zhongwei/gh-tstomtimes-orchestra
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
master
gh-tstomtimes-orchestra/skills/core/security.yaml
Zhongwei Li 4aff69d9a9 Initial commit
2025-11-30 09:03:11 +08:00

13 lines
418 B
YAML
Raw Permalink Blame History

name: security
description: |
Skill enforcing secure practices throughout development.
Used by Iris, Mina, and Leo.
principles:
- Least privilege, defense in depth.
- Secrets never hard-coded or logged.
- Dependencies regularly scanned and updated.
checklist:
- [ ] No hardcoded credentials or tokens
- [ ] SBOM generated and verified
- [ ] OAuth scopes minimized
- [ ] Policies reviewed before merge
Reference in New Issue View Git Blame Copy Permalink