fix(ci): correct agent-bom CLI flags + add fs scan by msaad00 · Pull Request #10 · msaad00/cloud-security

msaad00 · 2026-04-09T03:14:50Z

Fixes invalid flags, adds fs scan, prints results to CI log for visibility. 3 agent-bom jobs: code, skills, fs.

Fixes: - agent-bom code: removed --fail-on-severity (not a valid flag) - agent-bom skills scan: added --verbose for full output - Both jobs now cat results to CI log for visibility Added: - agent-bom-fs-scan: filesystem package + CVE scan of skills/ directory - All 3 agent-bom jobs echo results to stdout so findings are visible in CI logs, not just artifacts 3 agent-bom CI jobs: 1. code scan — SAST for AI components, prompts, tools 2. skills audit — trust, risk, provenance on SKILL.md files 3. fs scan — package dependencies, CVEs

Diagrams: - IAM departures: simplified from 15 boxes to 5 clean nodes (LR flow) - Vuln remediation: simplified from 12 boxes to 4 clean nodes (LR flow) - All diagrams now render cleanly on GitHub — no cramped text, no edge spaghetti CI: - Consolidated 3 agent-bom jobs into 1: code scan + skills audit + fs scan - Results printed to CI log AND uploaded as single artifact bundle - One pip install, one job, three scans

msaad00 added 2 commits April 8, 2026 23:14

msaad00 merged commit 86c0a8c into main Apr 9, 2026
9 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(ci): correct agent-bom CLI flags + add fs scan#10

fix(ci): correct agent-bom CLI flags + add fs scan#10
msaad00 merged 2 commits intomainfrom
fix/agent-bom-ci-flags

msaad00 commented Apr 9, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

msaad00 commented Apr 9, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant