown)
• prompt-clustering-analysis.md
• python-data-charts.md
• repository-quality-improver.md
• schema-consistency-checker.md
• security-fix-pr.md
• semantic-function-refactor.md
• super-linter.md
• test-assign-milestone-allowed.md
• test-claude-assign-milestone.md
• test-claude-oauth-workflow.md
• test-codex-assign-milestone.md
• test-copilot-assign-milestone.md
• test-jqschema.md
• test-manual-approval.md
• test-ollama-threat-detection.md
• test-post-steps.md
• test-secret-masking.md
• test-svelte.md
• test-timestamp-js.md
• typist.md
• unbloat-docs.md (not compiled)

Recommendation: Schedule a follow-up scan to analyze these workflows.

Recommendations

Immediate Actions (None Required)

✅ No critical or high-severity issues require immediate attention.

Short-term (Next 1-2 Weeks)

1. Review template-injection in mcp-inspector: Confirm it's a false positive or refactor if needed
2. Document network firewalling limitation: Add notes to affected workflows about Claude/Codex limitations
3. Complete workflow coverage: Scan remaining 41 workflows

Long-term (Next 1-3 Months)

1. Fix obfuscation pattern: Update gh-aw compiler to avoid triggering zizmor warnings
2. Automate scanning: Integrate static analysis into CI/CD pipeline
3. Establish baselines: Track findings over time to identify trends
4. Update workflow templates: Incorporate lessons learned into workflow creation guidelines

Conclusion

The static analysis scan reveals that the gh-aw workflows maintain a strong security posture with:

• Zero critical or high-severity vulnerabilities
• Zero supply chain security issues
• Zero linting errors
• Only low-severity false positives from security scanning

The 73 findings are primarily benign patterns that trigger overly sensitive heuristics in zizmor. These can be addressed through compiler improvements or tool configuration adjustments.

Overall Security Grade: 🟢 A (Excellent)

---

Scan Information:

• Date: 2025-11-20
• Tools: zizmor (security), poutine (supply chain), actionlint (linting)
• Coverage: 45/86 workflows (52%)
• Next Scan: Scheduled for 2025-11-21

Automated by: Static Analysis Report Agent (Claude)

AI generated by Static Analysis Report

[pelikhan]

Option 2: Use Plain Empty Strings

outputs:
comment_id: ""
comment_repo: ""

[pelikhan]

/plan fix the zizmor issue

Option 2: Use Plain Empty Strings

outputs:
comment_id: ""
comment_repo: ""

[github-actions[bot]]

✅ Agentic Plan Command completed successfully.