From 563fdae8e2fa919347cb84db0e0a4d9df6fcc86f Mon Sep 17 00:00:00 2001
From: Jeremy <jeremy@fluxlabs.net>
Date: Sun, 5 Apr 2026 10:22:03 -0500
Subject: [PATCH] ci: add scanignore for doctor-heal.md false positive

The prompt injection scan flags "You are now responsible" in
doctor-heal.md as role injection (matches "you are now [a-z]").
This is a pre-existing legitimate prompt instruction, not injection.
---
 .prompt-injection-scanignore | 2 ++
 1 file changed, 2 insertions(+)
 create mode 100644 .prompt-injection-scanignore

diff --git a/.prompt-injection-scanignore b/.prompt-injection-scanignore
new file mode 100644
index 000000000..b6cc73a03
--- /dev/null
+++ b/.prompt-injection-scanignore
@@ -0,0 +1,2 @@
+# False positives in GSD prompt templates — these are legitimate LLM instructions, not injection
+src/resources/extensions/gsd/prompts/doctor-heal.md:You are now responsible