Namespace finding kinds with 'task_bound.' prefix (agent-gov-core@v0.2.0)#26
Merged
Conversation
Adopts agent-gov-core v0.2.0 and prefixes every Finding.kind with the 'task_bound.' namespace per the suite-wide v1.0 wire-format wave (agent-gov-core#1). Kinds renamed (9): dependency_added, dependency_changed, env_file_changed, external_fetch_added, lifecycle_script_changed, out_of_scope_file, script_pipe_to_shell, sensitive_surface_touched, subprocess_spawn_added Also updated .taskbound.yml fixtures so the per-rule severity-override config keys use the new prefixed form (a downstream consumer of the config will need the same update; documented in this PR). Pure rename — no detector semantics, severities, or messages changed. 27/27 tests passing on the new prefixed assertions.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Part of the suite-wide v1.0 wire-format wave tracked in agent-gov-core#1.
Prefixes 9 finding kinds with
task_bound.and bumps the lib dep to v0.2.0. Pure rename.Heads-up for consumers:
.taskbound.ymlper-rule severity overrides now key on the prefixed form (task_bound.script_pipe_to_shellinstead ofscript_pipe_to_shell). The two fixture configs in this repo were updated; any external consumer config files need the same update at upgrade time.27/27 tests passing.