llm-security/knowledge/typosquat-allowlist.json
Kjell Tore Guttormsen f153f969a0 feat(ultraplan-local): v1.6.0 — /ultraresearch-local deep research command
Add /ultraresearch-local for structured research combining local codebase
analysis with external knowledge via parallel agent swarms. Produces research
briefs with triangulation, confidence ratings, and source quality assessment.

New command: /ultraresearch-local with modes --quick, --local, --external, --fg.
New agents: research-orchestrator (opus), docs-researcher, community-researcher,
security-researcher, contrarian-researcher, gemini-bridge (all sonnet).
New template: research-brief-template.md.

Integration: --research flag in /ultraplan-local accepts pre-built research
briefs (up to 3), enriches the interview and exploration phases. Planning
orchestrator cross-references brief findings during synthesis.

Design principle: Context Engineering — right information to right agent at
right time. Research briefs are structured artifacts in the pipeline:
ultraresearch → brief → ultraplan --research → plan → ultraexecute.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-04-08 08:58:35 +02:00

35 lines
599 B
JSON

{
"_comment": "Known legitimate packages that trigger false positive typosquatting alerts due to short names or Levenshtein proximity to top packages. Normalized: lowercase, hyphens.",
"npm": [
"ms",
"acorn",
"levn",
"lie",
"jsesc",
"jiti",
"bidi-js",
"@babel/core",
"preact",
"esbuild",
"tslib",
"nanoid",
"picocolors",
"lru-cache",
"deep-is",
"flat-cache",
"keyv",
"punycode",
"escalade",
"fdir"
],
"pypi": [
"six",
"pip",
"pytz",
"toml",
"idna",
"attrs",
"boto",
"jedi"
]
}