[CI Health] CI Health Report — 2026-03-23

[github-actions]

Repos scanned: 22 | Overall health: ~85%

Run ID: 23432170754

---

Organization Summary

Status	Workflows	Repos
🟢 Healthy (≥90%)	~14	14
🟡 Warning (80-89%)	~2	2
🔴 Critical (<80%)	3	3
⚪ Disabled	13	8
❔ Stale (>7d no runs)	14	14

---

Failing Workflows

Repo	Workflow	Last Status	Last Run	Days Stale	Trend
sdlc-quality	CI	🔴 failure	2026-03-01	22d	Declining
atlatl	CI Checks	🔴 failure	2026-03-11	12d	Unknown (1 run)
vscode-git-adr	CI	🔴 failure	2026-03-02	21d	Declining

Failure context:

• sdlc-quality/CI: Failed on chore: update dependabot configuration push — likely a linting or test regression introduced by the dep config update. Has been failing for 22 days with no fix.
• atlatl/CI Checks: Only 1 recorded run on main (workflow_dispatch, failure on 2026-03-11). Commit message: "fix: resolve remaining clippy 1.94 lints" — workflow itself may have issues. The main Pipeline workflow is healthy and active (ran successfully today).
• vscode-git-adr/CI: Failed on ci: bump actions/upload-artifact from 6 to 7 — artifact action major version bump broke the workflow. Has been failing 21 days.

---

Disabled Workflows

Repo	Workflow	State	Last Run
.github	Dependabot Rollout	disabled_manually	—
.github	Dependabot Sweep	disabled_manually	—
github-project-manager	Agentic Maintenance	disabled_manually	—
sdlc-quality	SDLC Compliance Audit	disabled_manually	—
homebrew-tap	livecheck.yml	disabled_manually	—
rlm-rs	Agentic Maintenance	disabled_manually	—
subcog	Security	disabled_manually	—
lro-bench	CodeQL Analysis	disabled_manually	—
lro-bench	Security Audit	disabled_manually	—
lro-bench	Stale Issue Management	disabled_manually	—
daedalus	Contributor Recognition	disabled_manually	—
daedalus	Security Audit	disabled_manually	—
daedalus	Stale Issue Management	disabled_manually	—

All 13 disabled workflows were manually disabled (most on 2026-03-13). Security and stale management workflows are systematically disabled across multiple repos.

---

Stale Workflows (No runs in 7+ days on main)

Repo	Primary Workflow	Last Run	Days Since
structured-madr	Validate ADRs	2026-02-16	35d
MIF	Validate MIF Schemas	2026-02-22	29d
sdlc-quality	CI	2026-03-01	22d
human-voice	CI	2026-03-01	22d
adrscope	CI	2026-03-02	21d
vscode-git-adr	CI	2026-03-02	21d
rlm-rs	CI	2026-03-06	17d
rlm-rs-plugin	CI	2026-03-06	17d
git-adr	CI	2026-03-06	17d
github-project-manager	Deploy to GitHub Pages	2026-03-11	12d
homebrew-tap	CI	2026-03-10	13d
atlatl	CI Checks	2026-03-11	12d
lro-bench	CI Checks	Never run on main	∞
daedalus	CI Checks	Never run on main	∞
refactor	CI	Never run on main	∞

Note: Stale CI on many repos is likely due to low push activity, not workflow breakage — most last runs were successful. However lro-bench, daedalus, and refactor CI workflows have never executed on the main branch, which means merges to main have no CI gating.

---

Per-Repo Health Scores

Repo	Health Score	Primary Workflow	Last Run	Failing	Disabled
.github	~88%	Agent Health Monitor	2026-03-22 ✅	0	2
github-project-manager	~90%	Deploy to Pages	2026-03-11 ✅	0	1
sdlc-quality	~50%	CI	2026-03-01 ❌	1	1
homebrew-tap	~90%	CI	2026-03-10 ✅	0	1
atlatl	~75%	Pipeline	2026-03-23 ✅	1 (CI Checks)	0
atlatl-spec	N/A	Validate Specification	API error	—	0
rlm-rs	~90%	CI	2026-03-06 ✅	0	1
MIF	~90%	Validate	2026-02-22 ✅	0	0
subcog	~90%	CI	2026-03-19 ✅	0	1
lro-bench	N/A	CI Checks	Never run	0	4
daedalus	N/A	CI Checks	Never run	0	3
ccpkg	~90%	Daily Docs Review	Active	0	0
refactor	N/A	CI	Never run	0	0
human-voice	~90%	CI	2026-03-01 ✅	0	0
rlm-rs-plugin	~90%	CI	2026-03-06 ✅	0	0
memory-capture-plugin	N/A	(Dependabot only)	—	—	0
documentation-review	~95%	CI	2026-03-19 ✅	0	0
adr	~95%	CI	2026-03-19 ✅	0	0
adrscope	~90%	CI	2026-03-02 ✅	0	0
git-adr	~90%	CI	2026-03-06 ✅	0	0
structured-madr	~90%	Validate ADRs	2026-02-16 ✅	0	0
vscode-git-adr	~65%	CI	2026-03-02 ❌	1	0

Common Failure Patterns

• Dependabot action version bumps breaking CI (seen in vscode-git-adr): actions/upload-artifact bumped from v6 → v7 broke the CI workflow. Similar risk exists across all repos using unpinned action versions.

• Security/stale workflows systematically disabled (13 workflows on 2026-03-13): All security audits, CodeQL, and stale management disabled across lro-bench, daedalus, subcog, and .github. These were likely disabled intentionally but represent gaps in security coverage.

• CI Checks never running on main for newer repos (lro-bench, daedalus, refactor): These repos have CI workflows defined but they haven't triggered on main. Possible causes: (a) no pushes directly to main, (b) PRs are squash-merged without triggering branch-based CI, or (c) workflows only configured for push events but development uses other branches.

• Stale CI pattern (>2 weeks without runs): 8 repos haven't seen CI activity in 2+ weeks, suggesting low commit velocity or heavy use of feature branches without merge-triggered CI.

---

Action Items

Priority	Issue	Repo	Recommendation
🔴 High	CI failing 22 days	sdlc-quality	Investigate and fix CI failure from March 1 dependabot config change
🔴 High	CI failing 21 days	vscode-git-adr	Fix actions/upload-artifact v6→v7 breaking change in CI workflow
🟡 Medium	CI Checks never run on main	lro-bench, daedalus, refactor	Verify CI workflow triggers; ensure merges to main run CI
🟡 Medium	Security workflows disabled org-wide	8 repos	Review and re-enable security scanning; or document intentional disable
🟢 Low	Many stale CI workflows	12 repos	Low priority if repos have low commit velocity; monitor for regressions

---

Generated by maintenance-ci workflow · https://github.com/zircote/.github/actions/runs/23432170754

Generated by Maintenance CI · ◷