secure-baseline

Foundationv6.1.0

Cross-cutting baseline for every Zava service: secure-coding instructions, docs style guide, and the security reviewer persona. Pinned by every service repo regardless of SDLC stage.

What’s inside

• security — persona
plugins/secure-baseline/.apm/agents/security.agent.md
• docs-style-guide — instructions
plugins/secure-baseline/.apm/instructions/docs-style-guide.instructions.md
• secure-coding-base — instructions
plugins/secure-baseline/.apm/instructions/secure-coding-base.instructions.md

Install

apm.yml pin (recommended)

Add to your service repo's apm.yml. Pinned to v6.1.0 so consumers are reproducible.

dependencies:
  apm:
    - DevExpGbb/zava-agent-config/plugins/secure-baseline#v6.1.0

Then in CI / locally:

apm install
apm audit --ci

One-shot CLI

Install directly from the org/repo path. Useful for one-off experiments.

apm install DevExpGbb/zava-agent-config/plugins/secure-baseline#v6.1.0

Marketplace

Register the marketplace once, then install any package by short name. See the APM marketplace guide.

apm marketplace add DevExpGbb/zava-agent-config
apm install secure-baseline@zava-agent-config

Pin if you…

You ship anything. Mandatory explicit pin for every Zava service — never satisfied transitively.

Pairs with

code-kit

View code-kit →

review-kit

View review-kit →

release-kit

View release-kit →

View source on GitHub Browse plugins/secure-baseline/ on the repo.