feat(profiles): ci + rust + settings.local.json guidance

Three additions you flagged that the v0.6.0 ship missed:

- **ci** profile: CI-runner-tuned (permissive on toolchains, strict
  on anything that mutates remote state). Explicitly denies
  `gh release create`, `gh repo create`, every publish command,
  force-push variants. Use when Claude Code runs inside GitHub
  Actions / GitLab CI.
- **rust** profile: cargo + rustfmt + clippy + cargo-audit +
  cargo-nextest. Denies `cargo publish` / `yank` / `login`.
- **mixed** updated: includes Rust (cargo, rustc, rustfmt,
  rustup, clippy-driver) and Ruby (ruby, bundle, rake, rspec,
  rubocop) toolchains in allow; cargo publish + yank + gem push
  in deny.

Plus the local-override convention that was missing from docs:

- `init` now writes `settings.local.json` + `**/settings.local.json`
  to the content dir's .gitignore by default
- docs/profiles.md gets a "settings.local.json — personal
  overrides" section explaining the merge semantics
- docs/profiles.md gets a "Verifying" section pointing at
  `claude config list`

8 profiles in `profiles list` now (was 6). 294 tests still pass.

Author: imanimanyara

docs/profiles.md

@@ -20,11 +20,47 @@ de-duplicates while preserving order.
 | `laravel` | project | Composer + artisan + vendor/bin (Pest, PHPUnit, Pint, PHPStan, Rector), Sail. Denies `migrate:fresh` + `db:wipe`. |
 | `node` | project | npm/pnpm/yarn/bun, TS toolchain, framework CLIs (next, vite, astro), Vitest/Playwright. |
 | `go` | project | go toolchain, gofmt/goimports, golangci-lint, govulncheck. |
-| `mixed` | project | **Default.** Everything: Python + PHP + JS + Go + network diagnostics + Docker. |
+| `rust` | project | cargo + rustfmt + clippy + cargo-audit. Denies `cargo publish` + `cargo yank` + `cargo login`. |
+| `ci` | ci | For CI runners (GitHub Actions / GitLab CI). Permissive on toolchains; strict on anything that mutates remote state (denies `gh release create`, `gh repo create`, all publish commands, force-push). |
+| `mixed` | project | **Default.** Everything: Python + PHP + JS + Go + Rust + Ruby + network diagnostics + Docker. |
 
 Every project profile extends `global`, so the baseline read/inspect
 permissions always apply.
 
+## settings.local.json — personal overrides
+
+Claude Code reads both `settings.json` (committed) and
+`settings.local.json` (gitignored) and merges per-key. The local
+file is for personal preferences that shouldn't be shared:
+
+```bash
+# .gitignore (ai-config-kit init adds this for you)
+settings.local.json
+**/settings.local.json
+```
+
+Use cases for local overrides:
+
+- Allow specific commands you trust on YOUR machine but the team
+  doesn't (e.g., `Bash(my-deploy-tool:*)`).
+- Bind a personal API token reference: `"env": {"MY_KEY": "..."}`.
+- Tighter denies than the team default.
+
+Never put secrets in `settings.local.json` either — Claude Code
+treats it as configuration, not a secret store.
+
+## Verifying
+
+After `profiles apply --apply`, confirm the merged effective config:
+
+```bash
+claude config list
+```
+
+This prints the resolved JSON (your profile + any
+`settings.local.json` overrides on top). Look for your profile's
+allow patterns and the global denies you expected.
+
 ## Usage
 
 ```bash

src/ai_config_kit/manager.py

@@ -1517,7 +1517,10 @@ def init(
                 + "\n".join(f"**/{p}" for p in self._secrets)
                 + "\n\n# Local noise\n"
                 + "\n".join(self._ignores)
-                + "\n",
+                + "\n\n# Personal overrides (Claude Code reads both files,\n"
+                + "# settings.local.json wins per-key; never committed):\n"
+                + "settings.local.json\n"
+                + "**/settings.local.json\n",
                 encoding="utf-8",
             )
 

src/ai_config_kit/resources/profiles/ci.json

@@ -0,0 +1,152 @@
+{
+  "_meta": {
+    "name": "ci",
+    "summary": "CI runner profile — for use inside GitHub Actions / GitLab CI. Permissive on language toolchains + git diagnostics; STRICTER deny than project profiles on anything that could mutate remote state outside the controlled CI flow.",
+    "scope_hint": "ci",
+    "extends": ["global"]
+  },
+  "permissions": {
+    "allow": [
+      "Edit",
+      "Write",
+      "MultiEdit",
+
+      "Bash(git add:*)",
+      "Bash(git commit:*)",
+      "Bash(git checkout:*)",
+      "Bash(git switch:*)",
+      "Bash(git restore:*)",
+      "Bash(git pull:*)",
+      "Bash(git merge:*)",
+      "Bash(git rebase:*)",
+      "Bash(git stash:*)",
+      "Bash(git mv:*)",
+      "Bash(git rm:*)",
+      "Bash(git tag:*)",
+      "Bash(git config user.*)",
+
+      "Bash(gh pr view:*)",
+      "Bash(gh pr checks:*)",
+      "Bash(gh run view:*)",
+      "Bash(gh api:*)",
+      "Bash(gh release upload:*)",
+      "Bash(gh release view:*)",
+
+      "Bash(python:*)",
+      "Bash(python3:*)",
+      "Bash(pip:*)",
+      "Bash(uv:*)",
+      "Bash(pytest:*)",
+      "Bash(coverage:*)",
+      "Bash(ruff:*)",
+      "Bash(mypy:*)",
+      "Bash(pip-audit:*)",
+      "Bash(python -m:*)",
+
+      "Bash(php:*)",
+      "Bash(composer:*)",
+      "Bash(./vendor/bin/*:*)",
+      "Bash(vendor/bin/*:*)",
+
+      "Bash(npm:*)",
+      "Bash(npm ci:*)",
+      "Bash(npx:*)",
+      "Bash(pnpm:*)",
+      "Bash(yarn:*)",
+      "Bash(node:*)",
+      "Bash(tsc:*)",
+      "Bash(eslint:*)",
+      "Bash(prettier:*)",
+      "Bash(vitest:*)",
+      "Bash(jest:*)",
+
+      "Bash(go:*)",
+      "Bash(gofmt:*)",
+      "Bash(goimports:*)",
+      "Bash(golangci-lint:*)",
+      "Bash(govulncheck:*)",
+
+      "Bash(cargo:*)",
+      "Bash(rustc:*)",
+      "Bash(rustfmt:*)",
+      "Bash(clippy-driver:*)",
+      "Bash(cargo-audit:*)",
+
+      "Bash(make:*)",
+      "Bash(./scripts/*:*)",
+      "Bash(bash scripts/*:*)",
+      "Bash(sh scripts/*:*)",
+
+      "Bash(pre-commit:*)",
+      "Bash(shellcheck:*)",
+      "Bash(shfmt:*)",
+      "Bash(detect-secrets:*)",
+      "Bash(gitleaks:*)",
+      "Bash(actionlint:*)",
+      "Bash(yamllint:*)",
+      "Bash(hadolint:*)",
+      "Bash(markdownlint:*)",
+      "Bash(lychee:*)",
+
+      "Bash(docker build:*)",
+      "Bash(docker pull:*)",
+      "Bash(docker tag:*)",
+      "Bash(docker compose config:*)",
+
+      "Bash(cp:*)",
+      "Bash(mv:*)",
+      "Bash(ln:*)",
+      "Bash(chmod:*)",
+      "Bash(tar:*)",
+      "Bash(unzip:*)",
+      "Bash(zip:*)",
+      "Bash(gzip:*)"
+    ],
+    "deny": [
+      "Bash(rm -rf .git:*)",
+      "Bash(rm -rf .git)",
+
+      "Bash(git push:* --force)",
+      "Bash(git push:* -f)",
+      "Bash(git push -f:*)",
+      "Bash(git push --force:*)",
+      "Bash(git push:* --force-with-lease)",
+      "Bash(git reset --hard:*)",
+      "Bash(git clean -fdx:*)",
+      "Bash(git tag -d:*)",
+      "Bash(git push:* --delete:*)",
+
+      "Bash(gh pr create:*)",
+      "Bash(gh pr merge:*)",
+      "Bash(gh release create:*)",
+      "Bash(gh release delete:*)",
+      "Bash(gh repo create:*)",
+      "Bash(gh repo edit:*)",
+      "Bash(gh repo delete:*)",
+      "Bash(gh workflow run:*)",
+      "Bash(gh secret:*)",
+      "Bash(gh variable:*)",
+
+      "Bash(twine upload:*)",
+      "Bash(python -m twine upload:*)",
+      "Bash(uv publish:*)",
+      "Bash(poetry publish:*)",
+      "Bash(hatch publish:*)",
+      "Bash(pdm publish:*)",
+      "Bash(npm publish:*)",
+      "Bash(pnpm publish:*)",
+      "Bash(yarn publish:*)",
+      "Bash(bun publish:*)",
+      "Bash(cargo publish:*)",
+      "Bash(gem push:*)",
+      "Bash(composer publish:*)",
+      "Bash(docker push:*)",
+      "Bash(goreleaser publish:*)",
+      "Bash(goreleaser release:*)",
+
+      "Bash(php artisan migrate:fresh:*)",
+      "Bash(php artisan migrate:reset:*)",
+      "Bash(php artisan db:wipe:*)"
+    ]
+  }
+}

src/ai_config_kit/resources/profiles/mixed.json

@@ -80,6 +80,19 @@
       "Bash(golangci-lint:*)",
       "Bash(govulncheck:*)",
 
+      "Bash(cargo:*)",
+      "Bash(rustc:*)",
+      "Bash(rustfmt:*)",
+      "Bash(rustup:*)",
+      "Bash(clippy-driver:*)",
+
+      "Bash(ruby:*)",
+      "Bash(bundle:*)",
+      "Bash(bundle exec:*)",
+      "Bash(rake:*)",
+      "Bash(rspec:*)",
+      "Bash(rubocop:*)",
+
       "Bash(make:*)",
       "Bash(./scripts/*:*)",
       "Bash(bash scripts/*:*)",
@@ -158,6 +171,9 @@
       "Bash(bun publish:*)",
       "Bash(goreleaser publish:*)",
       "Bash(goreleaser release:*)",
+      "Bash(cargo publish:*)",
+      "Bash(cargo yank:*)",
+      "Bash(gem push:*)",
 
       "Bash(gh pr merge --auto:*)",
 

src/ai_config_kit/resources/profiles/rust.json

@@ -0,0 +1,111 @@
+{
+  "_meta": {
+    "name": "rust",
+    "summary": "Rust project profile: cargo, rustfmt, clippy, cargo-audit, common build/test/lint flow. Extends `global` baseline.",
+    "scope_hint": "project",
+    "extends": ["global"]
+  },
+  "permissions": {
+    "allow": [
+      "Edit",
+      "Write",
+      "MultiEdit",
+
+      "Bash(git add:*)",
+      "Bash(git commit:*)",
+      "Bash(git checkout:*)",
+      "Bash(git switch:*)",
+      "Bash(git restore:*)",
+      "Bash(git pull:*)",
+      "Bash(git push)",
+      "Bash(git push origin:*)",
+      "Bash(git push --set-upstream:*)",
+      "Bash(git push -u:*)",
+      "Bash(git merge:*)",
+      "Bash(git rebase:*)",
+      "Bash(git stash:*)",
+      "Bash(git mv:*)",
+      "Bash(git rm:*)",
+      "Bash(git cherry-pick:*)",
+      "Bash(git revert:*)",
+      "Bash(git remote add:*)",
+      "Bash(git remote set-url:*)",
+      "Bash(git init:*)",
+      "Bash(git tag:*)",
+
+      "Bash(gh pr create:*)",
+      "Bash(gh pr edit:*)",
+      "Bash(gh pr comment:*)",
+      "Bash(gh pr review:*)",
+      "Bash(gh pr merge:*)",
+      "Bash(gh issue create:*)",
+      "Bash(gh issue edit:*)",
+      "Bash(gh repo edit:*)",
+      "Bash(gh workflow run:*)",
+
+      "Bash(cargo:*)",
+      "Bash(cargo build:*)",
+      "Bash(cargo test:*)",
+      "Bash(cargo run:*)",
+      "Bash(cargo check:*)",
+      "Bash(cargo doc:*)",
+      "Bash(cargo bench:*)",
+      "Bash(cargo update:*)",
+      "Bash(cargo add:*)",
+      "Bash(cargo remove:*)",
+      "Bash(cargo tree:*)",
+      "Bash(cargo metadata:*)",
+      "Bash(cargo install:*)",
+      "Bash(cargo fmt:*)",
+      "Bash(cargo clippy:*)",
+      "Bash(cargo audit:*)",
+      "Bash(cargo deny:*)",
+      "Bash(cargo nextest:*)",
+      "Bash(cargo expand:*)",
+      "Bash(cargo machete:*)",
+
+      "Bash(rustc:*)",
+      "Bash(rustfmt:*)",
+      "Bash(rustup:*)",
+      "Bash(clippy-driver:*)",
+
+      "Bash(make:*)",
+      "Bash(just:*)",
+      "Bash(./scripts/*:*)",
+      "Bash(bash scripts/*:*)",
+
+      "Bash(pre-commit:*)",
+      "Bash(shellcheck:*)",
+      "Bash(detect-secrets:*)",
+      "Bash(gitleaks:*)",
+
+      "Bash(docker build:*)",
+      "Bash(docker run:*)",
+      "Bash(docker exec:*)",
+      "Bash(docker compose up:*)",
+      "Bash(docker compose down:*)",
+      "Bash(docker compose build:*)",
+      "Bash(docker compose exec:*)",
+
+      "Bash(rm:*)",
+      "Bash(cp:*)",
+      "Bash(mv:*)",
+      "Bash(ln:*)",
+      "Bash(chmod:*)",
+      "Bash(tar:*)",
+      "Bash(unzip:*)",
+      "Bash(zip:*)"
+    ],
+    "deny": [
+      "Bash(rm -rf .git:*)",
+      "Bash(rm -rf .git)",
+      "Bash(rm -rf target:*)",
+
+      "Bash(cargo publish:*)",
+      "Bash(cargo yank:*)",
+      "Bash(cargo login:*)",
+
+      "Bash(gh pr merge --auto:*)"
+    ]
+  }
+}