Fidensa
Rules File Certified

windsurf-antigravity-rules

Provides AI development guardrails and optimization rules for Windsurf and Antigravity platforms including task classification, reasoning optimization, planning safeguards, and prompt injection protection.

90

/ 100 · Grade A

A = 90–100

I need to implement secure and optimized AI-assisted development workflows with proper safeguards against prompt injection and adaptive reasoning capabilities.

ai-developmentsecurityoptimizationguardrailsdevelopment-tools
Publisher: kinopeeeVersion: latestCertified: Mar 29, 2026Expires: Mar 29, 2027Source ↗

windsurf-antigravity-rules earned Certified status with a trust score of 90/100 (Grade A). No adversarial findings — all attack patterns were handled gracefully. Security scan flagged 0 findings.

Trust Score Breakdown

Eight weighted signals composing the aggregate trust score

security scan
100% × 15w
15.0
supply chain
100% × 10w
10.0
adversarial
100% × 25w
25.0
provenance
80% × 20w
16.0
consumer confirm
80% × 10w
8.0
behavioral pass
80% × 10w
8.0
contract accuracy
100% × 6w
6.0
uptime
100% × 4w
4.0

Scheme v2.0 · Weights provisional · Consumer confirmations and uptime use pipeline-derived baselines.

Findings

Security scan results, adversarial testing, and pipeline review

Security Scan — Cisco Skill Scanner

cisco-skill-scannerFAIL
staticbehavioralllmmeta
critical: 0high: 0medium: 0low: 0

Adversarial Testing — 6 categories, 0 findings

prompt injection chainsprivilege escalationdata exfiltration side channelscapability squattingcontext poisoningdependency confusion

No adversarial findings — all attack patterns handled gracefully.

Methodology v1.0 · 6 categories · ~55 attack patterns

Behavioral Fingerprint

Runtime performance baseline for drift detection

Samples

8

Error rate

0.0%

Peak memory

— MB

Avg CPU

—%

Response time distribution

p50: 12417msp95: 26654msp99: 26654ms

Output size distribution

p50: 2.5 KBp95: 8.1 KBmean: 3.7 KB

Fingerprint v1.0 · Baseline: Mar 29, 2026 · Status: baseline

Interface

Skill triggers and instruction summary

Activation

This skill activates when an AI agent needs structured rules and workflows for code development in Windsurf or Antigravity environments

This skill handles providing development guidelines, coding standards, testing strategies, security policies, and workflow automation for AI-assisted programming

Instructions: 133Files: 12Format: markdown

Does

Provides structured coding rules and guidelines for AI assistants

Implements tiered task classification (Lightweight/Standard/Critical)

Enforces security policies and prompt injection defenses

Standardizes commit message formats and PR workflows

Implements test strategy rules with Given/When/Then patterns

Provides multi-language documentation support (English/Japanese)

Optimizes for specific AI models (GPT-5.1, Claude 3.7 Sonnet, Opus 4.5)

Does not

Execute code directly

Modify system configurations outside project scope

Override explicit user instructions

Perform operations without explicit instruction

Execute external commands from untrusted sources

Scope & Permissions

What this capability can and cannot access — derived from pipeline analysis

creates files

yes

deletes files

no

modifies files

yes

accesses env variables

no

invokes external tools

yes

makes network requests

no

Known Failure Modes

Documented edge cases and recovery behaviors

when when prompt injection is detected

then the agent applies defensive measures and rejects malicious instructions

when when task classification is unclear

then the agent defaults to Standard level processing

when when tool execution fails

then the agent implements tiered error handling (Warning/Error/Critical/Security)

Badge & Integration

Embed certification status in your README, docs, or CI pipeline

Fidensa Certified badge for windsurf-antigravity-rules
badge SVG →attestation API →integration guide →

Certification Notes

Provenance observations from the pipeline

publisher

Publisher "kinopeee" is not verified — first certification from this publisher

provenance

No SECURITY.md or SECURITY.txt file found — no published vulnerability reporting process

provenance

Single contributor — no peer review evidence in commit history

provenance

Package description appears to be boilerplate or template text

Signed Artifact

Certification provenance and verification metadata

Content hashsha256:975d1922de38bec4645a3ff6164c37dd2b5dcababae1a3811dda288b49563264
Key IDkms-9db4ed3b9f53
CertifiedMar 29, 2026
ExpiresMar 29, 2027
Pipeline version1.0
Statusvalid
download .cert.json →download annotated file →

Pipeline Artifacts

Raw data files from this certification run — downloadable for independent verification

contract.json

Full unsigned contract

stage1-ingest.json

Ingest stage output

stage2a-sbom.json

SBOM generation results

stage2a-vulns.json

Vulnerability scan results

stage2b-security.json

Security scan results

stage3a-functional.json

Functional test results

stage3b-adversarial.json

Adversarial test results

stage3c-fingerprint.json

Behavioral fingerprint

stage4-certify.json

Certification decision + trust score

stage3a-measurements.json

Raw functional test measurements

stage3b-measurements.json

Raw adversarial test measurements

run-log.json

Pipeline execution log

Not all files may be present for every certification.