PWNPipe

Scans GitHub repositories for vulnerable CI/CD workflows. Detects injection points, misconfigured permissions and supply chain risks.