chore(tooling): refresh managed config + source credentials from env (#511)

* chore(tooling): refresh managed config to current Vergil tooling/actions

Items 1/3/6/7 of the fleet refresh (epic mq-rest-admin-project/.github#14):
marketplace -> vergil-claude-plugin; embed canonical CLAUDE.md template
(+ vrg-docker-run -> vrg-container-run); ignore .vergil/; cd.yml release
uses secrets: inherit (fixes CD startup_failure). Hook guard (item 2)
already landed via #509. audit COMPLIANT; vrg-validate passes. Refs #510.

* fix(security): source test and example credentials from the environment

Updated CodeQL/Semgrep rulesets flag hard-coded credentials. Remove all
hard-coded password literals from test and example code:

- tests/pymqrest/{test_auth,test_session,test_ensure,test_sync}.py:
  TEST_PASSWORD now reads MQ_TEST_PASSWORD from the env (defaults empty);
  mock transports ignore the value and assertions compare against the
  same constant.
- examples/*.py __main__ blocks: require MQ_ADMIN_PASSWORD from the env
  instead of defaulting to a hard-coded "mqadmin".

vrg-validate (incl. 100% coverage) passes. Refs #510.

* fix(security): use verified SSL context in archived extraction scripts

Semgrep python.lang.security.unverified-ssl-context flagged
ssl._create_unverified_context() in the archived MQSC doc-extraction
scripts. They fetch public IBM docs (https://www.ibm.com/docs, valid
certs), so switch to ssl.create_default_context() — verification works
and the insecure context is removed. Scripts are archived/not run in CI;
change is static-clean for the scanner and more correct if re-run.

Refs #510.

---------

Co-authored-by: Phillip Moore <w.phillip.moore@gmail.com>

Author: wphillipmoore-vergil-agent[bot]

.claude/settings.json

@@ -21,7 +21,7 @@
     "vergil-marketplace": {
       "source": {
         "source": "github",
-        "repo": "vergil-project/vergil-plugin"
+        "repo": "vergil-project/vergil-claude-plugin"
       }
     }
   },

.github/workflows/cd.yml

@@ -31,6 +31,4 @@ jobs:
       language: python
       container-tag: "3.14"
       registry-publish: true
-    secrets:
-      APP_CLIENT_ID: ${{ secrets.APP_CLIENT_ID }}
-      APP_PRIVATE_KEY: ${{ secrets.APP_PRIVATE_KEY }}
+    secrets: inherit

.gitignore

@@ -207,3 +207,6 @@ marimo/_static/
 marimo/_lsp/
 __marimo__/
 .worktrees/
+
+# Vergil tooling scratch (PR/session working dir)
+.vergil/

CLAUDE.md

@@ -36,27 +36,27 @@ on-ramp.
 ### Structure
 
 ```text
-~/dev/github/mq-rest-admin-python/        ← sessions ALWAYS start here
+<project-root>/                              ← sessions ALWAYS start here
   .git/
-  CLAUDE.md, src/, tests/, …              ← main worktree (usually `develop`)
-  .worktrees/                             ← container for parallel worktrees
-    issue-454-adopt-worktree-convention/  ← worktree on feature/454-...
+  CLAUDE.md, …                               ← main worktree (usually `develop`)
+  .worktrees/                                ← container for parallel worktrees
+    issue-<N>-<short-slug>/                  ← worktree on feature/<N>-<short-slug>
     …
 ```
 
 ### Rules
 
 1. **Sessions always start at the project root.**
-   `cd ~/dev/github/mq-rest-admin-python && claude` — never from inside
-   `.worktrees/<name>/`. This keeps the memory-path slug stable and shared.
+   Never start Claude from inside `.worktrees/<name>/`. This keeps the
+   memory-path slug stable and shared.
 2. **Each parallel agent is assigned exactly one worktree.** The session
    prompt names the worktree (see Agent prompt contract below).
    - For Read / Edit / Write tools: use the worktree's absolute path.
    - For Bash commands that touch files: `cd` into the worktree first,
      or use absolute paths.
 3. **The main worktree is read-only.** All edits flow through a worktree
    on a feature branch — the logical endpoint of the standing
-   "no direct commits to `develop`" policy.
+   "no direct commits to develop" policy.
 4. **One worktree per issue.** Don't stack in-flight issues. When a
    branch lands, remove the worktree before starting the next.
 5. **Naming: `issue-<N>-<short-slug>`.** `<N>` is the GitHub issue
@@ -70,22 +70,44 @@ placeholders):
 ```text
 You are working on issue #<N>: <issue title>.
 
-Your worktree is: /Users/pmoore/dev/github/mq-rest-admin-python/.worktrees/issue-<N>-<slug>/
+Your worktree is: <project-root>/.worktrees/issue-<N>-<slug>/
 Your branch is:   feature/<N>-<slug>
 
 Rules for this session:
 - Do all git operations from inside your worktree:
-    cd <absolute-worktree-path> && git <command>
+    cd <absolute-worktree-path> && vrg-git <command>
 - For Read / Edit / Write tools, use the absolute worktree path.
 - For Bash commands that touch files, cd into the worktree first
   or use absolute paths.
 - Do not edit files at the project root. The main worktree is
   read-only — all changes flow through your worktree on your
   feature branch.
+- When you need to run validation, run it from inside your worktree
+  (vrg-container-run mounts the current directory).
 ```
 
 All fields are required.
 
+## Shell command policy
+
+Use `vrg-git` instead of `git` for all git operations. Use `vrg-gh`
+instead of `gh` for all GitHub CLI operations. These wrappers enforce
+subcommand allowlists, flag deny lists, and credential selection.
+
+Raw `git` and `gh` are denied by the permission model. If a command
+is not available through the wrappers, explain the situation to the
+human who can run it directly via `! <command>` in the prompt.
+
+## Validation
+
+```bash
+vrg-container-run -- vrg-validate
+```
+
+This is the **only** validation command. Do not run individual linters,
+formatters, or other tools outside of `vrg-validate`. If a tool is not
+invoked by `vrg-validate`, it is not part of the validation pipeline.
+
 ## Project Overview
 
 `pymqrest` is a Python wrapper for the IBM MQ administrative REST API. The project provides a Python mapping layer for MQ REST API attribute translations and command metadata experiments. The current focus is on attribute mapping and metadata modeling.
@@ -123,7 +145,7 @@ gates.
 ### Validation
 
 ```bash
-vrg-docker-run -- vrg-validate   # Full validation (runs in dev container)
+vrg-container-run -- vrg-validate   # Full validation (runs in dev container)
 ```
 - Lock file verification
 - Security audit (pip-audit)

docs/archive/extraction/scripts/build_mqsc_pcf_command_map.py

@@ -248,7 +248,7 @@ def read_group_entries() -> list[GroupEntry]:
 
 def fetch_html(href: str) -> str:
     url = f"{IBM_DOCS_BASE}{href}"
-    context = ssl._create_unverified_context()  # noqa: S323, SLF001
+    context = ssl.create_default_context()
     request = Request(  # noqa: S310
         url,
         headers={"User-Agent": "pymqrest-pcf-map/1.0", "Accept": "text/html"},

docs/archive/extraction/scripts/extract_mqsc_command_metadata.py

@@ -602,7 +602,7 @@ def extract_command_name(html: str) -> str | None:
 
 def fetch_html(href: str) -> str:
     url = f"{IBM_DOCS_BASE}{href}"
-    context = ssl._create_unverified_context()  # noqa: S323, SLF001
+    context = ssl.create_default_context()
     request = urllib.request.Request(  # noqa: S310
         url,
         headers={

docs/archive/extraction/scripts/extract_pcf_command_pages.py

@@ -63,7 +63,7 @@ def handle_data(self, data: str) -> None:
 
 
 def fetch_index(url: str) -> str:
-    context = ssl._create_unverified_context()  # noqa: S323, SLF001
+    context = ssl.create_default_context()
     request = Request(  # noqa: S310
         url,
         headers={"User-Agent": "pymqrest-pcf-index/1.0", "Accept": "text/html"},

docs/archive/extraction/scripts/refresh_mqsc_output_parameters.py

@@ -162,7 +162,7 @@ def fetch_html(href: str) -> str:
     if cache_path.exists():
         return cache_path.read_text(encoding="utf-8", errors="ignore")
     url = f"{IBM_DOCS_BASE}{href}"
-    context = ssl._create_unverified_context()  # noqa: S323, SLF001
+    context = ssl.create_default_context()
     request = urllib.request.Request(  # noqa: S310
         url,
         headers={

examples/channel_status.py

@@ -11,7 +11,7 @@
 from __future__ import annotations
 
 from dataclasses import dataclass
-from os import getenv
+from os import environ, getenv
 
 from pymqrest import MQRESTError, MQRESTSession
 from pymqrest.auth import LTPAAuth
@@ -120,7 +120,7 @@ def main(session: MQRESTSession) -> list[ChannelInfo]:
     session = MQRESTSession(
         rest_base_url=getenv("MQ_REST_BASE_URL", "https://localhost:9443/ibmmq/rest/v2"),
         qmgr_name=getenv("MQ_QMGR_NAME", "QM1"),
-        credentials=LTPAAuth(getenv("MQ_ADMIN_USER", "mqadmin"), getenv("MQ_ADMIN_PASSWORD", "mqadmin")),
+        credentials=LTPAAuth(getenv("MQ_ADMIN_USER", "mqadmin"), environ["MQ_ADMIN_PASSWORD"]),
         verify_tls=False,
     )
 

examples/dlq_inspector.py

@@ -12,7 +12,7 @@
 from __future__ import annotations
 
 from dataclasses import dataclass
-from os import getenv
+from os import environ, getenv
 
 from pymqrest import MQRESTSession
 from pymqrest.auth import LTPAAuth
@@ -147,7 +147,7 @@ def _to_int(value: object) -> int:
     session = MQRESTSession(
         rest_base_url=getenv("MQ_REST_BASE_URL", "https://localhost:9443/ibmmq/rest/v2"),
         qmgr_name=getenv("MQ_QMGR_NAME", "QM1"),
-        credentials=LTPAAuth(getenv("MQ_ADMIN_USER", "mqadmin"), getenv("MQ_ADMIN_PASSWORD", "mqadmin")),
+        credentials=LTPAAuth(getenv("MQ_ADMIN_USER", "mqadmin"), environ["MQ_ADMIN_PASSWORD"]),
         verify_tls=False,
     )