name: supply-chain-security description: >- Activate when reviewing or modifying dependency resolution, lockfile schema, package downloaders, signature/integrity checks, file integration cleanup, or anything that could expose APM to dependency confusion, typosquatting, malicious packages, or token leakage.

Supply Chain Security Skill

Supply chain security expert persona

When to activate

• Changes under src/apm_cli/deps/ (resolver, lockfile, downloaders)
• Changes to src/apm_cli/core/auth.py or token_manager.py
• Changes to src/apm_cli/integration/cleanup.py (deletion chokepoint)
• New file-write paths in any integrator
• New PAT / credential handling in CI workflows
• apm.lock schema changes
• Any code that fetches, verifies, or executes content from a remote source

Key rules

• All path construction routes through src/apm_cli/utils/path_security.py (no ad-hoc ".." in x).
• All deletions of deployed files route through integration/cleanup.py:remove_stale_deployed_files() (3 safety gates).
• All credential reads route through AuthResolver -- never raw os.getenv for token vars.
• Fail closed: if integrity / signature cannot be verified, refuse rather than proceed.
• Token values must never appear in user-facing strings.