{"x402Version":1,"name":"ci-sentinel","description":"7-ecosystem CI/CD security audit (GitHub Actions, GitLab CI/CD, Jenkins, CircleCI, Azure Pipelines, Bitbucket Pipelines, Travis CI): detects expression/script injection (untrusted github.event.* / $CI_*/ params.* / << pipeline.git.* >> / $(Build.SourceBranch) / $BITBUCKET_BRANCH / $TRAVIS_BRANCH into run:/script:/sh:/bash:), pull_request_target / fork-MR pwn requests, excessive token permissions, unpinned/transitive actions, orbs, tasks & pipes, untrusted include:/template:, self-hosted runner RCE, OIDC misuse, artifact/cache poisoning, secured-var fork exposure, approval/deploy-gate bypass. For AI agents reviewing or writing CI.","category":"security","repository":"https://github.com/Baneado98/ci-sentinel","mcp":{"npx":"ci-sentinel-mcp","http":"https://ci-sentinel.vercel.app/mcp"},"accepts":[{"method":"POST","path":"/pro/audit","resource":"https://ci-sentinel.vercel.app/pro/audit","price":{"amount":"0.40","currency":"USD","asset":"USDC","network":"base","address":"0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913","atomic":"400000"},"payTo":"0x074cFCfDf4509333a8d8dC0f90D18Ef276481c21","scheme":"exact","description":"Deep CI/CD security audit of GitHub Actions workflows (pay-per-call)."},{"method":"POST","path":"/pro/diff","resource":"https://ci-sentinel.vercel.app/pro/diff","price":{"amount":"0.40","currency":"USD","asset":"USDC","network":"base","address":"0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913","atomic":"400000"},"payTo":"0x074cFCfDf4509333a8d8dC0f90D18Ef276481c21","scheme":"exact","description":"Differential CI/CD security analysis of a workflow/pipeline CHANGE (before vs after) — verdict INTRODUCES_RISK / REDUCES_RISK / NEUTRAL for a PR check (pay-per-call)."}],"free":{"audit":"https://ci-sentinel.vercel.app/audit"}}