#XOR Prompt Packs
DevSecOps / Platform (CI/CD)
Run these prompts as‑is in GitHub where the XOR App is installed. Examples are pre‑filled for Open Source Repos.
DevSecOps / Platform (CI/CD)
Use case
Prompt
Link
Green‑build autopatch
Task: In safe fork at {branch}@{sha}, apply minimal patch for {CVE/bug}; run CI; if green, open PR. Output: PR link, test report, diff.
/plan fix vulnerability on apache/airflow@main /ask propose patch + run tests
open on GitHub
*Opens XOR in GitHub with this prompt pre‑filled
Workflow permissions (least-privilege)
Task: Propose exact `permissions:` blocks; remove defaults; document why. Output: diff + rationale per job.
/ask least-priv perms for each job → apply
open on GitHub
*Opens XOR in GitHub with this prompt pre‑filled
Cache & timeout optimization
Task: Suggest cache keys, matrix pruning, and timeouts. Output: workflow diff + expected minutes saved.
/ask CI speedup plan + patch .github/workflows/*.yml
open on GitHub
*Opens XOR in GitHub with this prompt pre‑filled
SBOM gate at merge
Task: Add SBOM build + scan step; fail on criticals; whitelist approved exceptions. Output: workflow patch + policy doc.
/plan add sbom gate + policy doc
open on GitHub
*Opens XOR in GitHub with this prompt pre‑filled
Multi‑repo rollout plan
Task: Build staged rollout plan across {org}; include dry-run, metrics, rollback. Output: phases, owners, success criteria.
/ask rollout plan across org {org} with dry-run + rollback
open on GitHub
*Opens XOR in GitHub with this prompt pre‑filled
BACK TO ALL PROMPTS
PRODUCT OVERVIEW
One trusted system to secure open source at scale
.jpg)
.jpg)
© 2025 XOR. All rights reserved.