Compliance and standards update

[metyatech]

Brings the repository into compliance with AGENTS.md and project standards:

• Updated AGENTS.md via compose-agentsmd.
• Added CodeQL workflow for Python.
• Removed redundant requirements-audit.txt and updated verify.ps1 to use pip-audit . (DRY).
• Updated .gitignore for Unity/C# artifacts.
• Fixed GitHub repository topics (removed unreal-engine, added agent-tool and unity).
• Set GitHub homepage URL.
• Verified all checks and tests pass with verify.ps1.

[chatgpt-codex-connector]

You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard.
To continue using code reviews, you can upgrade your account or add credits to your account and enable them for code reviews in your settings.

[Copilot]

Pull request overview

This PR brings the repository into compliance with AGENTS.md and project standards. It refreshes AGENTS.md via compose-agentsmd, adds a CodeQL scanning workflow, removes a redundant requirements-audit.txt in favour of a DRY pip-audit . invocation, updates .gitignore with Unity/C# build artifact patterns, and updates GitHub repository metadata (topics, homepage).

Changes:

• Refreshed AGENTS.md via compose-agentsmd (restructured/updated rule content from upstream).
• Added .github/workflows/codeql.yml for CodeQL Python analysis.
• Removed requirements-audit.txt and updated scripts/verify.ps1 to use pip_audit . instead of -r requirements-audit.txt.
• Extended .gitignore with Unity Editor obj/ and bin/ build directories.

Reviewed changes

Copilot reviewed 4 out of 5 changed files in this pull request and generated 1 comment.

Show a summary per file

File	Description
scripts/verify.ps1	Changed pip-audit invocation from -r requirements-audit.txt to . (positional path argument)
requirements-audit.txt	Deleted — redundant since dependencies are declared in pyproject.toml
AGENTS.md	Regenerated by compose-agentsmd with updated upstream rules
.gitignore	Added Unity Editor obj/ and bin/ artifact exclusions
.github/workflows/codeql.yml	New CodeQL workflow for Python analysis on push/PR/weekly schedule

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

The pip_audit CLI does not accept a bare directory path (.) as a positional argument. Running python -m pip_audit . will result in an error such as "unrecognized arguments: ."

To audit the project's declared dependencies using pyproject.toml, the correct invocation is simply python -m pip_audit (no arguments), which scans the currently installed environment, or use python -m pip_audit --local to restrict the scan to only locally-installed packages. For scanning the project's specified dependencies directly from pyproject.toml without requiring an install, use python -m pip_audit -s osv -r pyproject.toml. The old invocation -r requirements-audit.txt was a valid form; the new form with . is not.

Suggested change

	Invoke-VerifyCommand @("python", "-m", "pip_audit", ".")
	Invoke-VerifyCommand @("python", "-m", "pip_audit", "--local")