n8n_audit_instance
Audits an n8n instance for security risks, combining built-in API checks with deep workflow scanning for hardcoded secrets and vulnerabilities. Returns a markdown report with remediation steps.
Instructions
Security audit of n8n instance. Combines n8n's built-in audit API (credentials, database, nodes, instance, filesystem risks) with deep workflow scanning (hardcoded secrets via 50+ regex patterns, unauthenticated webhooks, error handling gaps, data retention risks). Returns actionable markdown report with remediation steps using n8n_manage_credentials and n8n_update_partial_workflow.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| categories | No | Built-in audit categories to check (default: all 5) | |
| customChecks | No | Specific custom checks to run (default: all 4) | |
| includeCustomScan | No | Run deep workflow scanning for secrets, webhooks, error handling (default: true) | |
| daysAbandonedWorkflow | No | Days threshold for abandoned workflow detection (default: 90) |