feat: mount user repo as read-only with writable shannon overlay (#273)
* feat: mount user repo as read-only with deliverables bind-mount overlay * feat: add playground and .playwright-cli overlay mounts * feat: add filesystem context to pipeline-testing prompts * fix: use explicit REPO_PATH in filesystem prompt for clarity * fix: update filesystem prompts with playground notes and absolute screenshot paths * feat: namespace writable overlays under .shannon/ to avoid polluting host repo * refactor: rename playground to scratchpad * fix: redirect playwright-cli output to writable .shannon/ overlay * fix: pre-create .shannon/ overlay mount points for Linux compatibility * fix: exclude nested node_modules and dist from Docker build context * fix: enforce LF line endings for shell scripts on Windows
This commit is contained in:
@@ -22,6 +22,11 @@ IMPORTANT: You are MODIFYING an existing file, not creating a new one.
|
||||
<target>
|
||||
URL: {{WEB_URL}}
|
||||
{{DESCRIPTION}}
|
||||
|
||||
Filesystem:
|
||||
- {{REPO_PATH}}/ (read only)
|
||||
- {{REPO_PATH}}/.shannon/deliverables/ (read-write)
|
||||
- {{REPO_PATH}}/.shannon/scratchpad/ (read-write) - screenshots, scripts, scratch work, etc.
|
||||
</target>
|
||||
|
||||
<context>
|
||||
@@ -31,13 +36,13 @@ Authentication Context:
|
||||
|
||||
<input_files>
|
||||
You will analyze the following deliverable files:
|
||||
- `deliverables/pre_recon_deliverable.md` - Initial reconnaissance and technology stack
|
||||
- `deliverables/recon_deliverable.md` - Attack surface mapping and endpoint discovery
|
||||
- `deliverables/comprehensive_security_assessment_report.md` - The already-concatenated report that you will modify
|
||||
- `.shannon/deliverables/pre_recon_deliverable.md` - Initial reconnaissance and technology stack
|
||||
- `.shannon/deliverables/recon_deliverable.md` - Attack surface mapping and endpoint discovery
|
||||
- `.shannon/deliverables/comprehensive_security_assessment_report.md` - The already-concatenated report that you will modify
|
||||
</input_files>
|
||||
|
||||
<deliverable_instructions>
|
||||
MODIFY the existing file `deliverables/comprehensive_security_assessment_report.md` by:
|
||||
MODIFY the existing file `.shannon/deliverables/comprehensive_security_assessment_report.md` by:
|
||||
|
||||
1. ADDING these sections at the top:
|
||||
|
||||
@@ -98,7 +103,7 @@ IMPORTANT: Do NOT reorder the existing exploitation evidence sections. Maintain
|
||||
- Executive Summary: Technical overview with actionable findings for engineering leaders
|
||||
- Network Reconnaissance: Focus on security-relevant discoveries from automated scans
|
||||
|
||||
3. Clean the exploitation evidence sections from `comprehensive_security_assessment_report.md` by applying these rules:
|
||||
3. Clean the exploitation evidence sections from `.shannon/deliverables/comprehensive_security_assessment_report.md` by applying these rules:
|
||||
- KEEP these specific section headings:
|
||||
NOTE: these sections will contain vulnerability lists with IDs matching pattern `### [TYPE]-VULN-[NUMBER]`
|
||||
* `# [Type] Exploitation Evidence`
|
||||
@@ -119,8 +124,8 @@ IMPORTANT: Do NOT reorder the existing exploitation evidence sections. Maintain
|
||||
4. Combine the content:
|
||||
- Place the Executive Summary and Network Reconnaissance sections at the top
|
||||
- Follow with the cleaned exploitation evidence sections
|
||||
- Save as the modified `comprehensive_security_assessment_report.md`
|
||||
- Save as the modified `.shannon/deliverables/comprehensive_security_assessment_report.md`
|
||||
|
||||
CRITICAL: You are modifying the existing concatenated report IN-PLACE, not creating a separate file.
|
||||
CRITICAL: You are modifying the existing concatenated report at `.shannon/deliverables/comprehensive_security_assessment_report.md` IN-PLACE, not creating a separate file.
|
||||
</instructions>
|
||||
|
||||
|
||||
Reference in New Issue
Block a user