Rule Reference

SEC464lintai-ai-securitystablemarkdownwarn

AI markdown: git http clone

AI-native markdown clones a Git repository from an insecure `http://` source

Provider: lintai-ai-security
Surface: markdown
Scope: per_file
Tier: stable
Severity: warn
Confidence: high
Detection: structural
Remediation: message_only

Activation Model

Preset Membership

This rule is part of the builtin activation graph through these preset memberships.

previewmembership

skillsmembership

Lifecycle

Stable Lifecycle Contract

State

stable_gated

Graduation rationale

Checks AI-native markdown for `git clone` examples that fetch repositories directly from an insecure `http://` source.

Deterministic signal basis

MarkdownSignals exact `git clone` token analysis with direct `http://` source detection inside parsed markdown regions.

Malicious corpus

skill-git-http-clone

Benign corpus

skill-git-https-clone-safe

structured evidence required remediation reviewed

Canonical note

Structural stable rule intended as a high-precision check with deterministic evidence.

Nearby Signals

Related Rules

SEC352AI markdown: unscoped Bash tool grantAI-native markdown frontmatter grants unscoped Bash tool accessmarkdownstable

SEC417AI markdown: unpinned pip git installAI-native markdown installs Python packages from an unpinned `git+https://` sourcemarkdownstable

SEC428AI markdown: unsafe Read path grantAI-native markdown frontmatter grants `Read(...)` over an unsafe repo-external pathmarkdownstable

SEC429AI markdown: unsafe Write path grantAI-native markdown frontmatter grants `Write(...)` over an unsafe repo-external pathmarkdownstable

SEC430AI markdown: unsafe Edit path grantAI-native markdown frontmatter grants `Edit(...)` over an unsafe repo-external pathmarkdownstable

SEC431AI markdown: unsafe Glob path grantAI-native markdown frontmatter grants `Glob(...)` over an unsafe repo-external pathmarkdownstable

SEC464 / MD-GIT-HTTP-CLONE

SEC464 flags AI-native markdown when a git clone example fetches a repository directly from http://....

Why It Matters

An http:// clone source removes transport integrity from repository bootstrap. In shared AI-native instructions, that turns an insecure source fetch into copy-pastable setup guidance.

What Triggers It

AI-native markdown surface
the same parsed markdown region contains git clone
the same region also contains a direct http:// repository source

The finding points to the http:// token itself.

What Does Not Trigger It

git clone https://...
unrelated http:// prose outside a matching git clone form

Example

Bad:

bash

git clone http://git.example.test/demo.git

Better:

bash

git clone https://github.com/acme/demo.git

Remediation

Replace the insecure http:// clone source with a normal TLS-verified https:// repository URL.

AI markdown: git http clone

Preset Membership

Stable Lifecycle Contract

Related Rules

SEC464 / MD-GIT-HTTP-CLONE ​

Why It Matters ​

What Triggers It ​

What Does Not Trigger It ​

Example ​