agentic-accelerator-framework/apm.yml at main · devopsabcs-engineering/agentic-accelerator-framework · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
# APM — Agent Package Manager manifest
# Declares all agentic dependencies for the Agentic Accelerator Framework.
# See: https://github.com/microsoft/apm

name: agentic-accelerator-framework
version: 1.0.0
description: "Agentic Accelerator Framework — GHAS + GHCP + MDC"
author: devopsabcs-engineering

dependencies:

  # ── Security Agents ──────────────────────────────────────────────────
  security-agent:
    path: agents/security-agent.agent.md
    description: "Comprehensive security scanning agent — OWASP Top 10, CWE mapping, SARIF output"

  security-reviewer-agent:
    path: agents/security-reviewer-agent.agent.md
    description: "PR-triggered diff-scoped security reviewer with approve/request-changes output"

  security-plan-creator:
    path: agents/security-plan-creator.agent.md
    description: "Threat model and security test plan generator aligned to STRIDE and OWASP"

  pipeline-security-agent:
    path: agents/pipeline-security-agent.agent.md
    description: "CI/CD pipeline configuration scanner for GitHub Actions and Azure Pipelines"

  iac-security-agent:
    path: agents/iac-security-agent.agent.md
    description: "Infrastructure-as-Code scanner for Terraform, Bicep, and ARM templates"

  supply-chain-security-agent:
    path: agents/supply-chain-security-agent.agent.md
    description: "Dependency and supply chain security scanner — SCA, SBOM, license compliance"

  # ── Accessibility Agents ─────────────────────────────────────────────
  a11y-detector:
    path: agents/a11y-detector.agent.md
    description: "Accessibility violation detector — axe-core, HTML CodeSniffer, Pa11y engines"

  a11y-resolver:
    path: agents/a11y-resolver.agent.md
    description: "Automated accessibility remediation agent generating fix patches"

  # ── Code Quality Agents ──────────────────────────────────────────────
  code-quality-detector:
    path: agents/code-quality-detector.agent.md
    description: "Code coverage and quality gate agent — coverage-to-SARIF mapping"

  test-generator:
    path: agents/test-generator.agent.md
    description: "Test case generator targeting uncovered code paths"

  # ── Scaffolding Agents ───────────────────────────────────────────────
  domain-scaffolder:
    path: agents/domain-scaffolder.agent.md
    description: "Domain repository scaffolder — generates demo-app and workshop repos with full parity"

  # ── FinOps / Cost Analysis Agents ────────────────────────────────────
  cost-analysis-agent:
    path: agents/cost-analysis-agent.agent.md
    description: "Azure Cost Management data retrieval and spending analysis"

  finops-governance-agent:
    path: agents/finops-governance-agent.agent.md
    description: "FinOps governance policy enforcement — tagging, budgets, alerts"

  cost-anomaly-detector:
    path: agents/cost-anomaly-detector.agent.md
    description: "Anomaly detection for unexpected Azure spending spikes"

  cost-optimizer-agent:
    path: agents/cost-optimizer-agent.agent.md
    description: "Cost optimization recommendations from Azure Advisor"

  deployment-cost-gate-agent:
    path: agents/deployment-cost-gate-agent.agent.md
    description: "IaC deployment cost estimation and budget gating"

  # ── APM Security Agents ──────────────────────────────────────────────
  apm-security-detector:
    path: agents/apm-security-detector.agent.md
    description: "Agent configuration file security scanner — APM audit, semantic patterns, MCP validation, OWASP LLM Top 10"

  apm-security-resolver:
    path: agents/apm-security-resolver.agent.md
    description: "Agent configuration security remediation — Unicode stripping, CODEOWNERS, MCP allowlists, supply chain hardening"

  # ── Instructions ─────────────────────────────────────────────────────
  wcag22-rules:
    path: instructions/wcag22-rules.instructions.md
    description: "WCAG 2.2 Level AA rule definitions for accessibility scanning"

  a11y-remediation:
    path: instructions/a11y-remediation.instructions.md
    description: "Accessibility remediation patterns and fix strategies"

  code-quality:
    path: instructions/code-quality.instructions.md
    description: "Code quality rules — coverage thresholds, complexity metrics, linting"

  domain-scaffolding:
    path: instructions/domain-scaffolding.instructions.md
    description: "Conventions for scaffolding new domain scanner and workshop repositories"

  apm-security:
    path: instructions/apm-security.instructions.md
    description: "APM Security rules — agent config scanning thresholds, OWASP LLM mapping, 4-engine architecture"

  # ── Prompts ──────────────────────────────────────────────────────────
  a11y-scan:
    path: prompts/a11y-scan.prompt.md
    description: "Prompt template for accessibility scanning workflow"

  a11y-fix:
    path: prompts/a11y-fix.prompt.md
    description: "Prompt template for accessibility remediation workflow"

  code-quality-scan:
    path: prompts/code-quality-scan.prompt.md
    description: "Prompt template for code quality scanning workflow"

  code-quality-fix:
    path: prompts/code-quality-fix.prompt.md
    description: "Prompt template for code quality fix workflow"

  scaffold-domain:
    path: prompts/scaffold-domain.prompt.md
    description: "Prompt template for domain repository scaffolding"

  apm-security-scan:
    path: prompts/apm-security-scan.prompt.md
    description: "Prompt template for agent configuration security scanning workflow"

  apm-security-fix:
    path: prompts/apm-security-fix.prompt.md
    description: "Prompt template for agent configuration security remediation workflow"

  # ── Skills ───────────────────────────────────────────────────────────
  a11y-scan-skill:
    path: skills/a11y-scan/SKILL.md
    description: "On-demand accessibility scanning skill"

  security-scan-skill:
    path: skills/security-scan/SKILL.md
    description: "On-demand security scanning skill"

  code-quality-scan-skill:
    path: skills/code-quality-scan/SKILL.md
    description: "On-demand code quality scanning skill"

  domain-scaffolding-skill:
    path: skills/domain-scaffolding/SKILL.md
    description: "Domain scaffolding templates and patterns skill"

  apm-security-scan-skill:
    path: skills/apm-security-scan/SKILL.md
    description: "On-demand agent configuration security scanning skill"

security:
  audit:
    on-install: true
    on-compile: true
    severity-threshold: critical