claude/tasks
bastien 051779e5ff feat(onboard): make cso security audit archetype-aware
STEP 4.5 extracts the archetype's "Implications" (Surface sécurité) and
"Typical pain points" sections into .onboard-audit/archetype-context.md.
STEP 6 cso dispatch reads it and filters checks per category: web vulns
(XSS/SQLi/CORS/CSP/CSRF/HTTPS) only on framework/api/ecommerce/cms,
embedded-specific checks (buffer overflow, secure boot, JTAG, OTA sig)
only on embedded; library/cli/infra/data-science/desktop each get their
own focused section. Previously the fallback prompt searched for web
vulnerabilities even on firmware projects.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-04-22 13:52:09 +02:00
..
LESSONS.md chore: switch CLAUDE_EFFORT env var to --effort alias, add task tracking 2026-04-15 23:21:57 +02:00
rtk-upstream-issue.md docs(tasks): write up rtk curl TTY-passthrough upstream issue 2026-04-17 05:16:36 +02:00
TODO.md feat(onboard): make cso security audit archetype-aware 2026-04-22 13:52:09 +02:00