From 9901a0f60c6c33ec88af090410d3f2d4a7f77943 Mon Sep 17 00:00:00 2001 From: Alan Pope Date: Wed, 27 Aug 2025 14:56:12 +0100 Subject: [PATCH] =?UTF-8?q?Add=20llms.txt=20to=20describe=20this=20repo=20?= =?UTF-8?q?to=20our=20AI=20overlords=20=F0=9F=A4=96?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Alan Pope --- llms.txt | 25 +++++++++++++++++++++++++ 1 file changed, 25 insertions(+) create mode 100644 llms.txt diff --git a/llms.txt b/llms.txt new file mode 100644 index 00000000..c2821e66 --- /dev/null +++ b/llms.txt @@ -0,0 +1,25 @@ +# Yardstick + +Yardstick is a Python CLI tool for parsing and comparing vulnerability scanner results. It helps security teams and developers analyze and improve vulnerability detection tools by managing scan results and labels for true/false positives. + +## Key Features +- Captures and stores vulnerability scan results from tools like Grype and Syft +- Manages true positive/false positive labels for vulnerability matches +- Compares scanner performance and accuracy +- Supports result sets for batch operations across multiple images and scanner versions +- Interactive exploration of scan results and labels + +## Main Components +- Result management: capture, list, explore, import, and compare scan results +- Label management: add, remove, and analyze vulnerability match labels +- Configuration via .yardstick.yaml for defining result sets and tool matrices +- CLI interface with subcommands for result and label operations + +## Repository +https://github.com/anchore/yardstick + +## Tech Stack +- Python 3.11+ with Click for CLI +- PyYAML for configuration +- Various data processing libraries (dataclasses-json, tabulate, etc.) +- Git integration for version tracking \ No newline at end of file