Example taskflows to use with the the GitHub Security Lab Taskflow Agent Framework (https://github.com/GitHubSecurityLab/seclab-taskflow-agent)
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Project description
SecLab taskflows
This repository contains example taskflows to use with the SecLab Taskflow Agent, as well as the custom MCP servers that are needed to run the taskflows. To run these taskflows, first create a directory named data in src. Various environment variables need to be set for the custom MCP servers to store data.
MEMCACHE_STATE_DIR=/app/data
CODEQL_DBS_BASE_PATH=/app/data
DATA_DIR=/app/data
LOG_DIR=/app/logs
The MEMCACHE_STATE_DIR is needed to persist some intermediate data in the memcache, DATA_DIR is needed for various mcp servers to store intermediate results, and LOG_DIR is used to store log files generated by the servers. These can be set in a .env file in the src directory.
The repo provides a script run_seclab_agent.sh to run a docker container of the seclab-taskflow-agent as outlined here. Note that this script needs to be run from the src directory.
Individual taskflows may need additional setup, please refer to the README.md in the relevant subdirectories for further requirements.
Background
SecLab Taskflows is a companion repository to the SecLab Taskflow Agent repository. SecLab Taskflow Agent is an experimental agentic framework maintained by GitHub Security Lab. This repository provides example taskflows and supporting resources for use with the SecLab Taskflow Agent. We are using the agent and these taskflows to experiment with using AI Agents for security purposes, such as auditing code for vulnerabilities or triaging issues.
We'd love to hear your feedback. Please create an issue to send us a feature request or bug report. We also welcome pull requests (see our contribution guidelines for more information if you wish to contribute).
Requirements
Python >= 3.9 or Docker
License
This project is licensed under the terms of the MIT license. Please refer to the LICENSE file for the full terms.
Maintainers
Support
Project details
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file seclab_taskflows-0.0.3.tar.gz.
File metadata
- Download URL: seclab_taskflows-0.0.3.tar.gz
- Upload date:
- Size: 63.8 kB
- Tags: Source
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
e063b1124e6c6a53c443e97ba655e8cc62269f8470ef6254e2daad5b63509b52
|
|
| MD5 |
8d4c0368520963fe55f134da4e08e29e
|
|
| BLAKE2b-256 |
efd6fb05a0c4e17b0d8df2ef5f705e11600e8b95f2f9b551850544df28101144
|
Provenance
The following attestation bundles were made for seclab_taskflows-0.0.3.tar.gz:
Publisher:
publish-to-pypi.yaml on GitHubSecurityLab/seclab-taskflows
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
seclab_taskflows-0.0.3.tar.gz -
Subject digest:
e063b1124e6c6a53c443e97ba655e8cc62269f8470ef6254e2daad5b63509b52 - Sigstore transparency entry: 764593325
- Sigstore integration time:
-
Permalink:
GitHubSecurityLab/seclab-taskflows@73d620d1942891d37cee7d9ee488639ab5b34dac -
Branch / Tag:
refs/tags/v0.0.3 - Owner: https://github.com/GitHubSecurityLab
-
Access:
public
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
publish-to-pypi.yaml@73d620d1942891d37cee7d9ee488639ab5b34dac -
Trigger Event:
push
-
Statement type:
File details
Details for the file seclab_taskflows-0.0.3-py3-none-any.whl.
File metadata
- Download URL: seclab_taskflows-0.0.3-py3-none-any.whl
- Upload date:
- Size: 108.4 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
ee00fb9dcd6e7b2cf35b094f4560f93c1006506ecaba655af99de2d04b126fa3
|
|
| MD5 |
a3e080153da30fcd82acce64d58c8eaa
|
|
| BLAKE2b-256 |
23c28fdf1e5e6d43be5dcc0491f1ad94d22fbcb0a6798b299d300fc5cacf3e19
|
Provenance
The following attestation bundles were made for seclab_taskflows-0.0.3-py3-none-any.whl:
Publisher:
publish-to-pypi.yaml on GitHubSecurityLab/seclab-taskflows
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
seclab_taskflows-0.0.3-py3-none-any.whl -
Subject digest:
ee00fb9dcd6e7b2cf35b094f4560f93c1006506ecaba655af99de2d04b126fa3 - Sigstore transparency entry: 764593326
- Sigstore integration time:
-
Permalink:
GitHubSecurityLab/seclab-taskflows@73d620d1942891d37cee7d9ee488639ab5b34dac -
Branch / Tag:
refs/tags/v0.0.3 - Owner: https://github.com/GitHubSecurityLab
-
Access:
public
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
publish-to-pypi.yaml@73d620d1942891d37cee7d9ee488639ab5b34dac -
Trigger Event:
push
-
Statement type:
