UNPKG

aiwg

Version:

Deployment tool and support utility for AI context. Copies agents, skills, commands, rules, and behaviors into the paths each AI platform reads (Claude Code, Codex, Copilot, Cursor, Warp, OpenClaw, and 6 more) so one source of truth works across 10 platfo

aiwg.io

jmagly/aiwg

54 lines (53 loc) 1.38 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
apiVersion: ops.aiwg.io/v1 kind: OpsCapability metadata: name: luks-verify labels: category: security spec: description: Confirm that TPM2 LUKS enrollment slots on a target host match the expected state verifies slot assignment, PCR policy binding, and recovery key presence version: "1.0.0" inputs: - name: target_host type: string required: true - name: device type: string required: false default: /dev/sda3 - name: expected_slots type: list required: true - name: ssh_user type: string required: false default: ops - name: require_recovery_key type: boolean required: false default: true outputs: - name: status type: string - name: device type: string - name: luks_version type: integer - name: active_slots type: list - name: tpm2_bound type: boolean - name: recovery_key_present type: boolean - name: slots_match type: boolean - name: drift_details type: list target_requirements: os: [linux] capabilities: [ssh, cryptsetup, systemd-cryptenroll] agent: disk-encryption-auditor idempotent: true verification: command: "ssh {{ ssh_user }}@{{ target_host }} 'sudo cryptsetup luksDump {{ device }} | grep -E \"^\\s+(Keyslot|Token)\"'" expect: "Keyslot"