Skip to content

Latest commit

 

History

History
93 lines (63 loc) · 3 KB

File metadata and controls

93 lines (63 loc) · 3 KB

Contributing to OWASP Agent Security Regression Harness

Thank you for your interest in contributing.

This project is building a practical regression harness for executable agent security abuse cases. Contributions should make the harness more usable, more reproducible, or more useful to defenders and builders.

Good first contributions

Good first contributions include:

  • Adding a new scenario under scenarios/
  • Improving documentation under docs/
  • Adding examples for CI usage
  • Adding tests for the scenario parser
  • Proposing assertion types
  • Improving error messages
  • Building a toy vulnerable agent for demos

Project scope

Before opening a large pull request, read:

  • docs/scope.md
  • docs/non-goals.md
  • docs/scenario-spec.md
  • docs/schema-versioning.md

Large, unfocused additions will be rejected. This project is intentionally narrow.

Development workflow

  1. Fork the repository
  2. Create a feature branch
  3. Make a small, reviewable change
  4. Add or update tests where applicable
  5. Update CHANGELOG.md under [Unreleased] if the change is user-visible
  6. Open a pull request

Use clear branch names:

scenario/goal-hijack-basic
docs/scenario-spec
feature/http-agent-adapter
fix/result-json-output

Changelog

This project follows Keep a Changelog and Semantic Versioning.

If your pull request makes a user-visible change — a new feature, a behavior change, a bug fix, a deprecation, a removal, or a security fix — add an entry under ## [Unreleased] in CHANGELOG.md using the appropriate subsection (Added, Changed, Deprecated, Removed, Fixed, Security). Pure refactors, internal-only test changes, and CI-only changes do not need an entry.

Maintainers move [Unreleased] entries into a versioned section as part of the release process; see docs/releasing.md for the full procedure.

AI-assisted contributions

Policy

AI-assisted contributions are allowed, but they must be disclosed.

Contributors remain responsible for every line they submit. Do not submit AI-generated code, documentation, tests, or scenarios that you do not understand, cannot explain, or have not tested.

If AI tools such as Claude Code, ChatGPT, GitHub Copilot, Cursor, or similar tools were used to generate or substantially modify a contribution, disclose that use in the pull request description.

Disclosure

The disclosure should include:

  • The tool used
  • What parts of the contribution were AI-assisted
  • How the contributor reviewed the output
  • The tests or checks that were run

AI tools should not be listed as the sole responsible author. The human submitter remains accountable for the contribution.

What maintainers may do

Maintainers may request changes or close pull requests that:

  • Appear to be unreviewed generated output
  • Are too large to review safely
  • Cannot be explained by the human contributor

To keep review quality high, prefer small and focused pull requests.