From 30550dd189743aacb9c564b6ba861ad04a27d9e1 Mon Sep 17 00:00:00 2001 From: 0xallam Date: Tue, 17 Feb 2026 14:59:13 -0800 Subject: [PATCH] fix: Add rule against duplicating changes across code_locations --- strix/tools/reporting/reporting_actions_schema.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/strix/tools/reporting/reporting_actions_schema.xml b/strix/tools/reporting/reporting_actions_schema.xml index b0b9afb..0f4780a 100644 --- a/strix/tools/reporting/reporting_actions_schema.xml +++ b/strix/tools/reporting/reporting_actions_schema.xml @@ -135,6 +135,7 @@ COMMON MISTAKES TO AVOID: - Do NOT set start_line=end_line when the vulnerable code spans multiple lines. Cover the full range. - Do NOT put an import addition and a code change in the same fix_before/fix_after if they are not on adjacent lines. Split them into separate locations. - Do NOT include lines outside the vulnerable/fixed code in fix_before just to "pad" the range. +- Do NOT duplicate changes across locations. Each location's fix_after must ONLY contain changes for its own line range. Never repeat a change that is already covered by another location. Each location element fields: - file (REQUIRED): Path relative to repository root. No leading slash, no absolute paths, no ".." traversal.