Skip to content

Commit 24d3f30

Browse files
rna-afkclaude
andcommitted
coderabbit: add supply chain and malware detection rules
Add security-first review instructions and supply chain attack surface monitoring based on opendatahub-io/security-config patterns. Includes named security rules (hardcoded secrets, weak crypto, injection vectors, privileged containers, sensitive data in logs), path instructions for IDE/AI agent config injection (Miasma worm defense), diff hiding (Glassworm defense), dependency manifest tampering, CI/CD workflow security, and registry config monitoring. Enables settings-dangerous, hooks-dangerous, mcp-prohibited, and hooks-prohibited tools. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
1 parent 4a5404e commit 24d3f30

1 file changed

Lines changed: 703 additions & 18 deletions

File tree

0 commit comments

Comments
 (0)