unslothai/notebooks GitHub Actions scorecard

Public GitHub Actions data, last 30 days. Updated .

Data sourced from public GitHub. GitSpider is not affiliated with or endorsed by this repository's owners. Request removal.

138 min/mo
recoverable (~1% of CI time) · across 6 patterns · ≈$1/mo
Estimated from wall-clock time · public repos pay $0, $ = private-repo equivalent
See all 6 fixes, each with the exact YAML ↓
8.7%
failure rate, 30d
5h 19m
avg time to recover from a failure
8 workflows · 172 runs (5.7/day) · 12,458 CI-min (wall-clock) · ≈$75 at private-repo rates (30d)

Where the minutes go (30d)

Security audit~3,186 min · 43 runs
Notebooks Tests~2,820 min · 31 runs
Lint CI~1,939 min · 31 runs
or track on every push →

Waste detected

Biggest wins first, each with the exact config fix.

No concurrency control · Inactive Issue Pinger

~138 min/mo · ≈$1/mo

Add a `concurrency:` block keyed on branch to cancel superseded runs when devs push twice quickly.

concurrency:
  group: ${{ github.workflow }}-${{ github.ref }}
  cancel-in-progress: true

Full guide: how to fix this →

Also found: 5 more config fixes with negligible recoverable minutes — timeouts, retention, path filters

No path filters on triggers · Lint CI

~0 min/mo

Runs on every push/PR with no `paths:` filter, so docs-only changes still trigger full CI. Add a `paths:` filter if that's common.

on:
  pull_request:
    paths:
      - 'src/**'
      - 'package.json'

Full guide: how to fix this →

Scheduled workflow runs in forks · Security audit

~0 min/mo

The schedule has no repository guard, so forks that enable Actions inherit the cron and burn their own minutes. Gate the job with `if: github.repository == 'owner/repo'`.

jobs:
  nightly:
    if: github.repository == 'owner/repo'
    runs-on: ubuntu-latest

Full guide: how to fix this →

Full-history clone (fetch-depth: 0) · Security audit

~0 min/mo

checkout fetches the entire git history every run (`fetch-depth: 0`) and nothing in the workflow appears to read it. Remove the line — the default shallow clone is much faster on big repos. Keep it if a step genuinely needs history.

- uses: actions/checkout@v4
  # fetch-depth: 0 removed — default shallow clone is enough here

Full guide: how to fix this →

No job timeout · Inactive Issue Pinger

~0 min/mo

No job sets `timeout-minutes`, so a hung step can run to GitHub's 6-hour default. Add `timeout-minutes` to each job.

jobs:
  build:
    runs-on: ubuntu-latest
    timeout-minutes: 15

Full guide: how to fix this →

Scheduled workflow runs in forks · Inactive Issue Pinger

~0 min/mo

The schedule has no repository guard, so forks that enable Actions inherit the cron and burn their own minutes. Gate the job with `if: github.repository == 'owner/repo'`.

jobs:
  nightly:
    if: github.repository == 'owner/repo'
    runs-on: ubuntu-latest

Full guide: how to fix this →

Copy every fix as one block (5 snippets, annotated per workflow)
# No concurrency control — applies to: Inactive Issue Pinger
concurrency:
  group: ${{ github.workflow }}-${{ github.ref }}
  cancel-in-progress: true

# No path filters on triggers — applies to: Lint CI
on:
  pull_request:
    paths:
      - 'src/**'
      - 'package.json'

# Scheduled workflow runs in forks — applies to: Security audit, Inactive Issue Pinger
jobs:
  nightly:
    if: github.repository == 'owner/repo'
    runs-on: ubuntu-latest

# Full-history clone (fetch-depth: 0) — applies to: Security audit
- uses: actions/checkout@v4
  # fetch-depth: 0 removed — default shallow clone is enough here

# No job timeout — applies to: Inactive Issue Pinger
jobs:
  build:
    runs-on: ubuntu-latest
    timeout-minutes: 15

Each snippet is representative — merge into the named workflow files rather than pasting wholesale.

Want this on every push?

This scorecard is a one-time snapshot. Install the free GitHub App to track this repo continuously: new regressions caught as they land, trends over time, on your public and private repos. Team adds the offending commit on the PR + Slack alerts.

Install & monitor this repo →

Not ready to install? Get this report by email. No spam, unsubscribe anytime.

Share this scorecard: https://gitspider.com/scan/unslothai/notebooks
Add the badge to your README

Live CI-health badge → GitSpider badge

[![GitSpider](https://gitspider.com/badge/unslothai/notebooks.svg)](https://gitspider.com/scan/unslothai/notebooks)