Kjell Tore Guttormsen 765bc74f52 feat(llm-security): v7.0.0 commit 7 — rule 18 (markdown image URL suppression) ... E2E verification against content-heavy repo (`content-claude-code`) revealed 413 entropy findings (8 HIGH / 405 MEDIUM) from markdown image CDN URLs in JSON content indexes — e.g., ``. These are legitimate content-repo artifacts, not credentials. The 40-char hash segment in the CDN URL trips Shannon entropy (H=5.29 over 300 chars), and rule 13 (inline <svg>) doesn't match since there's no literal `<svg>` tag — the `.svg` is just a URL path suffix. Added rule 18 `MARKDOWN_IMAGE = /!\[[^\]]*\]\(\s*https?:\/\//` — matches `` / ``. Line-level (not string-level) so URL is not over-specific. E2E impact on `content-claude-code`: - Before: BLOCK / 65 / 8H 437M 0L - After: WARNING / 56 / 3H 427M 0L Hyperframes unchanged: BLOCK / 80 / 1C 4H 92M — real CRITICAL SQL-injection and HIGH findings still detected. Tests: 2 new (positive + negative fixture) bringing entropy-context to 26, total suite 1485 → 1487. Docs updated to "rules 11-18" and "8 new line-suppression rules". Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>		2026-04-19 22:37:39 +02:00
..
ai-psychosis	docs: add AI-generated code disclosure to marketplace and all plugins	2026-04-19 19:27:05 +02:00
config-audit	test(config-audit): add marketplace-small/medium/large scanner fixtures	2026-04-19 22:36:33 +02:00
linkedin-thought-leadership	docs: add AI-generated code disclosure to marketplace and all plugins	2026-04-19 19:27:05 +02:00
llm-security	feat(llm-security): v7.0.0 commit 7 — rule 18 (markdown image URL suppression)	2026-04-19 22:37:39 +02:00
ms-ai-architect	docs: add AI-generated code disclosure to marketplace and all plugins	2026-04-19 19:27:05 +02:00
okr	docs: add AI-generated code disclosure to marketplace and all plugins	2026-04-19 19:27:05 +02:00
ultraplan-local	feat(ultraplan-local)!: v2.4.0 — version bump	2026-04-19 21:46:17 +02:00