Skill Wiki
Input Validation Allow List
@security/value-input-validation-allow-list
$ prime install @security/value-input-validation-allow-listProjection
Always in _index.xml · the agent never has to ask for this.
InputValidationAllowList [value] v0.1.0
Loaded when retrieval picks the atom as adjacent / supporting.
InputValidationAllowList [value] v0.1.0
Label
Default allow-list shape for opaque-string fields
Value
- Strategy: allow-list
- Max Length Default: 255 characters
- Free Text Max Length: 4096 characters
- Identifier Charset: [A-Za-z0-9_-]
- Email Validation: RFC 5321 length cap (254) + verification email round-trip
- Numeric Bounds: explicit min and max per field; reject NaN, Infinity, negative where unsigned
- File Upload:
- Max Bytes: 10485760
- Allow Extensions:
- png
- jpg
- Magic Byte Check: true
- Reject On:
- unknown extra fields (strict schemas)
- type mismatch
- out-of-range
- charset violation
Loaded when retrieval picks the atom as a focal / direct hit.
InputValidationAllowList [value] v0.1.0
Label
Default allow-list shape for opaque-string fields
Value
- Strategy: allow-list
- Max Length Default: 255 characters
- Free Text Max Length: 4096 characters
- Identifier Charset: [A-Za-z0-9_-]
- Email Validation: RFC 5321 length cap (254) + verification email round-trip
- Numeric Bounds: explicit min and max per field; reject NaN, Infinity, negative where unsigned
- File Upload:
- Max Bytes: 10485760
- Allow Extensions:
- png
- jpg
- Magic Byte Check: true
- Reject On:
- unknown extra fields (strict schemas)
- type mismatch
- out-of-range
- charset violation
Rationale
Allow-lists are finite and reviewable; deny-lists are infinite and lose. Defaults above are a safe baseline — tighten per-field, never loosen below.
Label
Default allow-list shape for opaque-string fields
Value
- Strategy: allow-list
- Max Length Default: 255 characters
- Free Text Max Length: 4096 characters
- Identifier Charset: [A-Za-z0-9_-]
- Email Validation: RFC 5321 length cap (254) + verification email round-trip
- Numeric Bounds: explicit min and max per field; reject NaN, Infinity, negative where unsigned
- File Upload:
- Max Bytes: 10485760
- Allow Extensions:
- png
- jpg
- Magic Byte Check: true
- Reject On:
- unknown extra fields (strict schemas)
- type mismatch
- out-of-range
- charset violation
Source
prime-system/examples/security-appsec/primes/compiled/@security/value-input-validation-allow-list/atom.yaml