feat(git-commit): add default branch guard rule (#3)

using-system · claude · web-flow · commit 17f416280feb · 2026-04-13T22:37:00.000+02:00
* feat(git-commit): add default branch guard rule Prevent direct commits on main/master by requiring a conventional branch (feat/, fix/, perf/, etc.) to be created first. This enforces a cleaner git workflow aligned with Conventional Commits. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * fix(readme): add marketplace scope to plugin install commands The plugin install commands were missing the @using-system marketplace scope, which is required to resolve the plugin from the marketplace. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(github-actions): add script injection prevention rule Require passing ${{ }} expressions through environment variables instead of interpolating them directly in run blocks. This prevents command injection via user-controlled inputs like PR titles, issue bodies, and branch names. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> * feat(ci): add release workflow with automated version bump Adds a GitHub Actions release workflow triggered on push to main that: - Determines next semver version via github-tag-action (Conventional Commits) - Bumps version in all files referenced by .version-bump.json - Audits for stale version references - Creates a GitHub Release with changelog Also enhances the github-actions skill with guidance on job outputs injection safety and with: vs run: context distinction. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -0,0 +1,118 @@
+name: Release
+
+on:
+  push:
+    branches:
+      - main
+
+permissions:
+  contents: write
+
+jobs:
+  version:
+    name: Determine version
+    runs-on: ubuntu-latest
+    outputs:
+      new_tag: ${{ steps.tag.outputs.new_tag }}
+      new_version: ${{ steps.tag.outputs.new_version }}
+      changelog: ${{ steps.tag.outputs.changelog }}
+      previous_tag: ${{ steps.tag.outputs.previous_tag }}
+    steps:
+      - name: Checkout
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          fetch-depth: 0
+
+      - name: Determine next version
+        id: tag
+        uses: mathieudutour/github-tag-action@d28fa2ccfbd16e871a4bdf35e11b3ad1bd56c0c1 # v6.2
+        with:
+          github_token: ${{ secrets.GITHUB_TOKEN }}
+          default_bump: patch
+          tag_prefix: v
+
+  bump:
+    name: Bump version in files
+    runs-on: ubuntu-latest
+    needs: version
+    if: needs.version.outputs.new_tag != ''
+    steps:
+      - name: Checkout
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+        with:
+          ref: main
+
+      - name: Bump versions from .version-bump.json
+        env:
+          NEW_VERSION: ${{ needs.version.outputs.new_version }}
+        run: |
+          echo "Bumping version to ${NEW_VERSION}"
+
+          jq -c '.files[]' .version-bump.json | while IFS= read -r entry; do
+            FILE=$(echo "$entry" | jq -r '.path')
+            FIELD=$(echo "$entry" | jq -r '.field')
+
+            if [ ! -f "$FILE" ]; then
+              echo "::warning::File not found: $FILE"
+              continue
+            fi
+
+            # Convert dot-notation path to jq setpath array
+            # e.g. "plugins.0.version" -> ["plugins",0,"version"]
+            JQ_PATH=$(echo "$FIELD" | jq -R 'split(".") | map(if test("^[0-9]+$") then tonumber else . end)')
+
+            echo "Updating $FILE field '$FIELD' to $NEW_VERSION"
+            jq --arg v "$NEW_VERSION" --argjson path "$JQ_PATH" 'setpath($path; $v)' "$FILE" > tmp.$$.json && mv tmp.$$.json "$FILE"
+          done
+
+      - name: Audit for stale version references
+        env:
+          PREVIOUS_TAG: ${{ needs.version.outputs.previous_tag }}
+        run: |
+          PREVIOUS_VERSION="${PREVIOUS_TAG#v}"
+
+          if [ -z "$PREVIOUS_VERSION" ]; then
+            echo "No previous version to audit against"
+            exit 0
+          fi
+
+          echo "Auditing for stale references to ${PREVIOUS_VERSION}"
+
+          EXCLUDE_ARGS=""
+          for pattern in $(jq -r '.audit.exclude[]' .version-bump.json); do
+            EXCLUDE_ARGS="$EXCLUDE_ARGS --exclude=$pattern --exclude-dir=$pattern"
+          done
+
+          if grep -r "$PREVIOUS_VERSION" . $EXCLUDE_ARGS --include='*.json' --include='*.md' --include='*.yml' --include='*.yaml' 2>/dev/null; then
+            echo "::warning::Found stale version references to ${PREVIOUS_VERSION} — check the files above"
+          else
+            echo "No stale version references found"
+          fi
+
+      - name: Commit and push version bump
+        uses: stefanzweifel/git-auto-commit-action@04702edda442b2e678b25b537cec683a1493fcb9 # v7.1.0
+        with:
+          commit_message: "chore(release): bump version to v${{ needs.version.outputs.new_version }}"
+          file_pattern: "*.json **/*.json"
+
+  release:
+    name: Create GitHub release
+    runs-on: ubuntu-latest
+    needs: [version, bump]
+    steps:
+      - name: Create release
+        uses: actions/github-script@d746ffe35508b1917358783b479e04febd2b8f71 # v9.0.0
+        env:
+          NEW_TAG: ${{ needs.version.outputs.new_tag }}
+          CHANGELOG: ${{ needs.version.outputs.changelog }}
+        with:
+          script: |
+            await github.rest.repos.createRelease({
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              tag_name: process.env.NEW_TAG,
+              name: process.env.NEW_TAG,
+              body: process.env.CHANGELOG,
+              draft: false,
+              prerelease: false
+            });
diff --git a/.version-bump.json b/.version-bump.json
@@ -0,0 +1,16 @@
+{
+  "files": [
+    { "path": "package.json", "field": "version" },
+    { "path": ".claude-plugin/plugin.json", "field": "version" },
+    { "path": ".cursor-plugin/plugin.json", "field": "version" },
+    { "path": ".claude-plugin/marketplace.json", "field": "plugins.0.version" }
+  ],
+  "audit": {
+    "exclude": [
+      "CHANGELOG.md",
+      "node_modules",
+      ".git",
+      ".version-bump.json"
+    ]
+  }
+}
diff --git a/README.md b/README.md
@@ -16,7 +16,7 @@ A curated collection of personal agent extensions, skills, and CLI hooks to enha
 
 ```bash
 claude plugin marketplace add using-system/ai-dev-extensions
-claude plugin install ai-dev-extensions
+claude plugin install ai-dev-extensions@using-system
 ```
 
 Or for a single session from a local clone:
@@ -29,14 +29,14 @@ claude --plugin-dir /path/to/ai-dev-extensions
 
 ```bash
 /plugin marketplace add using-system/ai-dev-extensions
-/plugin install ai-dev-extensions
+/plugin install ai-dev-extensions@using-system
 ```
 
 ### Copilot CLI
 
 ```bash
 copilot plugin marketplace add using-system/ai-dev-extensions
-copilot plugin install ai-dev-extensions
+copilot plugin install ai-dev-extensions@using-system
 ```
 
 ### Codex
diff --git a/skills/git-commit/SKILL.md b/skills/git-commit/SKILL.md
@@ -52,6 +52,55 @@ Breaking changes trigger a **MAJOR** version bump.
 
 ## Rules
 
+### 0. Never commit directly on the default branch
+
+Before committing, check the current branch:
+
+```bash
+git branch --show-current
+```
+
+If you are on the default branch (`main` or `master`), you **MUST** create and switch to a new branch before committing. The branch name MUST follow the convention:
+
+```
+<type>/<short-description>
+```
+
+Where `<type>` matches the Conventional Commits type of the work being done.
+
+```bash
+# BAD - committing on main
+git commit -m "feat: add login page"
+
+# GOOD - create branch first, then commit
+git checkout -b feat/add-login-page
+git commit -m "feat: add login page"
+```
+
+#### Branch naming rules
+
+- Use the same type as the commit (`feat`, `fix`, `perf`, `docs`, `refactor`, `ci`, `test`, `build`, `chore`)
+- Description is lowercase, words separated by hyphens
+- Keep it short but descriptive (3-5 words max)
+
+```bash
+# Examples
+feat/oauth2-login-flow
+fix/null-response-payment
+perf/optimize-query-cache
+docs/add-installation-guide
+refactor/extract-auth-middleware
+ci/pin-actions-to-sha
+```
+
+#### Detecting the default branch
+
+Use this command to determine the default branch:
+
+```bash
+git symbolic-ref refs/remotes/origin/HEAD 2>/dev/null | sed 's@refs/remotes/origin/@@' || echo "main"
+```
+
 ### 1. Type is mandatory
 
 ```bash
diff --git a/skills/github-actions/SKILL.md b/skills/github-actions/SKILL.md
@@ -62,7 +62,74 @@ The inline comment after the SHA MUST contain the human-readable version so that
 
 Format: `{owner}/{action}@{sha} # {tag}`
 
-### 4. Apply to ALL actions, including official ones
+### 4. Never use expressions directly in `run` scripts — use environment variables
+
+Interpolating `${{ }}` expressions directly in `run:` blocks (bash, PowerShell, or any shell) creates **script injection vulnerabilities**. An attacker who controls the expression value (e.g., a PR title, branch name, or issue body) can inject arbitrary commands.
+
+**Always** pass untrusted values through environment variables:
+
+```yaml
+# BAD - direct interpolation, vulnerable to command injection
+- run: echo "Hello ${{ github.event.pull_request.title }}"
+
+# BAD - same issue in PowerShell
+- run: Write-Host "Hello ${{ github.event.issue.body }}"
+  shell: pwsh
+
+# GOOD - pass through env, shell handles escaping
+- run: echo "Hello $TITLE"
+  env:
+    TITLE: ${{ github.event.pull_request.title }}
+
+# GOOD - PowerShell equivalent
+- run: Write-Host "Hello $env:BODY"
+  shell: pwsh
+  env:
+    BODY: ${{ github.event.issue.body }}
+```
+
+#### Dangerous expression sources
+
+These expressions are **user-controlled** and MUST always go through `env:`:
+
+| Source | Example |
+|--------|---------|
+| PR title / body | `github.event.pull_request.title`, `github.event.pull_request.body` |
+| Issue title / body | `github.event.issue.title`, `github.event.issue.body` |
+| Comment body | `github.event.comment.body` |
+| Commit message | `github.event.head_commit.message` |
+| Branch / tag name | `github.head_ref`, `github.ref_name` |
+| Review body | `github.event.review.body` |
+
+#### Job outputs (`needs.*.outputs.*`)
+
+Job outputs are only as safe as how they were produced. If a job output originates from user-controlled data (commit messages, PR titles, branch names) — even indirectly via a third-party action — it MUST go through `env:` when used in `run:` or `script:` blocks.
+
+```yaml
+# BAD - output may contain injected content from commit messages
+- run: echo "Releasing ${{ needs.version.outputs.new_tag }}"
+
+# GOOD - passed through env
+- run: echo "Releasing ${NEW_TAG}"
+  env:
+    NEW_TAG: ${{ needs.version.outputs.new_tag }}
+
+# OK - with: inputs are action parameters, not shell-interpolated
+  with:
+    commit_message: "chore(release): v${{ needs.version.outputs.new_version }}"
+```
+
+**Note**: `with:` inputs are passed as strings to actions, not shell-interpolated — they are safe from script injection. The `env:` rule applies specifically to `run:` and `script:` blocks.
+
+#### Safe expressions (env still recommended)
+
+These are generally safe but using `env:` is still best practice for consistency:
+
+- `github.repository`, `github.actor`, `github.sha`
+- `github.run_id`, `github.run_number`
+- `secrets.*`, `vars.*`
+
+### 5. Apply to ALL actions, including official ones
 
 This applies to **every** action, including:
 - `actions/checkout`
