laravel-security-agent 1.2.1 → 1.3.0

package/README.md

@@ -4,7 +4,7 @@
 
 > *"Your friendly capybara keeping your Laravel app safe."*
 
-A one-command security toolkit for Laravel projects. Capi Guard installs AI-powered security audit agents, hardens your `.gitignore`, adds a pre-commit hook, and provides an **autonomous Antigravity PHP Agent** compatible with GitHub Copilot Skills.
+A one-command security toolkit for Laravel projects. Run it once and Capi Guard automatically deploys AI-powered security agents into **Claude Code**, **GitHub Copilot**, and **Google Gemini/Antigravity** — plus hardens your project with a pre-commit hook and `.gitignore` rules.
 
 ## Usage
 
@@ -14,46 +14,55 @@ Run at the root of your Laravel project:
 npx laravel-security-agent
 ```
 
-Capi Guard will ask what you want to install and handle everything interactively.
+No prompts. Everything installs automatically.
 
-## Installation Options
+## What Gets Installed
 
-You can install any combination of the following:
+### Global AI Agents (user-level, one-time)
 
-| Option | What it installs | Best for |
-|--------|-----------------|----------|
-| **Claude Code rules** | `SECURITY.md` | Claude Code CLI users |
-| **Copilot rules** | `.github/copilot-instructions.md` | Copilot Editor users |
-| **Update .gitignore** | Enforces Laravel security patterns | Preventing secret leaks |
-| **Pre-commit hook** | Blocks commits of sensitive keys | CI/CD discipline |
-| **Antigravity Agent** | Complete PHP 8.3 Agent + Copilot Skills | **Advanced Autonomous Security** |
+| Platform | What installs | Where |
+|---|---|---|
+| **Claude Code** | `capi-guard` skill | `~/.claude/skills/capi-guard/SKILL.md` |
+| **GitHub Copilot** | `.agent.md` sub-agents | `.github/agents/` |
+| **Gemini / Google Antigravity** | Capi Guard instruction block | `~/.gemini/GEMINI.md` |
+
+After install, just ask your AI to "audit security" — it knows the full workflow and all 4 callable skills.
+
+### Project Files
+
+| File | Purpose |
+|---|---|
+| `SECURITY.md` | Claude Code security agent rules |
+| `.github/copilot-instructions.md` | Copilot security agent rules |
+| `.gitignore` entries | Blocks `deploy.php`, `.env`, SSH keys |
+| `.git/hooks/pre-commit` | Blocks commits of sensitive files |
+| **Antigravity PHP Agent** | Full autonomous agent in `app/Agents/` |
 
 ---
 
 ## 🤖 The Antigravity Agent (PHP)
 
-This is the flagship feature. When you select the **Antigravity Agent**, Capi Guard scaffolds a production-ready, zero-trust AI agent directly into your Laravel `app/` directory.
-
-It exposes an API endpoint (`/api/agent/invoke`) that GitHub Copilot can call to perform **deterministic, local code analysis** natively in PHP.
+The flagship feature. Capi Guard scaffolds a production-ready, zero-trust AI agent directly into your Laravel `app/` directory. It exposes `/api/agent/invoke` — an endpoint that any AI can call to run **deterministic, local PHP analysis** without sending your codebase to the cloud.
 
 ### Available Skills
 
-Copilot uses these skills to analyze your code instantly without sending your entire codebase to the LLM:
+| Skill | What it does |
+|---|---|
+| 🔍 **vulnerabilityScan** | Regex scan across 13 security categories in any path |
+| 🛡️ **analyzeAuthFlow** | PHP Reflection traces controllers, finds missing `authorize()` calls |
+| 🩹 **applySecurityPatch** | Applies CVE patches with backup + runs Artisan commands post-patch |
+| 🧹 **sanitizeGitHistory** | Generates a `git filter-repo` script to purge secrets from full git history |
 
-1. 🔍 **vulnerabilityScan**: Uses Regex to scan 13 security categories across any directory.
-2. 🛡️ **analyzeAuthFlow**: Uses PHP Reflection to trace controllers and detect missing `$this->authorize()` calls.
-3. 🩹 **applySecurityPatch**: Applies surgical CVE patches and automatically runs Artisan commands afterwards (`optimize:clear`, `test`, etc).
-4. 🧹 **sanitizeGitHistory**: Generates a `git filter-repo` script with a blob-callback to purge old `.env` files and redact naked passwords/IPs from your *entire* Git history commits.
+### Copilot Sub-Agents
 
-### Copilot Sub-Agents Included
+Four specialised agents are installed into `.github/agents/`:
 
-The installer also copies 3 specialised Copilot Agents into `.github/agents/`. You can invoke them in the Copilot Chat:
+- `@capi-guard` — Full-stack auditor. Runs scans, analyzes auth, patches files.
+- `@patch-aplicado` — Surgical CVE patcher with backup and Artisan validation.
+- `@auth-guard` — Read-only analyst. Finds authorization gaps and suggests Policies.
+- `@git-sanitizer` — Git history auditor and scrubber.
 
-- `@capi-guard` — Full stack auditor. Runs scans, analyzes auth, and patches files following a strict 6-step workflow.
-- `@patch-aplicado` — Surgical CVE patcher. Always creates a backup, runs the patch, and validates with Artisan.
-- `@auth-guard` — Read-only analyst. Only reads code to find authorization gaps and suggest Policies.
-
-### How to configure the Agent
+### Agent Setup
 
 1. Add the route to `routes/api.php`:
    ```php
@@ -63,40 +72,38 @@ The installer also copies 3 specialised Copilot Agents into `.github/agents/`. Y
    Route::post("/api/agent/invoke", AgentController::class)
         ->middleware(["auth:sanctum", ZeroTrustMiddleware::class]);
    ```
-2. Issue a Sanctum token with the `agent:invoke` ability for Copilot.
+2. Issue a Sanctum token with the `agent:invoke` ability.
 3. Register `.github/manifest.json` in your GitHub Copilot Extension settings.
-4. *(Optional)* Publish the config file to edit CVE patches and rate limits:
+4. *(Optional)* Publish the config to customize CVE patches and rate limits:
    ```bash
    php artisan vendor:publish --tag=security-agent-config
    ```
 
 ---
 
-## The Passive Rules (Claude & Copilot)
-
-If you just want instructions for your AI without the full PHP agent, install `SECURITY.md` or `.github/copilot-instructions.md`.
+## Security Categories Audited
 
-When you ask the AI to "audit security", it will check for 13 categories including:
+When you ask any AI to "audit security", it checks 13 categories:
 
 | Category | What gets checked |
-|----------|---------------|
+|---|---|
 | **IDOR** | Policies, `authorize()`, ownership scoping |
 | **SQL Injection** | Raw queries, dynamic `orderBy` whitelisting |
 | **Mass Assignment** | Empty `$guarded`, role escalation via `$request->all()` |
+| **XSS** | `{!! !!}` in Blade, `v-html` in Vue |
+| **CSRF** | Exclusions in `VerifyCsrfToken`, unprotected POST routes |
+| **Authorization** | Missing `Gate::authorize()` in controllers |
 | **File Uploads** | `mimetypes:` vs `mimes:`, private storage, server-side naming |
-| **CSRF & XSS** | Exclusions in `VerifyCsrfToken`, `v-html` usage |
-| **Git secrets** | `APP_DEBUG`, `.env` in history, hardcoded credentials |
-
-## Pre-commit hook & .gitignore
-
-The `.gitignore` updater enforces patterns for `deploy.php`, `auth.json`, e `.phpunit.result.cache`.
-The pre-commit hook automatically blocks attempts to `git commit` any `.env` file, `.pem`, `.p12`, or `.key` file.
+| **Rate Limiting** | Public endpoints without throttle middleware |
+| **Security Headers** | Missing CSP, X-Frame-Options, HSTS |
+| **Credentials in Code** | Hardcoded secrets and API keys |
+| **Git Secrets** | `.env`, `deploy.php`, SSH keys in git history |
 
 ## Requirements
 
-- Node.js 18+ (to run the npx command)
+- Node.js 18+
 - Laravel project (`composer.json` at the root)
-- *For the Agent:* PHP 8.2+ and Laravel Sanctum
+- *For the PHP Agent:* PHP 8.2+ and Laravel Sanctum
 
 ## License
 

package/bin/index.js

@@ -1,15 +1,18 @@
 #!/usr/bin/env node
 import {
-    intro, outro, multiselect, confirm,
+    intro, outro, confirm,
     spinner, note, cancel, isCancel
 } from '@clack/prompts';
-import { existsSync } from 'node:fs';
+import { existsSync, readFileSync } from 'node:fs';
 import { join } from 'node:path';
+import { homedir } from 'node:os';
 import { copySecurity } from '../src/copy-security.js';
 import { copyCopilot } from '../src/copy-copilot.js';
 import { applyGitignore } from '../src/update-gitignore.js';
 import { installHook } from '../src/install-hook.js';
 import { copyAgent } from '../src/copy-agent.js';
+import { deployClaudeSkill } from '../src/deploy-claude-skill.js';
+import { deployGemini } from '../src/deploy-gemini.js';
 
 const cwd = process.cwd();
 
@@ -23,22 +26,7 @@ if (!existsSync(join(cwd, 'composer.json'))) {
     );
 }
 
-const options = await multiselect({
-    message: 'What would you like to install?',
-    initialValues: ['claude', 'copilot', 'gitignore', 'hook'],
-    options: [
-        { value: 'claude',   label: 'SECURITY.md',                        hint: 'Claude Code security agent' },
-        { value: 'copilot',  label: '.github/copilot-instructions.md',     hint: 'GitHub Copilot security agent' },
-        { value: 'gitignore',label: 'Update .gitignore',                   hint: 'protects deploy.php, .env, SSH keys' },
-        { value: 'hook',     label: 'Pre-commit hook',                     hint: 'blocks commits of sensitive files' },
-        { value: 'agent',    label: 'Antigravity Agent (PHP)',              hint: 'Copilot Skills + PHP 8.3 agent classes' },
-    ],
-});
-
-if (isCancel(options)) {
-    cancel('Installation cancelled.');
-    process.exit(0);
-}
+const options = ['claude', 'copilot', 'gitignore', 'hook', 'agent'];
 
 const s = spinner();
 
@@ -102,6 +90,48 @@ if (options.includes('hook')) {
         : '✔  pre-commit hook installed at .git/hooks/pre-commit');
 }
 
+// --- Claude Code skill ---
+{
+    const dest = join(homedir(), '.claude', 'skills', 'capi-guard', 'SKILL.md');
+    let overwrite = false;
+
+    if (existsSync(dest)) {
+        const answer = await confirm({
+            message: '~/.claude/skills/capi-guard/SKILL.md already exists. Overwrite?',
+            initialValue: false,
+        });
+        if (isCancel(answer)) { cancel('Cancelled.'); process.exit(0); }
+        overwrite = answer;
+    }
+
+    s.start('Deploying Capi Guard skill to Claude Code...');
+    const result = deployClaudeSkill(undefined, overwrite);
+    s.stop(result.skipped
+        ? '~/.claude/skills/capi-guard/SKILL.md kept (not overwritten)'
+        : '✔  Capi Guard skill installed at ~/.claude/skills/capi-guard/SKILL.md');
+}
+
+// --- Gemini / Google Antigravity ---
+{
+    const dest = join(homedir(), '.gemini', 'GEMINI.md');
+    let overwrite = false;
+
+    if (existsSync(dest) && readFileSync(dest, 'utf8').includes('<!-- capi-guard -->')) {
+        const answer = await confirm({
+            message: '~/.gemini/GEMINI.md already has Capi Guard block. Overwrite?',
+            initialValue: false,
+        });
+        if (isCancel(answer)) { cancel('Cancelled.'); process.exit(0); }
+        overwrite = answer;
+    }
+
+    s.start('Deploying Capi Guard to Gemini / Google Antigravity...');
+    const result = deployGemini(undefined, overwrite);
+    s.stop(result.skipped
+        ? '~/.gemini/GEMINI.md kept (not overwritten)'
+        : '✔  Capi Guard block appended to ~/.gemini/GEMINI.md');
+}
+
 // --- Antigravity Agent (PHP) ---
 if (options.includes('agent')) {
     let overwrite = false;
@@ -123,19 +153,24 @@ if (options.includes('agent')) {
         : `✔  Antigravity agent installed (${result.copied.length} files → app/Agents/, app/Skills/, app/Http/, config/, .github/)`);
 }
 
-const nextSteps = [];
-if (options.includes('claude'))  nextSteps.push('Claude Code: say "audit security" or "run SECURITY.md"');
-if (options.includes('copilot')) nextSteps.push('Copilot: .github/copilot-instructions.md is loaded automatically');
-if (options.includes('agent'))   nextSteps.push(
-    'Antigravity Agent:\n' +
-    '  1. Add route: Route::post("/api/agent/invoke", AgentController::class)->middleware(["auth:sanctum", ZeroTrustMiddleware::class]);\n' +
-    '  2. Issue a Sanctum token with ability "agent:invoke"\n' +
-    '  3. Register .github/manifest.json in your Copilot Extension settings\n' +
-    '  4. Optionally run: php artisan vendor:publish --tag=security-agent-config'
-);
+const nextSteps = [
+    'Claude Code: the "capi-guard" skill is now available — just ask Claude to audit security',
+    'Gemini CLI: Capi Guard instructions are active in ~/.gemini/GEMINI.md',
+    'Copilot: .github/copilot-instructions.md and .github/agents/ are installed automatically',
+];
+
+if (options.includes('agent')) {
+    nextSteps.push(
+        'Antigravity Agent (PHP backend):\n' +
+        '  1. Add route: Route::post("/api/agent/invoke", AgentController::class)->middleware(["auth:sanctum", ZeroTrustMiddleware::class]);\n' +
+        '  2. Issue a Sanctum token with ability "agent:invoke"\n' +
+        '  3. Register .github/manifest.json in your Copilot Extension settings\n' +
+        '  4. Optionally run: php artisan vendor:publish --tag=security-agent-config'
+    );
+}
 
 if (nextSteps.length > 0) {
-    note(nextSteps.join('\n'), 'Next step');
+    note(nextSteps.join('\n'), 'Next steps');
 }
 
 const capybara = `

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "laravel-security-agent",
-  "version": "1.2.1",
+  "version": "1.3.0",
   "description": "Capi Guard — a security audit agent for Laravel projects",
   "type": "module",
   "bin": {
@@ -13,9 +13,9 @@
     "public"
   ],
   "scripts": {
-    "test": "node --test test/copy-security.test.js test/update-gitignore.test.js test/install-hook.test.js test/copy-copilot.test.js test/copy-agent.test.js",
+    "test": "node --test test/copy-security.test.js test/update-gitignore.test.js test/install-hook.test.js test/copy-copilot.test.js test/copy-agent.test.js test/deploy-claude-skill.test.js test/deploy-gemini.test.js",
     "start": "node bin/index.js",
-    "prepublishOnly": "node --test test/copy-security.test.js test/update-gitignore.test.js test/install-hook.test.js test/copy-copilot.test.js test/copy-agent.test.js"
+    "prepublishOnly": "node --test test/copy-security.test.js test/update-gitignore.test.js test/install-hook.test.js test/copy-copilot.test.js test/copy-agent.test.js test/deploy-claude-skill.test.js test/deploy-gemini.test.js"
   },
   "dependencies": {
     "@clack/prompts": "^0.9.1"

package/src/deploy-claude-skill.js

@@ -0,0 +1,28 @@
+// src/deploy-claude-skill.js
+import { existsSync, copyFileSync, mkdirSync } from 'node:fs';
+import { join } from 'node:path';
+import { fileURLToPath } from 'node:url';
+import { homedir } from 'node:os';
+
+const __dirname = fileURLToPath(new URL('.', import.meta.url));
+const SKILL_TEMPLATE = join(__dirname, '../templates/claude-skill/SKILL.md');
+
+/**
+ * Deploy the Capi Guard skill to the user's Claude Code skills directory.
+ *
+ * @param {string} [homeDir]    Override home directory (for testing).
+ * @param {boolean} [overwrite] Whether to overwrite an existing skill file.
+ * @returns {{ skipped: boolean, path: string }}
+ */
+export function deployClaudeSkill(homeDir = homedir(), overwrite = false) {
+    const skillDir = join(homeDir, '.claude', 'skills', 'capi-guard');
+    const dest = join(skillDir, 'SKILL.md');
+
+    if (existsSync(dest) && !overwrite) {
+        return { skipped: true, path: dest };
+    }
+
+    mkdirSync(skillDir, { recursive: true });
+    copyFileSync(SKILL_TEMPLATE, dest);
+    return { skipped: false, path: dest };
+}

package/src/deploy-gemini.js

@@ -0,0 +1,48 @@
+// src/deploy-gemini.js
+import { existsSync, readFileSync, writeFileSync, appendFileSync, mkdirSync } from 'node:fs';
+import { join } from 'node:path';
+import { fileURLToPath } from 'node:url';
+import { homedir } from 'node:os';
+
+const __dirname = fileURLToPath(new URL('.', import.meta.url));
+const GEMINI_TEMPLATE = join(__dirname, '../templates/gemini.md');
+
+const OPEN_MARKER  = '<!-- capi-guard -->';
+const CLOSE_MARKER = '<!-- /capi-guard -->';
+
+/**
+ * Append (or re-append) the Capi Guard block to the user's ~/.gemini/GEMINI.md.
+ *
+ * Idempotent: if the marker is already present and overwrite is false, skip.
+ * When overwrite is true, the old block is stripped and the fresh template is appended.
+ *
+ * @param {string}  [homeDir]   Override home directory (for testing).
+ * @param {boolean} [overwrite]
+ * @returns {{ skipped: boolean, path: string }}
+ */
+export function deployGemini(homeDir = homedir(), overwrite = false) {
+    const geminiDir = join(homeDir, '.gemini');
+    const dest = join(geminiDir, 'GEMINI.md');
+    const template = readFileSync(GEMINI_TEMPLATE, 'utf8');
+
+    const existing = existsSync(dest) ? readFileSync(dest, 'utf8') : '';
+
+    if (existing.includes(OPEN_MARKER)) {
+        if (!overwrite) return { skipped: true, path: dest };
+
+        // Strip old block (everything between markers, inclusive)
+        const stripped = existing.replace(
+            new RegExp(`${OPEN_MARKER}[\\s\\S]*?${CLOSE_MARKER}`, 'g'),
+            ''
+        ).trimEnd();
+
+        mkdirSync(geminiDir, { recursive: true });
+        writeFileSync(dest, stripped + '\n' + template + '\n');
+        return { skipped: false, path: dest };
+    }
+
+    mkdirSync(geminiDir, { recursive: true });
+    const prefix = existing && !existing.endsWith('\n') ? '\n' : '';
+    appendFileSync(dest, prefix + template + '\n');
+    return { skipped: false, path: dest };
+}

package/src/update-gitignore.js

@@ -4,26 +4,55 @@ import { join } from 'node:path';
 
 export const DEFAULT_ENTRIES = [
     '',
-    '# laravel-security-agent (Capi Guard)',
+    '# ── Capi Guard — security rules ──────────────────────────────────────',
+    '',
+    '# Environment',
+    '# .env.example is safe: commit it with key names but empty values',
+    '# (APP_KEY=, DB_PASSWORD=) — never commit the real .env',
     '.env',
     '.env.*',
     '!.env.example',
+    '',
+    '# Deployment — often contain server IPs, SSH passwords, sudo commands',
     'deploy.php',
     'deployer.php',
+    'deployer.json',
+    '.deploy/',
+    '',
+    '# Cryptographic keys and certificates',
     '*.pem',
     '*.key',
     '*.p12',
     '*.pfx',
+    '*.jks',
+    '*.keystore',
     'id_rsa',
+    'id_rsa.pub',
     'id_ed25519',
+    'id_ed25519.pub',
+    '',
+    '# Credential and token stores',
+    'auth.json',
+    '',
+    '# Docker local overrides — often include server IPs and passwords',
+    'docker-compose.override.yml',
+    'docker-compose.local.yml',
+    '',
+    '# Database dumps — contain raw user data and credentials',
+    '*.sql',
+    '*.sql.gz',
+    '*.dump',
+    '',
+    '# Laravel runtime artifacts',
+    '/.phpunit.result.cache',
+    '/storage/debugbar/',
 ];
 
 export function buildLinesToAdd(existingContent, entries) {
+    const existingLines = new Set(existingContent.split('\n').map(l => l.trim()));
     return entries.filter(entry => {
-        // Always include structural lines (blank lines and comments)
-        if (entry === '' || entry.startsWith('#')) return true;
-        const lines = existingContent.split('\n').map(l => l.trim());
-        return !lines.includes(entry.trim());
+        if (entry === '') return true; // always keep blank lines for formatting
+        return !existingLines.has(entry.trim()); // deduplicate comments and entries alike
     });
 }
 

package/templates/claude-skill/SKILL.md

@@ -0,0 +1,88 @@
+---
+name: capi-guard
+description: Laravel security audit agent for Capi Guard. Invoke to scan for vulnerabilities, analyze auth flows, and apply CVE patches.
+---
+
+# Capi Guard 🐾 — Laravel Security Skill
+
+You are **Capi Guard**, a security audit agent for Laravel projects.
+
+## LANGUAGE
+
+Detect the language of the user's message and respond entirely in that language.
+
+## REQUIRED BEHAVIOR
+
+1. NEVER modify code without asking the user first.
+2. For each issue found, present:
+   - File and line where the problem is
+   - Why it is a risk (category: IDOR, SQL Injection, Mass Assignment, XSS, CSRF, etc.)
+   - What you intend to do to fix it
+   - Wait for explicit approval before editing.
+3. If you find multiple issues, list ALL of them first, then ask which ones to fix and in what order.
+4. After each fix, show the diff and confirm.
+
+## SECURITY CATEGORIES TO AUDIT
+
+- **IDOR** — direct object references without ownership checks
+- **SQL Injection** — raw DB queries with user input
+- **Mass Assignment** — missing `$fillable` / `$guarded` on models
+- **XSS** — unescaped `{!! !!}` in Blade, `v-html` in Vue
+- **CSRF** — missing `@csrf` on forms, unprotected POST routes
+- **Authorization** — missing `$this->authorize()` in controllers
+- **File Upload** — missing MIME validation, storing in public/
+- **Rate Limiting** — public endpoints without throttle middleware
+- **Credentials in Code** — hardcoded secrets, keys committed to git
+- **Security Headers** — missing CSP, X-Frame-Options, HSTS
+- **Git Secrets** — `.env`, `deploy.php`, SSH keys in history
+
+## CALLABLE SKILLS
+
+When deeper analysis is needed, invoke the Capi Guard PHP backend via `POST /api/agent/invoke` (requires a Sanctum Bearer token with the `agent:invoke` ability):
+
+- **`vulnerabilityScan`** `{ path: string }` — static analysis across 13 security categories on the given path (e.g. `"app/Http/Controllers"`). Returns findings sorted by severity.
+- **`analyzeAuthFlow`** `{ controller: string }` — inspects a controller's public methods via PHP Reflection, detecting missing `$this->authorize()` or `Gate::authorize()` calls.
+- **`applySecurityPatch`** `{ cveId: string, filePath: string }` — looks up the CVE in `config/security-agent.php`, creates a timestamped backup, applies the patch, and runs `php artisan optimize:clear`.
+- **`sanitizeGitHistory`** `{ backupBranch?: string, dryRun?: boolean, repoPath?: string, generateScriptPath?: string }` — two-phase audit and scrub of secrets across full git history. Defaults to dry-run; always verifies a backup branch before rewriting.
+
+See `.github/manifest.json` for the full OpenAPI spec.
+
+## MANDATORY WORKFLOW
+
+When invoked for any security task, execute **in this order**:
+
+### 1. Reconnaissance
+- List affected controllers
+- Map related routes in `routes/web.php` and `routes/api.php`
+- Identify models, policies, and middleware in scope
+
+### 2. Static Analysis
+- Scan each in-scope file for the categories above
+- Note: file path, line number, category, severity (critical / important / suggestion)
+
+### 3. Report
+- Present ALL findings before touching any file
+- Group by severity: critical → important → suggestion
+- For each finding: location, risk explanation, proposed fix
+
+### 4. Await Approval
+- Ask which issues to fix and in what order
+- Do NOT proceed until the user confirms
+
+### 5. Apply Fixes
+- Fix one issue at a time
+- Show a diff after each change
+- Confirm before moving to the next
+
+## SCOPE
+
+Act **only** on:
+- PHP files in `app/`, `routes/`, `config/`, `bootstrap/`
+- `.env.example` (never `.env`)
+- Blade templates in `resources/views/`
+- Vue/JS files only for `v-html` checks
+
+Do NOT alter:
+- Already-executed migrations
+- `vendor/`
+- Test files (read-only)

package/templates/gemini.md

@@ -0,0 +1,26 @@
+<!-- capi-guard -->
+## Capi Guard 🐾 — Laravel Security Agent
+
+You have the Capi Guard security skill installed for this project.
+
+When the user asks about security, vulnerabilities, or anything related to the Laravel project's safety:
+
+1. **Never modify code without asking first.**
+2. Scan for: IDOR, SQL Injection, Mass Assignment, XSS, CSRF, missing authorization, file upload risks, rate limiting gaps, hardcoded credentials, security headers, and secrets in git history.
+3. Present ALL findings before touching any file. Group by severity.
+4. Wait for explicit approval before applying any fix.
+5. Show a diff after each change and confirm before continuing.
+
+**Scope:** `app/`, `routes/`, `config/`, `bootstrap/`, `resources/views/`, `.env.example`. Never touch `vendor/`, `.env`, already-executed migrations, or test files (read-only).
+
+## Callable Skills
+
+Call the Capi Guard PHP backend via `POST /api/agent/invoke` (Sanctum Bearer token, ability `agent:invoke`):
+
+- **`vulnerabilityScan`** `{ path }` — static analysis across 13 categories
+- **`analyzeAuthFlow`** `{ controller }` — finds missing `authorize()` calls via PHP Reflection
+- **`applySecurityPatch`** `{ cveId, filePath }` — applies CVE patches with backup + Artisan post-run
+- **`sanitizeGitHistory`** `{ backupBranch?, dryRun?, repoPath?, generateScriptPath? }` — audits and scrubs secrets from git history
+
+Full spec: `.github/manifest.json`.
+<!-- /capi-guard -->