Skip to content

Commit 79e4e4d

Browse files
CalinLCalinL
authored
Merge pull request #147 from githubabcs-devops/feature/added-tools-to-agents-properly
added tools to the custom agents
2 parents e9ad8a9 + 3d1d4a1 commit 79e4e4d

File tree

7 files changed

+247
-1
lines changed

7 files changed

+247
-1
lines changed

.github/agents/iac-security-agent.md

Lines changed: 41 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,47 @@
22
name: IaCSecurityAgent
33
description: IaC & Cloud Configuration Guard - Scans Terraform, Bicep, ARM, Kubernetes manifests, and Helm charts for misconfigurations and insecure defaults
44
model: Claude Sonnet 4.5 (copilot)
5+
tools:
6+
- vscode/getProjectSetupInfo
7+
- vscode/installExtension
8+
- vscode/memory
9+
- vscode/newWorkspace
10+
- vscode/runCommand
11+
- vscode/vscodeAPI
12+
- vscode/extensions
13+
- vscode/askQuestions
14+
- execute/runNotebookCell
15+
- execute/testFailure
16+
- execute/getTerminalOutput
17+
- execute/awaitTerminal
18+
- execute/killTerminal
19+
- execute/createAndRunTask
20+
- execute/runInTerminal
21+
- execute/runTests
22+
- read/getNotebookSummary
23+
- read/problems
24+
- read/readFile
25+
- read/readNotebookCellOutput
26+
- read/terminalSelection
27+
- read/terminalLastCommand
28+
- agent/runSubagent
29+
- edit/createDirectory
30+
- edit/createFile
31+
- edit/createJupyterNotebook
32+
- edit/editFiles
33+
- edit/editNotebook
34+
- edit/rename
35+
- search/changes
36+
- search/codebase
37+
- search/fileSearch
38+
- search/listDirectory
39+
- search/searchResults
40+
- search/textSearch
41+
- search/usages
42+
- web/fetch
43+
- web/githubRepo
44+
- browser/openBrowserPage
45+
- todo
546
---
647

748
# IaC & Cloud Configuration Guard Agent

.github/agents/pipeline-security-agent.md

Lines changed: 41 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,47 @@
22
name: PipelineSecurityAgent
33
description: Pipeline & CI Workflow Hardening Agent - Audits GitHub Actions and Azure DevOps YAML for security weaknesses and produces hardened workflow patches
44
model: Claude Sonnet 4.5 (copilot)
5+
tools:
6+
- vscode/getProjectSetupInfo
7+
- vscode/installExtension
8+
- vscode/memory
9+
- vscode/newWorkspace
10+
- vscode/runCommand
11+
- vscode/vscodeAPI
12+
- vscode/extensions
13+
- vscode/askQuestions
14+
- execute/runNotebookCell
15+
- execute/testFailure
16+
- execute/getTerminalOutput
17+
- execute/awaitTerminal
18+
- execute/killTerminal
19+
- execute/createAndRunTask
20+
- execute/runInTerminal
21+
- execute/runTests
22+
- read/getNotebookSummary
23+
- read/problems
24+
- read/readFile
25+
- read/readNotebookCellOutput
26+
- read/terminalSelection
27+
- read/terminalLastCommand
28+
- agent/runSubagent
29+
- edit/createDirectory
30+
- edit/createFile
31+
- edit/createJupyterNotebook
32+
- edit/editFiles
33+
- edit/editNotebook
34+
- edit/rename
35+
- search/changes
36+
- search/codebase
37+
- search/fileSearch
38+
- search/listDirectory
39+
- search/searchResults
40+
- search/textSearch
41+
- search/usages
42+
- web/fetch
43+
- web/githubRepo
44+
- browser/openBrowserPage
45+
- todo
546
---
647

748
# Pipeline Security Agent

.github/agents/security-agent.md

Lines changed: 41 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,47 @@
22
name: SecurityAgent
33
description: Security Agent - Reviews this repository (ASP.NET Core Razor Pages + IaC) for security issues and produces a security report
44
model: Claude Sonnet 4.5 (copilot)
5+
tools:
6+
- vscode/getProjectSetupInfo
7+
- vscode/installExtension
8+
- vscode/memory
9+
- vscode/newWorkspace
10+
- vscode/runCommand
11+
- vscode/vscodeAPI
12+
- vscode/extensions
13+
- vscode/askQuestions
14+
- execute/runNotebookCell
15+
- execute/testFailure
16+
- execute/getTerminalOutput
17+
- execute/awaitTerminal
18+
- execute/killTerminal
19+
- execute/createAndRunTask
20+
- execute/runInTerminal
21+
- execute/runTests
22+
- read/getNotebookSummary
23+
- read/problems
24+
- read/readFile
25+
- read/readNotebookCellOutput
26+
- read/terminalSelection
27+
- read/terminalLastCommand
28+
- agent/runSubagent
29+
- edit/createDirectory
30+
- edit/createFile
31+
- edit/createJupyterNotebook
32+
- edit/editFiles
33+
- edit/editNotebook
34+
- edit/rename
35+
- search/changes
36+
- search/codebase
37+
- search/fileSearch
38+
- search/listDirectory
39+
- search/searchResults
40+
- search/textSearch
41+
- search/usages
42+
- web/fetch
43+
- web/githubRepo
44+
- browser/openBrowserPage
45+
- todo
546
---
647

748
## Purpose

.github/agents/security-plan-creator.agent.md

Lines changed: 41 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,47 @@
22
name: SecurityPlanCreatorAgent
33
description: "Expert security architect for creating comprehensive cloud security plans - Brought to you by microsoft/hve-core"
44
model: Claude Sonnet 4.5 (copilot)
5+
tools:
6+
- vscode/getProjectSetupInfo
7+
- vscode/installExtension
8+
- vscode/memory
9+
- vscode/newWorkspace
10+
- vscode/runCommand
11+
- vscode/vscodeAPI
12+
- vscode/extensions
13+
- vscode/askQuestions
14+
- execute/runNotebookCell
15+
- execute/testFailure
16+
- execute/getTerminalOutput
17+
- execute/awaitTerminal
18+
- execute/killTerminal
19+
- execute/createAndRunTask
20+
- execute/runInTerminal
21+
- execute/runTests
22+
- read/getNotebookSummary
23+
- read/problems
24+
- read/readFile
25+
- read/readNotebookCellOutput
26+
- read/terminalSelection
27+
- read/terminalLastCommand
28+
- agent/runSubagent
29+
- edit/createDirectory
30+
- edit/createFile
31+
- edit/createJupyterNotebook
32+
- edit/editFiles
33+
- edit/editNotebook
34+
- edit/rename
35+
- search/changes
36+
- search/codebase
37+
- search/fileSearch
38+
- search/listDirectory
39+
- search/searchResults
40+
- search/textSearch
41+
- search/usages
42+
- web/fetch
43+
- web/githubRepo
44+
- browser/openBrowserPage
45+
- todo
546
---
647

748
# Security Plan Creation Expert

.github/agents/security-reviewer-agent.md

Lines changed: 41 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,47 @@
22
name: SecurityReviewerAgent
33
description: Security-focused code reviewer that checks for common vulnerabilities
44
model: Claude Sonnet 4.5 (copilot)
5+
tools:
6+
- vscode/getProjectSetupInfo
7+
- vscode/installExtension
8+
- vscode/memory
9+
- vscode/newWorkspace
10+
- vscode/runCommand
11+
- vscode/vscodeAPI
12+
- vscode/extensions
13+
- vscode/askQuestions
14+
- execute/runNotebookCell
15+
- execute/testFailure
16+
- execute/getTerminalOutput
17+
- execute/awaitTerminal
18+
- execute/killTerminal
19+
- execute/createAndRunTask
20+
- execute/runInTerminal
21+
- execute/runTests
22+
- read/getNotebookSummary
23+
- read/problems
24+
- read/readFile
25+
- read/readNotebookCellOutput
26+
- read/terminalSelection
27+
- read/terminalLastCommand
28+
- agent/runSubagent
29+
- edit/createDirectory
30+
- edit/createFile
31+
- edit/createJupyterNotebook
32+
- edit/editFiles
33+
- edit/editNotebook
34+
- edit/rename
35+
- search/changes
36+
- search/codebase
37+
- search/fileSearch
38+
- search/listDirectory
39+
- search/searchResults
40+
- search/textSearch
41+
- search/usages
42+
- web/fetch
43+
- web/githubRepo
44+
- browser/openBrowserPage
45+
- todo
546
---
647

748
# Security Code Reviewer

.github/agents/supply-chain-security-agent.md

Lines changed: 41 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2,6 +2,47 @@
22
name: SupplyChainSecurityAgent
33
description: Supply Chain Security Agent - Detects secrets exposure, dependency vulnerabilities, and repo governance gaps; produces supply-chain hardening reports and PR-ready baseline fixes
44
model: Claude Sonnet 4.5 (copilot)
5+
tools:
6+
- vscode/getProjectSetupInfo
7+
- vscode/installExtension
8+
- vscode/memory
9+
- vscode/newWorkspace
10+
- vscode/runCommand
11+
- vscode/vscodeAPI
12+
- vscode/extensions
13+
- vscode/askQuestions
14+
- execute/runNotebookCell
15+
- execute/testFailure
16+
- execute/getTerminalOutput
17+
- execute/awaitTerminal
18+
- execute/killTerminal
19+
- execute/createAndRunTask
20+
- execute/runInTerminal
21+
- execute/runTests
22+
- read/getNotebookSummary
23+
- read/problems
24+
- read/readFile
25+
- read/readNotebookCellOutput
26+
- read/terminalSelection
27+
- read/terminalLastCommand
28+
- agent/runSubagent
29+
- edit/createDirectory
30+
- edit/createFile
31+
- edit/createJupyterNotebook
32+
- edit/editFiles
33+
- edit/editNotebook
34+
- edit/rename
35+
- search/changes
36+
- search/codebase
37+
- search/fileSearch
38+
- search/listDirectory
39+
- search/searchResults
40+
- search/textSearch
41+
- search/usages
42+
- web/fetch
43+
- web/githubRepo
44+
- browser/openBrowserPage
45+
- todo
546
---
647

748
# Supply Chain Security Agent

specs/devsecops-new-feature-demo.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
- Use the gh-advsec-devsecops repository from the workspace
2-
- Create me a new unique branch name under feature/devsecops-demo-[randon-number]
2+
- Create me a new unique branch name under feature/devsecops-demo-[random-number]
33
- Create a new DevSecOps-[random-number].cshtml page and reference it into the Index page.
44
- Add content to it with latest news about GitHub Advanced Security.
55
- Implemented the ILogger for the backend code of the page.

0 commit comments

Comments
 (0)