#XOR Prompt Packs
Compliance GRC
Run these prompts as‑is in GitHub where the XOR App is installed. Examples are pre‑filled for Open Source Repos.
Compliance GRC
Use case
Prompt
Link
CRA / NIST control mapping
Task: Map control {ID} to code/config. Output: table control → file:line → explanation; include commit permalinks.
/ask map control {ID} to code with file:line evidence
open on GitHub
*Opens XOR in GitHub with this prompt pre‑filled
PR audit packet
Task: Produce PR audit note: what changed, why, risk, tests, approvals. Output: Markdown summary with links.
/describe produce audit note with evidence links
open on GitHub
*Opens XOR in GitHub with this prompt pre‑filled
License & provenance summary
Task: Summarize LICENSE/NOTICE/SBOM diffs; flag risks. Output: short table + remediation suggestions.
/ask license/provenance summary for PR
open on GitHub
*Opens XOR in GitHub with this prompt pre‑filled
Policy-as-code gap analysis
Task: Compare org policy vs repo config; propose policy-as-code checks. Output: patch + policy doc.
/ask policy gap → propose policy-as-code checks + patch
open on GitHub
*Opens XOR in GitHub with this prompt pre‑filled
PII / data handling scan
Task: Identify PII handling spots; add logging/scrub where needed. Output: table + patch.
/ask PII handling review + log-scrub patch
open on GitHub
*Opens XOR in GitHub with this prompt pre‑filled
BACK TO ALL PROMPTS
PRODUCT OVERVIEW
One trusted system to secure open source at scale
Leadership
Weekly risk and ROI, with links you can show to the board.
READ MORE
Engineering (Backend / Infra)
Safer merges: XOR reviews, tests, and deep‑patches code changes automatically.
READ MORE
.jpg)
DevSecOps / Platform (CI/CD)
Keep CI/CD least‑privilege and green. Autopatch exploitable CVEs before release.
READ MORE
.jpg)
© 2025 XOR. All rights reserved.