Skip to content

docs: add CWL agent guidance to AGENTS.md#121

Open
seonghobae wants to merge 1 commit into
masterfrom
docs/agent-guidance
Open

docs: add CWL agent guidance to AGENTS.md#121
seonghobae wants to merge 1 commit into
masterfrom
docs/agent-guidance

Conversation

@seonghobae

Copy link
Copy Markdown
Collaborator

What

Adds a cross-agent Agent guidance (CWL governance) section to AGENTS.md (new file), readable by any coding agent (Claude, Codex, Cursor, opencode, …).

Contents

  • Security & review gate — documents the central required Security Scan gate (osv-scan + dependency-review diff-scoped, trivy-fs repo-wide CRITICAL/HIGH fixable), that it runs on every PR base including stacked PRs, that a failing trivy-fs is a real finding to remediate (bump the dep in build.gradle, or a narrow documented .trivyignore), the stale-DB caveat (trivy --download-db-only, scan the merge ref), and that the org code_scanning ruleset is intentionally CodeQL-only.
  • Code exploration — this repo has no .codegraph/ index, so use normal search; if one is added later, prefer CodeGraph first.

Tailored to this repo's actual stack: Kotlin CLI built with Gradle, no Dockerfile/k8s. Uses <!-- BEGIN/END cwl-agent-guidance --> markers so re-runs replace rather than duplicate.

🤖 Generated with Claude Code

Add a cross-agent "Agent guidance (CWL governance)" section covering the
central Security Scan gate (osv-scan, dependency-review, trivy-fs) and
CodeGraph-first code exploration, tailored to this Kotlin/Gradle repo.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Claude-Session: https://claude.ai/code/session_01RTAMs4bpSZS77Xe3RQjv9P
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant