@securityreviewai/securityreview-kit 0.1.49 → 0.1.51

package/dist/scaffold/claude-code.js

@@ -1,11 +1,11 @@
 import { join } from "node:path";
 import { readJson, writeJson, writeText, upsertBlock } from "../fs.js";
 import { mcpRemoteServerWithType } from "./mcp.js";
-import { SENTINEL_END, SENTINEL_START, claudeRuleContent, syncSkillContent, threatModelSkillContent } from "./rules.js";
+import { SENTINEL_END, SENTINEL_START, claudeRuleContent, guardrailsSelectionSkillContent, syncSkillContent, threatModelSkillContent } from "./rules.js";
 export async function scaffoldClaudeCode(cwd, config) {
     await writeMcpConfig(cwd, config);
     await writeClaudeSettings(cwd);
-    await writeClaudeRules(cwd);
+    await writeClaudeRules(cwd, config);
 }
 async function writeMcpConfig(cwd, config) {
     const path = join(cwd, ".mcp.json");
@@ -30,8 +30,14 @@ async function writeClaudeSettings(cwd) {
         },
     });
 }
-async function writeClaudeRules(cwd) {
-    await upsertBlock(join(cwd, "CLAUDE.md"), SENTINEL_START, SENTINEL_END, claudeRuleContent());
-    await writeText(join(cwd, ".claude", "skills", "threat-modelling", "SKILL.md"), `${threatModelSkillContent(".claude/skills/vibereview-sync")}\n`);
-    await writeText(join(cwd, ".claude", "skills", "vibereview-sync", "SKILL.md"), `${syncSkillContent()}\n`);
+async function writeClaudeRules(cwd, config) {
+    const paths = {
+        guardrailsSelectionSkillDir: ".claude/skills/guardrails-selection",
+        threatModellingSkillDir: ".claude/skills/threat-modelling",
+        vibereviewSyncSkillDir: ".claude/skills/vibereview-sync",
+    };
+    await upsertBlock(join(cwd, "CLAUDE.md"), SENTINEL_START, SENTINEL_END, claudeRuleContent(config));
+    await writeText(join(cwd, ".claude", "skills", "guardrails-selection", "SKILL.md"), `${guardrailsSelectionSkillContent(config, paths)}\n`);
+    await writeText(join(cwd, ".claude", "skills", "threat-modelling", "SKILL.md"), `${threatModelSkillContent(config, paths)}\n`);
+    await writeText(join(cwd, ".claude", "skills", "vibereview-sync", "SKILL.md"), `${syncSkillContent(config)}\n`);
 }

package/dist/scaffold/codex.js

@@ -1,12 +1,18 @@
 import { join } from "node:path";
 import { readText, upsertBlock, writeText } from "../fs.js";
-import { SENTINEL_END, SENTINEL_START, codexHooksContent, codexRuleContent, syncSkillContent, threatModelSkillContent } from "./rules.js";
+import { SENTINEL_END, SENTINEL_START, codexHooksContent, codexRuleContent, guardrailsSelectionSkillContent, syncSkillContent, threatModelSkillContent } from "./rules.js";
 export async function scaffoldCodex(cwd, config) {
+    const paths = {
+        guardrailsSelectionSkillDir: ".codex/skills/guardrails-selection",
+        threatModellingSkillDir: ".codex/skills/threat-modelling",
+        vibereviewSyncSkillDir: ".codex/skills/vibereview-sync",
+    };
     await writeCodexConfig(cwd, config);
-    await upsertBlock(join(cwd, ".codex", "AGENTS.md"), SENTINEL_START, SENTINEL_END, codexRuleContent());
-    await writeText(join(cwd, ".codex", "hooks.json"), codexHooksContent());
-    await writeText(join(cwd, ".codex", "skills", "threat-modelling", "SKILL.md"), `${threatModelSkillContent(".codex/skills/vibereview-sync")}\n`);
-    await writeText(join(cwd, ".codex", "skills", "vibereview-sync", "SKILL.md"), `${syncSkillContent()}\n`);
+    await upsertBlock(join(cwd, ".codex", "AGENTS.md"), SENTINEL_START, SENTINEL_END, codexRuleContent(config));
+    await writeText(join(cwd, ".codex", "hooks.json"), codexHooksContent(config));
+    await writeText(join(cwd, ".codex", "skills", "guardrails-selection", "SKILL.md"), `${guardrailsSelectionSkillContent(config, paths)}\n`);
+    await writeText(join(cwd, ".codex", "skills", "threat-modelling", "SKILL.md"), `${threatModelSkillContent(config, paths)}\n`);
+    await writeText(join(cwd, ".codex", "skills", "vibereview-sync", "SKILL.md"), `${syncSkillContent(config)}\n`);
 }
 async function writeCodexConfig(cwd, config) {
     const path = join(cwd, ".codex", "config.toml");

package/dist/scaffold/cursor.js

@@ -1,17 +1,23 @@
 import { join } from "node:path";
 import { readJson, writeJson, writeText } from "../fs.js";
 import { mcpRemoteServerWithType } from "./mcp.js";
-import { cursorHooksContent, cursorRuleContent, syncSkillContent, threatModelSkillContent } from "./rules.js";
+import { cursorHooksContent, cursorRuleContent, guardrailsSelectionSkillContent, syncSkillContent, threatModelSkillContent } from "./rules.js";
 export async function scaffoldCursor(cwd, config) {
+    const paths = {
+        guardrailsSelectionSkillDir: ".cursor/skills/guardrails-selection",
+        threatModellingSkillDir: ".cursor/skills/threat-modelling",
+        vibereviewSyncSkillDir: ".cursor/skills/vibereview-sync",
+    };
     const mcpPath = join(cwd, ".cursor", "mcp.json");
     const existing = (await readJson(mcpPath)) ?? {};
     const mcpServers = existing.mcpServers ?? {};
     mcpServers.vibreview = mcpRemoteServerWithType(config);
     await writeJson(mcpPath, { ...existing, mcpServers });
-    await writeText(join(cwd, ".cursor", "rules", "vibreview-security.mdc"), cursorRuleFile());
-    await writeText(join(cwd, ".cursor", "hooks.json"), cursorHooksContent());
-    await writeText(join(cwd, ".cursor", "skills", "threat-modelling", "SKILL.md"), `${threatModelSkillContent(".cursor/skills/vibereview-sync")}\n`);
-    await writeText(join(cwd, ".cursor", "skills", "vibereview-sync", "SKILL.md"), `${syncSkillContent()}\n`);
+    await writeText(join(cwd, ".cursor", "rules", "vibreview-security.mdc"), cursorRuleFile(config));
+    await writeText(join(cwd, ".cursor", "hooks.json"), cursorHooksContent(config));
+    await writeText(join(cwd, ".cursor", "skills", "guardrails-selection", "SKILL.md"), `${guardrailsSelectionSkillContent(config, paths)}\n`);
+    await writeText(join(cwd, ".cursor", "skills", "threat-modelling", "SKILL.md"), `${threatModelSkillContent(config, paths)}\n`);
+    await writeText(join(cwd, ".cursor", "skills", "vibereview-sync", "SKILL.md"), `${syncSkillContent(config)}\n`);
     await updateCursorAllowlist(cwd);
 }
 async function updateCursorAllowlist(cwd) {
@@ -28,12 +34,12 @@ async function updateCursorAllowlist(cwd) {
         },
     });
 }
-function cursorRuleFile() {
+function cursorRuleFile(config) {
     return `---
 description: VibeReview security workflow
 alwaysApply: true
 ---
 
-${cursorRuleContent()}
+${cursorRuleContent(config)}
 `;
 }

package/dist/scaffold/rules.js

@@ -1,101 +1,63 @@
+import { readFileSync } from "node:fs";
 const TOOL_PROJECT = "`vibreview_get_tenant_project`";
 const TOOL_GUARDRAILS = "`vibreview_get_guardrails`";
 const TOOL_SYNC = "`vibreview_ctm_sync_markdown`";
 export const SENTINEL_START = "<!-- securityreview-kit:start -->";
 export const SENTINEL_END = "<!-- securityreview-kit:end -->";
-export function claudeRuleContent() {
-    return [
-        "# VibeReview Security Workflow",
-        "",
-        "For any security-relevant task touching auth, authorization, input handling, secrets, network, storage, dependencies, new endpoints, infrastructure, or untrusted data:",
-        "",
-        `1. Resolve the current tenant/project with ${TOOL_PROJECT}.`,
-        `2. Fetch the project guardrail bundle with ${TOOL_GUARDRAILS}, shortlist only the guardrails relevant to the task, and keep that shortlist in context.`,
-        "3. Run threat modelling before implementation and cross-check the shortlist against the likely abuse paths.",
-        "4. Implement secure code using the shortlisted guardrails as hard constraints.",
-        `5. Write one markdown artifact under \`.vibreview/scans/\` and call ${TOOL_SYNC} immediately after writing or updating it.`,
-        "",
-        "Do not run local profiling from the IDE. Repository profiling happens server-side after project creation.",
-    ].join("\n");
+export function ruleContent(config, paths) {
+    return renderTemplate("content.md", config, paths);
 }
-export function copilotRuleContent() {
-    return [
-        "# VibeReview Security Workflow",
-        "",
-        `Resolve the current tenant/project with ${TOOL_PROJECT}, fetch the guardrail bundle with ${TOOL_GUARDRAILS}, shortlist the relevant guardrails locally, then threat model and implement against that shortlist.`,
-        "",
-        `After the security review or implementation step, write one markdown artifact under \`.vibreview/scans/\` and call ${TOOL_SYNC} immediately. If sync fails, keep the file on disk and report the failure clearly.`,
-    ].join("\n");
+export function claudeRuleContent(config) {
+    return ruleContent(config, {
+        guardrailsSelectionSkillDir: ".claude/skills/guardrails-selection",
+        threatModellingSkillDir: ".claude/skills/threat-modelling",
+        vibereviewSyncSkillDir: ".claude/skills/vibereview-sync",
+    });
 }
-export function codexRuleContent() {
-    return [
-        "# VibeReview Security Workflow",
-        "",
-        `For security-relevant work, resolve the tenant/project with ${TOOL_PROJECT}, fetch the project guardrails with ${TOOL_GUARDRAILS}, shortlist the relevant guardrails locally, and keep that shortlist active through the whole task.`,
-        "",
-        `After threat modelling or implementation, write one concise markdown artifact under \`.vibreview/scans/\` and call ${TOOL_SYNC} right away. The same agent that did the work should author the markdown so the context stays grounded.`,
-    ].join("\n");
+export function copilotRuleContent(config) {
+    return ruleContent(config, {
+        guardrailsSelectionSkillDir: ".github/skills/guardrails-selection",
+        threatModellingSkillDir: ".github/skills/threat-modelling",
+        vibereviewSyncSkillDir: ".github/skills/vibereview-sync",
+    });
 }
-export function cursorRuleContent() {
-    return [
-        "Before security-relevant changes, resolve the tenant/project with `vibreview_get_tenant_project`, fetch the full project guardrail bundle with `vibreview_get_guardrails`, shortlist only the relevant guardrails, then threat model before editing.",
-        "",
-        "After the review or implementation step, the same agent must write one markdown artifact under `.vibreview/scans/` and call `vibreview_ctm_sync_markdown` immediately. Do not defer sync and do not read sibling markdown files just to infer format.",
-    ].join("\n");
+export function codexRuleContent(config) {
+    return ruleContent(config, {
+        guardrailsSelectionSkillDir: ".codex/skills/guardrails-selection",
+        threatModellingSkillDir: ".codex/skills/threat-modelling",
+        vibereviewSyncSkillDir: ".codex/skills/vibereview-sync",
+    });
 }
-export function threatModelSkillContent(skillPath) {
-    return [
-        "---",
-        "name: PWNISMS Threat Modelling",
-        "description: Run a lightweight threat model before or during security-relevant implementation and keep the shortlisted VibeReview guardrails active throughout the task.",
-        "---",
-        "",
-        "# PWNISMS Threat Modelling",
-        "",
-        "Use this skill for security-relevant coding work.",
-        "",
-        "Workflow:",
-        `1. Resolve the tenant/project with ${TOOL_PROJECT}.`,
-        `2. Fetch the guardrail bundle with ${TOOL_GUARDRAILS} and shortlist only the relevant guardrails.`,
-        "3. Walk Product, Workload, Network, IAM, Secrets, Monitoring, and Supply Chain. Mark non-applicable categories briefly and move on.",
-        "4. Implement with the shortlisted guardrails treated as hard constraints.",
-        `5. Read ${skillPath}/SKILL.md after threat modelling or implementation changes the security posture.`,
-    ].join("\n");
-}
-export function syncSkillContent(scanDir = ".vibreview/scans") {
-    return [
-        "---",
-        "name: vibereview-sync",
-        "description: Write and synchronize a VibeReview markdown artifact for the current security-relevant task.",
-        "---",
-        "",
-        "# VibeReview Markdown Sync",
-        "",
-        `Write one markdown artifact under \`${scanDir}/\` for the current task only.`,
-        "",
-        "Rules:",
-        `1. The artifact must live under \`${scanDir}/\`.`,
-        "2. Do not read sibling markdown files just to infer structure or reuse content.",
-        "3. Include the threat model, selected guardrail IDs, important decisions, and grounded code evidence when useful.",
-        "4. If updating an existing task artifact, update that file directly instead of creating duplicates.",
-        `5. Call ${TOOL_SYNC} immediately after writing or updating the markdown.`,
-        "6. If sync fails, leave the markdown file on disk and report the failure clearly.",
-    ].join("\n");
-}
-export function cursorHooksContent() {
+export function cursorRuleContent(config) {
+    return ruleContent(config, {
+        guardrailsSelectionSkillDir: ".cursor/skills/guardrails-selection",
+        threatModellingSkillDir: ".cursor/skills/threat-modelling",
+        vibereviewSyncSkillDir: ".cursor/skills/vibereview-sync",
+    });
+}
+export function guardrailsSelectionSkillContent(config, paths = defaultPaths("cursor")) {
+    return renderTemplate("guardrails-selection.md", config, paths);
+}
+export function threatModelSkillContent(config, paths = defaultPaths("cursor")) {
+    return renderTemplate("threat-modelling.md", config, paths);
+}
+export function syncSkillContent(config, scanDir = ".vibreview/scans") {
+    return renderTemplate("vibereview-sync/SKILL.md", config, defaultPaths("cursor")).replaceAll(".vibreview/scans/", `${scanDir.replace(/\/$/, "")}/`);
+}
+export function cursorHooksContent(config) {
     return JSON.stringify({
         version: 1,
         hooks: {
             sessionStart: [
                 {
-                    command: `printf '%s\\n' '${jsonPayload(cursorAdditionalContext()).replaceAll("'", "'\\''")}'`,
+                    command: `printf '%s\\n' '${jsonPayload(additionalContext(config)).replaceAll("'", "'\\''")}'`,
                     timeout: 5,
                 },
             ],
         },
     }, null, 2) + "\n";
 }
-export function codexHooksContent() {
+export function codexHooksContent(config) {
     return JSON.stringify({
         hooks: {
             SessionStart: [
@@ -104,7 +66,7 @@ export function codexHooksContent() {
                     hooks: [
                         {
                             type: "command",
-                            command: `printf '%s\\n' '${codexPayload("SessionStart").replaceAll("'", "'\\''")}'`,
+                            command: `printf '%s\\n' '${codexPayload(config, "SessionStart").replaceAll("'", "'\\''")}'`,
                             timeout: 5,
                             statusMessage: "Loading VibeReview security session policy",
                         },
@@ -116,7 +78,7 @@ export function codexHooksContent() {
                     hooks: [
                         {
                             type: "command",
-                            command: `printf '%s\\n' '${codexPayload("UserPromptSubmit").replaceAll("'", "'\\''")}'`,
+                            command: `printf '%s\\n' '${codexPayload(config, "UserPromptSubmit").replaceAll("'", "'\\''")}'`,
                             timeout: 5,
                             statusMessage: "Refreshing VibeReview security session policy",
                         },
@@ -126,40 +88,104 @@ export function codexHooksContent() {
         },
     }, null, 2) + "\n";
 }
-export function vscodeHooksContent() {
+export function vscodeHooksContent(config) {
     return JSON.stringify({
         hooks: {
             SessionStart: [
                 {
                     type: "command",
-                    command: `printf '%s\\n' '${codexPayload("SessionStart").replaceAll("'", "'\\''")}'`,
+                    command: `printf '%s\\n' '${codexPayload(config, "SessionStart").replaceAll("'", "'\\''")}'`,
                     timeout: 5,
                 },
             ],
         },
     }, null, 2) + "\n";
 }
-function cursorAdditionalContext() {
+function additionalContext(config) {
+    const project = projectContext(config);
     return [
         "## MANDATORY VIBEREVIEW SECURITY GATE",
         "",
-        `1. Resolve the tenant/project with ${TOOL_PROJECT}.`,
-        `2. Fetch the project guardrail bundle with ${TOOL_GUARDRAILS}, shortlist only what is relevant, and keep that shortlist in context.`,
-        "3. Run threat modelling before implementation.",
-        "4. Implement secure code using the shortlisted guardrails as hard constraints.",
-        `5. Write one markdown artifact under \`.vibreview/scans/\` and call ${TOOL_SYNC} immediately after writing it.`,
+        `Configured project: ${project.name} (${project.slug}, ${project.id})`,
+        "",
+        "For any request with security impact, this is a hard pre-write gate. Do not create, edit, or patch code until steps 1-3 are complete:",
+        "",
+        `1. Resolve the tenant/project with ${TOOL_PROJECT} using project_id="${project.id}" or project_slug="${project.slug}".`,
+        `2. Fetch VibeReview guardrails with ${TOOL_GUARDRAILS}, shortlist relevant guardrails, and preserve that shortlist.`,
+        "3. Run PWNISMS threat modelling before implementation.",
+        "4. Implement secure code using the threat model and shortlisted guardrails.",
+        `5. Write one markdown artifact under .vibreview/scans/ and call ${TOOL_SYNC} with the raw markdown string immediately after writing it.`,
         "",
-        "No deferral. No separate local profiling. The main agent owns the final markdown sync.",
+        "No deferral. No code before guardrails. No JSON summaries for sync. No local profiling. The main agent owns the final markdown sync.",
     ].join("\\n");
 }
-function codexPayload(hookEventName) {
+function codexPayload(config, hookEventName) {
     return JSON.stringify({
         hookSpecificOutput: {
             hookEventName,
-            additionalContext: cursorAdditionalContext(),
+            additionalContext: additionalContext(config),
         },
     });
 }
 function jsonPayload(additionalContext) {
     return JSON.stringify({ additional_context: additionalContext });
 }
+function renderTemplate(templatePath, config, paths) {
+    const project = projectContext(config);
+    const template = readFileSync(new URL(`../../templates/shared/${templatePath}`, import.meta.url), "utf8").trim();
+    return template
+        .replaceAll("Configured SRAI project name: `<SRAI_PROJECT_NAME>`", [
+        `Configured VibeReview project: \`${project.name}\``,
+        `Project slug: \`${project.slug}\``,
+        `Project id: \`${project.id}\``,
+    ].join("\n"))
+        .replaceAll("Configured SRAI project name: `<SRAI_PROJECT_NAME>`", `Configured VibeReview project: \`${project.name}\``)
+        .replaceAll("name=\"<SRAI_PROJECT_NAME>\"", `project_id="${project.id}", project_slug="${project.slug}", project_name="${project.name}"`)
+        .replaceAll("<SRAI_PROJECT_NAME>", project.name)
+        .replaceAll("{{SRAI_PROJECT_NAME}}", project.name)
+        .replaceAll("SRAI", "VibeReview")
+        .replaceAll("srai", "vibreview")
+        .replaceAll("security-review-mcp", "vibreview")
+        .replaceAll("find_project_by_name", "vibreview_get_tenant_project")
+        .replaceAll("list_projects", "vibreview_get_tenant_project")
+        .replaceAll("create_project", "vibreview_get_tenant_project")
+        .replaceAll("get_project", "vibreview_get_tenant_project")
+        .replaceAll("get_guardrails", "vibreview_get_guardrails")
+        .replaceAll("get_guardrail_by_id", "the exact returned guardrail entry")
+        .replaceAll("sync_ai_ide_markdown", "vibreview_ctm_sync_markdown")
+        .replaceAll("update_vibe_profile", "server-side repository profiling")
+        .replaceAll("write_default_pack", "server-side guardrail pack selection")
+        .replaceAll("`vibereview/`", "`.vibreview/scans/`")
+        .replaceAll("vibereview/*.md", ".vibreview/scans/*.md")
+        .replaceAll("vibereview/<chat_session_id>-<slugified-title-or-event-name>.md", ".vibreview/scans/<chat_session_id>-<slugified-title-or-event-name>.md")
+        .replaceAll("under `vibereview/`", "under `.vibreview/scans/`")
+        .replaceAll("in `vibereview/`", "in `.vibreview/scans/`")
+        .replaceAll("`{{GUARDRAILS_SELECTION_SKILL_DIR}}/SKILL.md`", `\`${paths.guardrailsSelectionSkillDir}/SKILL.md\``)
+        .replaceAll("`{{THREAT_MODELLING_SKILL_DIR}}/SKILL.md`", `\`${paths.threatModellingSkillDir}/SKILL.md\``)
+        .replaceAll("`{{VIBEREVIEW_SYNC_SKILL_DIR}}/SKILL.md`", `\`${paths.vibereviewSyncSkillDir}/SKILL.md\``)
+        .replaceAll("{{GUARDRAILS_SELECTION_SKILL_DIR}}", paths.guardrailsSelectionSkillDir)
+        .replaceAll("{{THREAT_MODELLING_SKILL_DIR}}", paths.threatModellingSkillDir)
+        .replaceAll("{{VIBEREVIEW_SYNC_SKILL_DIR}}", paths.vibereviewSyncSkillDir)
+        .replaceAll("name=\"{{SRAI_PROJECT_NAME}}\"", `project_id="${project.id}"`)
+        .replaceAll("name=\"<VibeReview_PROJECT_NAME>\"", `project_id="${project.id}", project_slug="${project.slug}", project_name="${project.name}"`)
+        .replaceAll("The old profile walkthrough is no longer part of the agent workflow.", "Local profile walkthroughs are no longer part of the IDE workflow; profiling happens server-side after project creation.")
+        .replaceAll("Profiler only | `server-side repository profiling`, `server-side guardrail pack selection` are used by init-time profiling, not normal coding tasks", "Profiler only | Server-side repository profiling and guardrail pack selection happen after project creation, not during normal IDE coding tasks");
+}
+function defaultPaths(ide) {
+    const root = ide === "claude" ? ".claude/skills" : ide === "vscode" ? ".github/skills" : ide === "codex" ? ".codex/skills" : ".cursor/skills";
+    return {
+        guardrailsSelectionSkillDir: `${root}/guardrails-selection`,
+        threatModellingSkillDir: `${root}/threat-modelling`,
+        vibereviewSyncSkillDir: `${root}/vibereview-sync`,
+    };
+}
+function projectContext(config) {
+    return {
+        id: sanitize(config.project_id || config.project_slug),
+        slug: sanitize(config.project_slug),
+        name: sanitize(config.project_name || config.project_slug),
+    };
+}
+function sanitize(value) {
+    return value.replace(/[\r\n`]/g, " ").trim();
+}

package/dist/scaffold/vibreview.js

@@ -10,15 +10,21 @@ export async function scaffoldVibeReview(cwd, config) {
     const existingSyncState = await readJson(join(cwd, SYNC_STATE_PATH));
     if (!existingSyncState)
         await writeJson(join(cwd, SYNC_STATE_PATH), { version: 1, artifacts: {} });
-    await upsertBlock(join(cwd, ".gitignore"), GITIGNORE_START, GITIGNORE_END, [
-        ".vibreview/config.json",
-        ".vibreview/sync-state.json",
-        ".vibreview/scans/",
-        ".mcp.json",
-        ".cursor/mcp.json",
-        ".vscode/mcp.json",
-        ".codex/config.toml",
-        ".gemini/settings.json",
-        ".windsurf/mcp_config.json",
-    ].join("\n"));
+    await upsertBlock(join(cwd, ".gitignore"), GITIGNORE_START, GITIGNORE_END, gitignoreEntries(config).join("\n"));
+}
+function gitignoreEntries(config) {
+    const entries = [".vibreview/config.json", ".vibreview/sync-state.json", ".vibreview/scans/"];
+    if (config.ide.includes("claude_code"))
+        entries.push(".mcp.json");
+    if (config.ide.includes("cursor"))
+        entries.push(".cursor/mcp.json");
+    if (config.ide.includes("vscode_copilot"))
+        entries.push(".vscode/mcp.json");
+    if (config.ide.includes("codex"))
+        entries.push(".codex/config.toml");
+    if (config.ide.includes("gemini") || config.ide.includes("antigravity"))
+        entries.push(".gemini/settings.json");
+    if (config.ide.includes("windsurf"))
+        entries.push(".windsurf/mcp_config.json");
+    return entries;
 }

package/dist/scaffold/vscode.js

@@ -1,8 +1,13 @@
 import { join } from "node:path";
 import { readJson, writeJson, writeText, upsertBlock } from "../fs.js";
 import { mcpRemoteServerWithType } from "./mcp.js";
-import { SENTINEL_END, SENTINEL_START, copilotRuleContent, syncSkillContent, threatModelSkillContent, vscodeHooksContent } from "./rules.js";
+import { SENTINEL_END, SENTINEL_START, copilotRuleContent, guardrailsSelectionSkillContent, syncSkillContent, threatModelSkillContent, vscodeHooksContent } from "./rules.js";
 export async function scaffoldVSCode(cwd, config) {
+    const paths = {
+        guardrailsSelectionSkillDir: ".github/skills/guardrails-selection",
+        threatModellingSkillDir: ".github/skills/threat-modelling",
+        vibereviewSyncSkillDir: ".github/skills/vibereview-sync",
+    };
     const settingsPath = join(cwd, ".vscode", "settings.json");
     const existing = (await readJson(settingsPath)) ?? {};
     await writeJson(settingsPath, {
@@ -15,8 +20,9 @@ export async function scaffoldVSCode(cwd, config) {
     const servers = mcpConfig.servers ?? {};
     servers.vibreview = mcpRemoteServerWithType(config);
     await writeJson(mcpPath, { ...mcpConfig, servers });
-    await upsertBlock(join(cwd, ".github", "copilot-instructions.md"), SENTINEL_START, SENTINEL_END, copilotRuleContent());
-    await writeText(join(cwd, ".github", "hooks", "vibreview-session-policy.json"), vscodeHooksContent());
-    await writeText(join(cwd, ".github", "skills", "threat-modelling", "SKILL.md"), `${threatModelSkillContent(".github/skills/vibereview-sync")}\n`);
-    await writeText(join(cwd, ".github", "skills", "vibereview-sync", "SKILL.md"), `${syncSkillContent()}\n`);
+    await upsertBlock(join(cwd, ".github", "copilot-instructions.md"), SENTINEL_START, SENTINEL_END, copilotRuleContent(config));
+    await writeText(join(cwd, ".github", "hooks", "vibreview-session-policy.json"), vscodeHooksContent(config));
+    await writeText(join(cwd, ".github", "skills", "guardrails-selection", "SKILL.md"), `${guardrailsSelectionSkillContent(config, paths)}\n`);
+    await writeText(join(cwd, ".github", "skills", "threat-modelling", "SKILL.md"), `${threatModelSkillContent(config, paths)}\n`);
+    await writeText(join(cwd, ".github", "skills", "vibereview-sync", "SKILL.md"), `${syncSkillContent(config)}\n`);
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@securityreviewai/securityreview-kit",
-  "version": "0.1.49",
+  "version": "0.1.51",
   "type": "module",
   "publishConfig": {
     "access": "public"

package/templates/shared/content.md

@@ -0,0 +1,60 @@
+# Security Review Kit Agent Instructions
+
+Configured SRAI project name: `<SRAI_PROJECT_NAME>`
+
+These instructions are always active for security-relevant coding work. Keep this file as the routing policy; use the skills and agents below for the detailed workflows.
+
+## Core Workflow
+
+For any task that touches auth, authorization, input handling, secrets, network, data storage, dependencies, new APIs/endpoints, infrastructure, or code handling untrusted data, this workflow is a hard pre-write gate.
+
+Do not write, edit, patch, or generate implementation code until guardrails have been fetched and shortlisted and PWNISMS threat modelling has been completed. If the user asks for code immediately, still run the pre-write gate first.
+
+1. **Fetch Vibe Guardrails first.**
+   - Read and follow `{{GUARDRAILS_SELECTION_SKILL_DIR}}/SKILL.md`.
+   - Resolve the SRAI project with `find_project_by_name` using `name="<SRAI_PROJECT_NAME>"`.
+   - Call `get_guardrails`, shortlist only the relevant project guardrails, then preserve the exact returned guardrail entries.
+   - Preserve that exact shortlist in context for implementation and the final VibeReview sync step.
+
+2. **Run PWNISMS threat modelling before implementation.**
+   - Read and follow `{{THREAT_MODELLING_SKILL_DIR}}/SKILL.md`.
+   - Explicitly walk all seven PWNISMS categories: Product, Workload, Network, IAM, Secrets, Monitoring, and Supply Chain.
+   - If a category is not applicable, say so briefly and continue.
+   - Cross-reference each meaningful threat with the shortlisted guardrails.
+
+3. **Implement secure code using both inputs.**
+   - This step may start only after steps 1 and 2 are complete.
+   - Treat applicable `must` guardrails as mandatory.
+   - Treat applicable `must_not` guardrails as hard prohibitions.
+   - Use the PWNISMS findings to guide design, validation, authorization, logging, secrets handling, dependency choices, and abuse controls.
+   - If PWNISMS reveals a recurring security rule that is not covered by existing guardrails, create and apply an `ide_generated` guardrail in context.
+
+4. **Write and sync the VibeReview markdown last.**
+   - Read and follow `{{VIBEREVIEW_SYNC_SKILL_DIR}}/SKILL.md`.
+   - After threat modelling is created or updated, or after guardrails are enforced during implementation, the main agent must write or update a structured `.md` artifact under `.vibreview/scans/`.
+   - Do not delegate markdown authoring to a subagent. The same agent that performed the work should author the artifact so the context stays intact.
+   - Use the skill's structure and validation checklist rather than improvising the markdown format.
+   - Reuse the exact existing guardrails shortlisted earlier, include any `ide_generated` guardrails, and only include grounded code snippets from actual code.
+   - Call `sync_ai_ide_markdown` directly with the finished raw markdown content before finalizing the task. Do not sync JSON summaries, JSON objects, or extracted event JSON.
+   - If sync fails, keep the file in `.vibreview/scans/`, report the failure, and do not pretend synchronization succeeded.
+
+## When To Skip
+
+Skip the SRAI security workflow only for tasks with no security surface, such as documentation-only changes, typo fixes, pure formatting, variable renames with no logic change, or general Q&A that produces no code.
+
+If in doubt, run the workflow. A quick PWNISMS pass is better than silently missing a security boundary.
+
+## Do Not Use Project Profile Exploration
+
+Do not call project-profile exploration tools during normal coding tasks. The old profile walkthrough is no longer part of the agent workflow.
+
+The normal coding workflow is guardrails selection, PWNISMS threat modelling, secure implementation, then VibeReview markdown sync.
+
+## Tool Reference
+
+| Purpose | Tools |
+|---|---|
+| Project resolution | `find_project_by_name`, `list_projects`, `create_project`, `get_project` |
+| Guardrails | `get_guardrails` |
+| VibeReview sync | `sync_ai_ide_markdown` |
+| Profiler only | `update_vibe_profile`, `write_default_pack` are used by init-time profiling, not normal coding tasks |