Justin Gosses d2e83218b5 switch to single quotes in everything frontmatter for dependency risk

2025-08-10 02:08:07 -05:00

1.4 KiB

Raw Blame History

description	applyTo	mode	version
Sub-instructions of `dependency-risk-base-level.instructions.md` focused on company specific guidance or tools.	**	agent	0.1.01

Dependency Risk Company Level Instructions

Instructions

The following are instructions that reflect policies that must be followed that are specific to this repository. They build off of the instructions found in the ./dependency-risk-base-level.instructions.md and override any instructions in that file.

MCPs or APIs

No additional instructions for what MCP tools to use at this time.

Vulnerabilities

Flag whether there are no vulnerabilities reported for the latest version of the package. If this is true, suggest either a different version be used or different package.
This report is not exhaustive and is not a substitute for required compliance processes you may be required to follow.

Malicious code

Tell user: ❔nothing in this report checks for malicious code and they should use other tooling for that risk.

License

Mention in the report what license is detected. Mention is was only "detected" and this approach will not catch multiple licenses or tell you what steps you may need to follow for a copy left license.

At bottom of the report

Remember to state:

This report is not exhaustive and is not a substitute for actual compliance processes you may be required to follow.

1.4 KiB Raw Blame History