Version updated for https://github.com/TGPSKI/skeptic to version v0.2.0. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. Action Summary The skeptic GitHub Action is a local repository trust auditing tool designed to detect structural vulnerabilities and trust boundary violations that can lead to supply chain compromises. It addresses gaps overlooked by traditional security tools such as CVE scanners, SAST tools, and secret scanners by identifying attack-enabling conditions like unsafe CI/CD practices, ecosystem poisoning, and low-review attack surfaces. Key capabilities include behavior chain analysis, identity graph traversal, payload decoding, cross-finding correlation, and entropy-based anomaly detection, all provided as a standalone, deterministic, and secure Go binary.