Fidensa
Rules File Certified

copilot-nextjs-instructions

Provides GitHub Copilot with custom instructions for generating high-quality Next.js applications using Tailwind CSS, TypeScript, and modern React patterns with accessibility best practices.

92

/ 100 · Grade A

A = 90–100

I need to configure GitHub Copilot to generate consistent, high-quality Next.js code that follows modern React patterns, uses Tailwind CSS effectively, and maintains accessibility standards.

web developmentfrontendreactnextjstailwindtypescriptaccessibilityai tools
Publisher: githubVersion: latestCertified: Mar 28, 2026Expires: Mar 28, 2027Source ↗

copilot-nextjs-instructions earned Certified status with a trust score of 92/100 (Grade A). No adversarial findings — all attack patterns were handled gracefully. Security scan flagged 0 findings.

Trust Score Breakdown

Eight weighted signals composing the aggregate trust score

security scan
100% × 15w
15.0
supply chain
100% × 10w
10.0
adversarial
100% × 25w
25.0
provenance
80% × 20w
16.0
consumer confirm
100% × 10w
10.0
behavioral pass
100% × 10w
10.0
contract accuracy
67% × 6w
4.0
uptime
100% × 4w
4.0

Scheme v2.0 · Weights provisional · Consumer confirmations and uptime use pipeline-derived baselines.

Findings

Security scan results, adversarial testing, and pipeline review

Security Scan — Cisco Skill Scanner

cisco-skill-scannerFAIL
staticbehavioralllmmeta
critical: 0high: 0medium: 0low: 0

Adversarial Testing — 5 categories, 0 findings

prompt injection chainsprivilege escalationdata exfiltration side channelscapability squattingcontext poisoning

No adversarial findings — all attack patterns handled gracefully.

Methodology v1.0 · 5 categories · ~55 attack patterns

Behavioral Fingerprint

Runtime performance baseline for drift detection

Samples

8

Error rate

0.0%

Peak memory

— MB

Avg CPU

—%

Response time distribution

p50: 23559msp95: 29569msp99: 29569ms

Output size distribution

p50: 5.3 KBp95: 6.5 KBmean: 4.3 KB

Fingerprint v1.0 · Baseline: Mar 28, 2026 · Status: baseline

Interface

Skill triggers and instruction summary

Activation

This skill activates when generating any code that involves user interfaces or web content

This skill handles accessibility compliance and inclusive design guidance for all UI code generation

Instructions: 212Files: 174Format: markdown

Does

Enforce WCAG 2.2 Level AA compliance in all generated code

Use semantic HTML elements and proper ARIA attributes

Ensure keyboard operability and visible focus indicators

Implement proper contrast ratios (4.5:1 for text, 3:1 for UI elements)

Create accessible forms with proper labels and error handling

Support high contrast and forced colors mode

Ensure content reflows properly at 320px viewport width

Provide skip links and proper heading structure

Include accessible names for all interactive elements

Use inclusive, people-first language in user-facing text

Does not

Override or disrupt OS accessibility settings

Use color alone to convey information

Create keyboard traps or inaccessible focus management

Generate arbitrary colors without using design tokens

Claim the output is 'fully accessible'

Skip heading levels or use improper semantic structure

Disable forced colors mode without justification

Create fixed-width layouts that break at narrow viewports

Scope & Permissions

What this capability can and cannot access — derived from pipeline analysis

creates files

yes

deletes files

no

modifies files

no

accesses env variables

no

invokes external tools

no

makes network requests

no

Known Failure Modes

Documented edge cases and recovery behaviors

when when no UI component library is available

then the agent prefers native HTML elements over custom ARIA implementations

when when contrast requirements cannot be met with existing colors

then the agent defines a compliant color token palette

when when complex interactive widgets are needed

then the agent implements proper focus management with roving tabindex or aria-activedescendant

Badge & Integration

Embed certification status in your README, docs, or CI pipeline

Fidensa Certified badge for copilot-nextjs-instructions
badge SVG →attestation API →integration guide →

Certification Notes

Provenance observations from the pipeline

publisher

Publisher "github" is not verified — first certification from this publisher

provenance

Single contributor — no peer review evidence in commit history

provenance

Repository is 1 days old — recently created

provenance

Package description appears to be boilerplate or template text

Signed Artifact

Certification provenance and verification metadata

Content hashsha256:dcf043b2d9bd2f9c1c09b24881d69cebc3347b567cafcd85eb1366ccdfcde820
Key IDkms-9db4ed3b9f53
CertifiedMar 28, 2026
ExpiresMar 28, 2027
Pipeline version1.0
Statusvalid
download .cert.json →download annotated file →

Pipeline Artifacts

Raw data files from this certification run — downloadable for independent verification

contract.json

Full unsigned contract

stage1-ingest.json

Ingest stage output

stage2a-sbom.json

SBOM generation results

stage2a-vulns.json

Vulnerability scan results

stage2b-security.json

Security scan results

stage3a-functional.json

Functional test results

stage3b-adversarial.json

Adversarial test results

stage3c-fingerprint.json

Behavioral fingerprint

stage4-certify.json

Certification decision + trust score

stage3a-measurements.json

Raw functional test measurements

stage3b-measurements.json

Raw adversarial test measurements

run-log.json

Pipeline execution log

Not all files may be present for every certification.