원클릭으로
third-party-code
Review/generate third-party code attribution, licensing, and notice requirements
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
메뉴
Review/generate third-party code attribution, licensing, and notice requirements
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
SOC 직업 분류 기준
Audits GitHub Actions workflows for security vulnerabilities in AI agent integrations including Claude Code Action, Gemini CLI, OpenAI Codex, and GitHub AI Inference. Detects attack vectors where attacker-controlled input reaches AI agents running in CI/CD pipelines, including env var intermediary patterns, direct expression injection, dangerous sandbox configurations, and wildcard user allowlists. Use when reviewing workflow files that invoke AI coding agents, auditing CI/CD pipeline security for prompt injection risks, or evaluating agentic action configurations.
Designs and reviews REST APIs for FastAPI services using consistent resource naming, HTTP semantics, validation, security, and error handling patterns. Use for backend API tasks, endpoint design/refactors, or API review requests in FastAPI/Python projects.
Run or continue model benchmarks, collect measured results, and refresh README/docs benchmark sections from generated artifacts. Use when benchmark tables in model docs need to be created, updated, or corrected.
Reviews anomalib docstrings, documentation updates, and changelog expectations
Keep anomalib model READMEs, docs pages, image assets, and benchmark/result references in sync
Export, validate, and publish model sample-result images into docs/source/images and reference them from README/docs pages. Use when model sample images are missing, outdated, or suspected to be invalid.
| name | third-party-code |
| description | Review/generate third-party code attribution, licensing, and notice requirements |
Use this skill when reviewing or generating code that is copied from, adapted from, or substantially based on an external project.
Use this skill for licensing, attribution, notices, and repository bookkeeping around third-party-derived code.
third-party-programs.txt entry;LICENSE file is missing;third-party-programs.txt.LICENSE file in the relevant component or subtree.LICENSE file.LICENSE file.third-party-programs.txt if the tracked component, source, or licensing metadata changes.third-party-programs.txtsrc/**/LICENSEthird-party-programs.txt?LICENSE file with upstream attribution and license text?third-party-programs.txt.LICENSE file.