github · GitHub Actions Docs

Actions Compromised runners - GitHub Docs

Explains the security implications of compromised runners and provides guidance on mitigating risks associated with untrusted execution environments.

Derived skill

Files assembled from official documentation

Viewing SKILL.md

Explains the security implications of compromised runners and provides guidance on mitigating risks associated with untrusted execution environments.

Use when designing secure CI/CD workflows or determining how to isolate sensitive tasks from potentially untrusted runner environments.

File	Contains	Use For
`SKILL.md`	Entry point: scope, routing table, and workflow.	Start here.
`docs/actions-security-compromised-runners-github-docs-workflow-guide.md`	Documentation explaining the security risks, potential impact, and data exfiltration methods associated with compromised GitHub Actions runners.	Questions about documentation explaining the security risks, potential impact, and data exfiltration methods associated with compromi...
`examples/actions-security-compromised-runners-github-docs-github-actions-compromi.text`	A text example demonstrating a workflow using a compromised action that accesses sensitive secrets.	Exact payloads, commands, or snippets shown in A text example demonstrating a workflow using a compromised action that accesses sensitive secrets.

- GitHub Actions / - Concepts / - Security / - Compromised runners
Main sections: In this article, Potential impact of a compromised runner, Accessing secrets, Exfiltrating data from a runner, Stealing the job's GITHUBTOKEN.

Open the most relevant file under docs/ for the exact documented workflow and wording.
Open schemas/ files for exact structured contracts.
Open examples/ files for concrete requests, commands, snippets, and manifests.
Do not add behavior or configuration that is not present in the attached source files.