@diffpal/diffpal-linux-arm64 0.1.22 → 0.1.23

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (3) hide show
  1. package/README.md +5 -29
  2. package/bin/diffpal +0 -0
  3. package/package.json +1 -1
package/README.md CHANGED
@@ -140,7 +140,7 @@ Azure Pipelines users can install the public
140
140
  [DiffPal Review extension](https://marketplace.visualstudio.com/items?itemName=diffpal.diffpal)
141
141
  from the Azure DevOps Marketplace and add the `DiffPalReview@1` task to PR
142
142
  validation pipelines. Extension source and release automation live in the
143
- separate [diffpal-azure-devops](https://github.com/diffpal/diffpal-azure-devops)
143
+ separate [diffpal/azure-devops](https://github.com/diffpal/azure-devops)
144
144
  repository.
145
145
 
146
146
  The task installs `@diffpal/diffpal` by default, then runs `diffpal review ado`.
@@ -229,17 +229,8 @@ diffpal:
229
229
  block_on: high
230
230
  review:
231
231
  language: en
232
- prompt_profile: v2
233
- strict_evidence: true
234
- strict_injection: true
235
- allow_nearby_context: true
236
232
  instructions: |
237
233
  Prefer actionable findings that are directly supported by the diff.
238
- checks:
239
- - security
240
- - bugs
241
- - performance
242
- - best-practices
243
234
  platforms:
244
235
  github: {}
245
236
  gitlab: {}
@@ -250,22 +241,12 @@ profiles:
250
241
  diffpal:
251
242
  gate:
252
243
  block_on: high
253
- review:
254
- prompt_profile: v2
255
- strict_evidence: true
256
- strict_injection: true
257
- allow_nearby_context: true
258
244
  ```
259
245
 
260
- Review checks are intentionally simple. They ask the agent what to focus on;
261
- DiffPal does not hardcode individual signal slugs:
262
-
263
- | Check | Finding categories the agent may return |
264
- | --- | --- |
265
- | `security` | security |
266
- | `bugs` | correctness, reliability |
267
- | `performance` | performance |
268
- | `best-practices` | maintainability, testing, style |
246
+ DiffPal uses a fixed finding taxonomy: security, correctness, reliability,
247
+ performance, maintainability, testing, and style. Use review instructions to
248
+ change or extend the review scope, for example `Review for OWASP best practices
249
+ and authz/authn regressions.`
269
250
 
270
251
  Severity is impact-based across all categories. The full critical/high/medium/low
271
252
  matrix is in the [config reference](docs/config-reference.md#severity-matrix).
@@ -273,11 +254,6 @@ matrix is in the [config reference](docs/config-reference.md#severity-matrix).
273
254
  Use `diffpal.review.instructions`, the `instructions` action input, or
274
255
  `--instructions-file` for repository-specific review guidance.
275
256
 
276
- The review rollout fields are safe to canary per profile. Keep the repository
277
- default conservative if needed, then set `profiles.ci.diffpal.review` to
278
- `prompt_profile: v2`, `strict_evidence: true`, `strict_injection: true`, and
279
- `allow_nearby_context: true` before making the gate blocking.
280
-
281
257
  ## Provider Recipes and Runtime Types
282
258
 
283
259
  DiffPal delegates review to `diffpal.provider`, which points at a provider
package/bin/diffpal CHANGED
Binary file
package/package.json CHANGED
@@ -13,5 +13,5 @@
13
13
  "os": [
14
14
  "linux"
15
15
  ],
16
- "version": "0.1.22"
16
+ "version": "0.1.23"
17
17
  }