mirror of
https://github.com/github/awesome-copilot.git
synced 2026-02-20 02:15:12 +00:00
4a4b9343d5
Add real-time governance audit hook that scans prompts for threat signals: - 5 threat categories: data exfiltration, privilege escalation, system destruction, prompt injection, credential exposure - 4 governance levels: open, standard, strict, locked - Append-only JSON audit trail (logs/copilot/governance/audit.log) - Session summary with threat counts at session end - Privacy-aware: logs decisions and metadata, never prompt content Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
34 lines
707 B
JSON
34 lines
707 B
JSON
{
|
|
"version": 1,
|
|
"hooks": {
|
|
"sessionStart": [
|
|
{
|
|
"type": "command",
|
|
"bash": ".github/hooks/governance-audit/audit-session-start.sh",
|
|
"cwd": ".",
|
|
"timeoutSec": 5
|
|
}
|
|
],
|
|
"sessionEnd": [
|
|
{
|
|
"type": "command",
|
|
"bash": ".github/hooks/governance-audit/audit-session-end.sh",
|
|
"cwd": ".",
|
|
"timeoutSec": 5
|
|
}
|
|
],
|
|
"userPromptSubmitted": [
|
|
{
|
|
"type": "command",
|
|
"bash": ".github/hooks/governance-audit/audit-prompt.sh",
|
|
"cwd": ".",
|
|
"env": {
|
|
"GOVERNANCE_LEVEL": "standard",
|
|
"BLOCK_ON_THREAT": "false"
|
|
},
|
|
"timeoutSec": 10
|
|
}
|
|
]
|
|
}
|
|
}
|