40 lines
1.7 KiB
YAML
40 lines
1.7 KiB
YAML
# Default allowlist for legal-builder-hub
|
|
# Generated by /legal-builder-hub:cold-start-interview — edit this file to change what's trusted.
|
|
# See skill-installer/references/allowlist.md for the full schema.
|
|
#
|
|
# SECURITY NOTE: This default is RESTRICTIVE — unknown sources are refused.
|
|
# The cold-start interview offers to change this to permissive for solo
|
|
# practitioners who don't have an IT-curated publisher list. If you never
|
|
# ran setup and you're seeing this, the installer will refuse any source
|
|
# not explicitly listed below. That's intentional: fail-closed is the right
|
|
# default for a tool that installs third-party code into a privileged
|
|
# legal workspace. Run /legal-builder-hub:cold-start-interview to configure, or edit
|
|
# this file directly if you understand the tradeoff.
|
|
|
|
mode: restrictive # restrictive (fail-closed, default) | permissive (flag-and-ask)
|
|
|
|
registries:
|
|
- https://github.com/legalopsconsulting/lpm-skills
|
|
# Lawvable — launch partner, two curated registries under the lawvable GitHub org.
|
|
- https://github.com/lawvable/awesome-legal-skills
|
|
- https://github.com/lawvable/agent-skills
|
|
|
|
publishers:
|
|
- legalopsconsulting
|
|
- lawvable
|
|
|
|
connectors: []
|
|
# Empty in restrictive mode means community skills declaring ANY MCP
|
|
# connector will be refused. Add approved MCP server URLs here, or
|
|
# switch to permissive mode to flag-and-ask instead of refuse.
|
|
|
|
licenses:
|
|
# SPDX license identifiers community skills may carry. Personal defaults.
|
|
# Set by cold-start based on deployment context (personal / firm-internal /
|
|
# product-embedding). See skill-installer/references/allowlist.md.
|
|
- MIT
|
|
- Apache-2.0
|
|
- BSD-2-Clause
|
|
- BSD-3-Clause
|
|
- ISC
|
|
- CC0-1.0
|