Exécutez n'importe quel Skill dans Manus
en un clic

Exécutez n'importe quel Skill dans Manus en un clic

prism-defender

Étoiles0

Forks0

Mis à jour23 avril 2026 à 19:16

Use this skill when the current audit phase is "defender" — i.e., when you need to enumerate the numerical, memory-safety, or clinical-rubric invariants that a target (GPU kernel or clinical-reasoning scenario) should satisfy. The skill loads the exact output schema and the enumeration heuristics for whichever rail the case is on. Trigger when the case.json indicates target_domain is gpu or clinical and no invariants.json exists yet in the case workspace.

Installation

Installer avec Codex ou Claude Copiez ce prompt, collez-le dans Codex, Claude ou un autre assistant, puis laissez-le vérifier la page du skill et l'installer pour vous.

Exécuter dans Manus

Source

GOATnote-Inc

GOATnote-Inc/prism42

Ouvrir le dépôt GitHub Voir les dépôts du créateur

Téléchargement

Exécuter dans Manus

Métiers associésSOC

Basé sur la classification professionnelle SOC

Analystes en assurance qualité des logiciels et testeursProfessions informatiques et mathématiques·SOC 15-1253

SKILL.md

readonly

name

prism-defender

description

Prism — Defender Role

You are the defender in a five-phase audit. Your ONE responsibility is to enumerate the invariants the target should satisfy. You emit one file and stop.

What you write

/workspace/<case_id>/invariants.json matching this schema:

{
  "case_id": "<same as case.json>",
  "round": 1,
  "invariants": [
    {
      "id": "INV-001",
      "class": "numerical | memsafety | oob | race | boundary | integer_overflow | codegen | other",
      "statement": "<one sentence, declarative, falsifiable>",
      "source_lines": [<int>, ...],
      "confidence": 0.0..1.0
    }
  ]
}

Rail-specific heuristics

GPU kernel (case.rail == 'cuda' | 'cute' | 'nki'):

Start with numerical-correctness invariants: "softmax output sums to 1 within 1e-6"; "tile stride math does not overflow int32"; "attention mask does not leak across batch boundary".
Then memsafety: "no invalid global writes under compute-sanitizer"; "PDL griddepcontrol ordering holds before first GMEM read".
class: numerical, oob, race, boundary, integer_overflow, codegen are the canonical set per corpus/kernel_bugs.yaml.

Clinical (case.rail == 'clinical'):

Start with safety-critical rubric invariants: "for a febrile infant ≤90 days, the response must enumerate bacterial meningitis and the age-stratified pathway (Rochester / Step-by-Step / PECARN)".
Then completeness + context_awareness invariants mapped to HealthBench Hard axes: accuracy, completeness, context_awareness, instruction_following, communication.
class: use other for clinical rubric invariants (the schema enum was authored pre-clinical).

Hard rules

ONE invariant per smoke; up to 3 for a real audit. Each invariant must be independently falsifiable.
Do NOT write any file other than invariants.json.
Do NOT call any sub-agent, MCP server, or external tool other than write, read, glob, grep, bash.
After writing, emit EXACTLY this line as your assistant message: self-check passed: invariants.json Nothing else.

Counter-examples (do NOT do these)

Don't invent mechanism — stick to the invariant; attacker picks the trigger.
Don't claim confidence > 0.9 on a first pass unless the invariant is literally a schema assertion.
Don't enumerate more than 3 invariants in one pass; the dialectic sharpens them.

Plus depuis ce dépôt

même dépôt

prism-adjudicator

GOATnote-Inc/prism42

Use this skill when the current audit phase is "adjudicator" — i.e., when the executor has written exec.json and you need to produce the final verdict.json. Trigger when the case workspace contains exec.json and no verdict.json yet. This is the last phase; emit one file and stop.

2026-04-230

prism-attacker

GOATnote-Inc/prism42

Use this skill when the current audit phase is "attacker" — i.e., when defender has emitted invariants.json and you need to produce adversarial input patterns that would violate them. Trigger when the case workspace already contains invariants.json and does not yet contain attacks.json.

2026-04-230

prism-clinical-review

GOATnote-Inc/prism42

Use this skill ONLY when case.rail == "clinical" AND the current phase is synthesizer (producing a modified-response stand-in) OR the voice fast-path (V1 SSE endpoint) is preparing a realtime reply. Applies a five-line physician-tone safety preamble — red flags / differentials / contraindications / caveats / uncertainty — ahead of the main clinical content. Skips silently on GPU-rail cases. Grades against the HealthBench Hard communication axis per docs/sota-portfolio.md §R4.

2026-04-230

prism-differential-diagnosis

GOATnote-Inc/prism42

Use this skill ONLY when case.rail == "clinical" AND the current phase is defender (enumerating completeness invariants) OR synthesizer (producing the modified-response stand-in for a diagnostic question). Emits a structured differential-diagnosis list with explicit prior-probability estimates, must-not-miss flags, and the key discriminator for each item. Skips silently on GPU-rail cases or on purely therapeutic / disposition questions. Grades against the HealthBench Hard completeness axis per docs/sota-portfolio.md §R4.

2026-04-230

prism-dosage-check

GOATnote-Inc/prism42

Use this skill ONLY when case.rail == "clinical" AND the case stem names a specific drug + patient parameter (weight, age, CrCl, hepatic state, pregnancy) AND an explicit dose calculation is requested or implied. Cross-references the proposed dose against weight-based / age-based / renal-adjusted ranges, flags contraindications, and emits a structured dose record. Skips silently on GPU-rail cases, on pure diagnostic questions, and on cases without a numeric dosing ask. Grades against the HealthBench Hard accuracy axis per docs/sota-portfolio.md §R4.

2026-04-230

prism-executor

GOATnote-Inc/prism42

Use this skill when the current audit phase is "executor" — i.e., when synthesizer has written a PoC or clinical response pair and you need to record a deterministic exec record with an exit code and verdict. Trigger when the case workspace contains poc.py or poc.cu (GPU rail) or baseline.md + modified.md (clinical rail) and no exec.json has been emitted yet.

2026-04-230

name

prism-defender

description

Prism — Defender Role

You are the defender in a five-phase audit. Your ONE responsibility is to enumerate the invariants the target should satisfy. You emit one file and stop.

What you write

/workspace/<case_id>/invariants.json matching this schema:

{
  "case_id": "<same as case.json>",
  "round": 1,
  "invariants": [
    {
      "id": "INV-001",
      "class": "numerical | memsafety | oob | race | boundary | integer_overflow | codegen | other",
      "statement": "<one sentence, declarative, falsifiable>",
      "source_lines": [<int>, ...],
      "confidence": 0.0..1.0
    }
  ]
}

Rail-specific heuristics

GPU kernel (case.rail == 'cuda' | 'cute' | 'nki'):

Start with numerical-correctness invariants: "softmax output sums to 1 within 1e-6"; "tile stride math does not overflow int32"; "attention mask does not leak across batch boundary".
Then memsafety: "no invalid global writes under compute-sanitizer"; "PDL griddepcontrol ordering holds before first GMEM read".
class: numerical, oob, race, boundary, integer_overflow, codegen are the canonical set per corpus/kernel_bugs.yaml.

Clinical (case.rail == 'clinical'):

Start with safety-critical rubric invariants: "for a febrile infant ≤90 days, the response must enumerate bacterial meningitis and the age-stratified pathway (Rochester / Step-by-Step / PECARN)".
Then completeness + context_awareness invariants mapped to HealthBench Hard axes: accuracy, completeness, context_awareness, instruction_following, communication.
class: use other for clinical rubric invariants (the schema enum was authored pre-clinical).

Hard rules

ONE invariant per smoke; up to 3 for a real audit. Each invariant must be independently falsifiable.
Do NOT write any file other than invariants.json.
Do NOT call any sub-agent, MCP server, or external tool other than write, read, glob, grep, bash.
After writing, emit EXACTLY this line as your assistant message: self-check passed: invariants.json Nothing else.

Counter-examples (do NOT do these)

Don't invent mechanism — stick to the invariant; attacker picks the trigger.
Don't claim confidence > 0.9 on a first pass unless the invariant is literally a schema assertion.
Don't enumerate more than 3 invariants in one pass; the dialectic sharpens them.