Skylos - Python SAST, Dead Code Detection & PR Gate
Version updated for https://github.com/duriantaco/skylos to version v4.4.0.
- This action is used across all versions by 15 repositories.
Action Type
This is a Composite action.
Go to the GitHub Marketplace to find the latest changes.
Action Summary
Skylos is an open-source static analysis tool and GitHub Action that identifies dead code, hardcoded secrets, exploitable flows, and AI-generated security vulnerabilities in Python, TypeScript, and Go. It automates code review and quality assurance by integrating into CI/CD workflows to gate pull requests with actionable feedback, minimizing security risks and technical debt. Skylos also offers advanced features like AI defense, in-editor findings, and support for AI-assisted development tools, making it particularly useful for teams working with AI-driven coding assistants.
What’s Changed
4.4.0 (2026-04-16)
Features
- cli: add suite command for the full local bundle (#209) (1989905)
- py: add repo-aware vibe reference detection (#208) (797b1ab)
- ts: add AI defense beta for direct LLM integrations (#207) (dfb4fda)
- ts: report monorepo workspace inventory (#202) (610c53b)