anthropics/claude-plugins-official
1
0
Fork 0
mirror of https://github.com/anthropics/claude-plugins-official.git synced 2026-06-13 22:26:03 -03:00
Code Issues Packages Projects Releases Wiki Activity
833 Commits 390 Branches 0 Tags
Commit Graph

833 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Morgan Lunt
4f49895abd
code-modernization: assess writes the full quarantine ignore set 
assess only added SECRETS.local.md to analysis/.gitignore, leaving
*.local.patch uncovered until harden's own Step 0 ran. Both patterns are
now written by whichever command runs first.
 2026-06-09 08:47:34 -07:00
Morgan Lunt
9d49c4b135
code-modernization: close remaining credential-leak paths 
A red-team pass found four ways credential values still reached
shareable artifacts after the initial redaction:

- the remediation patch: a diff removing a hardcoded secret carries the
  raw value on its '-' lines by construction. harden now splits output:
  non-credential hunks in the shareable security_remediation.patch,
  credential hunks in a gitignored security_remediation.local.patch
  with comment-only placeholders in the shareable file
- the other four agents had no secret-handling rules. legacy-analyst
  (hardcoded-config evidence in tech-debt findings),
  business-rules-extractor (credentials recorded as rule parameters),
  test-engineer (legacy literals becoming committed test fixtures), and
  architecture-critic (quoted code in notes files) now all mask values
  and cite file:line; assess's tech-debt prompt and ASSESSMENT.md
  masking now cover every section, not just Security Findings
- non-git projects: a .gitignore protects nothing under SVN/Mercurial.
  Both commands now refuse --show-secrets without git and write the
  quarantine file to ~/.modernize/<system>/ outside the project tree
- the patch-apply instruction was wrong in both documented layouts
  (symlinked legacy/ broke relative paths). Patches are now written
  with project-root-relative paths and applied from the project root

Also: --show-secrets is now position-independent in both commands, and
the README documents the full model.
 2026-06-09 08:47:34 -07:00
Morgan Lunt
ff5feaeb7f
code-modernization: never write discovered credential values into findings 
Legacy systems often contain live credentials, and assessment/findings
files get committed and shared. Previously the security-auditor agent
reported hardcoded secrets verbatim into ASSESSMENT.md and
SECURITY_FINDINGS.md.

- security-auditor: mandatory secret-handling rules — mask all credential
  values (file:line + 2-4 char preview), redact secrets from echoed tool
  output, recommend rotation for anything that looks live
- assess/harden: gitignore-verified SECRETS.local.md quarantine file for
  the per-credential inventory; findings files get masked entries and a
  pointer only
- new --show-secrets flag opts into raw values in the quarantine file
  (and only there)
- README: document the behavior and advise users of earlier versions to
  check for already-committed findings and rotate
 2026-06-09 08:47:33 -07:00
github-actions[bot]
379a00dba5
bump(sap-fiori-mcp-server): fbfe8c32 → 604f2895 (#2500) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:53:05 -05:00
github-actions[bot]
0161a176c7
bump(airwallex): a903ab76 → a49ef1ec (#2499) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:52:43 -05:00
github-actions[bot]
7dd654e4ea
bump(wix): 188ed338 → 9666bc8d (#2502) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:52:20 -05:00
github-actions[bot]
b167faa74a
bump(data-agent-kit-starter-pack): fb908645 → b47cae53 (#2481) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:51:57 -05:00
github-actions[bot]
bdde825b98
bump(42crunch-api-security-testing): db2fb7e5 → a5172167 (#2469) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:51:45 -05:00
github-actions[bot]
cd49446ad3
bump(databases-on-aws): fc54dfa2 → d8243e5f (#2482) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:51:17 -05:00
github-actions[bot]
b667e7f193
bump(deploy-on-aws): fc54dfa2 → d8243e5f (#2484) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:51:06 -05:00
github-actions[bot]
a3a7e77735
bump(migration-to-aws): 1dd90935 → b3e5ee48 (#2488) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:50:59 -05:00
github-actions[bot]
6ab6953eee
bump(snowflake-cortex-code): 6a22eb1f → 2462e1ba (#2495) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:50:48 -05:00
github-actions[bot]
27524414d8
bump(amazon-location-service): fc54dfa2 → d8243e5f (#2471) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:50:37 -05:00
github-actions[bot]
336212b41d
bump(aws-data-analytics): 55b9acfe → 7a1422d5 (#2475) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:50:26 -05:00
github-actions[bot]
dd7fcb43f2
bump(carta-cap-table): 9eb31290 → 732981ca (#2478) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:50:15 -05:00
github-actions[bot]
ebecea5c95
bump(aws-startup-advisor): 1dd90935 → b3e5ee48 (#2477) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:50:11 -05:00
github-actions[bot]
8525d71094
bump(adobe-for-creativity): e23271f6 → 253f5690 (#2470) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:50:01 -05:00
github-actions[bot]
8288a4a320
bump(sagemaker-ai): fc54dfa2 → d8243e5f (#2493) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:49:30 -05:00
github-actions[bot]
0d91490722
bump(quarkus-agent): e711107a → 91c7986e (#2492) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:49:23 -05:00
github-actions[bot]
de6b8cf296
bump(carta-investors): 9eb31290 → 732981ca (#2480) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:49:11 -05:00
github-actions[bot]
b4f01b62bf
bump(carta-crm): 9eb31290 → 732981ca (#2479) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:48:59 -05:00
github-actions[bot]
d7d03756e2
bump(nvidia-skills): 0482ebce → d0e07bd3 (#2490) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:48:47 -05:00
github-actions[bot]
54eb24e9d6
bump(netlify-skills): 5f777ba6 → 22025ef6 (#2489) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:48:35 -05:00
github-actions[bot]
8acfe8b3cb
bump(aws-core): 55b9acfe → 7a1422d5 (#2474) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:48:23 -05:00
github-actions[bot]
1fb5d16181
bump(aws-serverless): fc54dfa2 → d8243e5f (#2476) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:48:12 -05:00
github-actions[bot]
8aac392a4d
bump(aws-amplify): fc54dfa2 → d8243e5f (#2473) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:48:00 -05:00
github-actions[bot]
eeb0e11315
bump(aws-agents): 55b9acfe → 7a1422d5 (#2472) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:47:53 -05:00
github-actions[bot]
22be09177b
bump(sentry-cli): 9e9fe0fb → dc99b4d1 (#2494) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:47:34 -05:00
github-actions[bot]
1f5ce124fa
bump(hyperframes): 25420bf4 → 24279c8c (#2487) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:44:01 -05:00
github-actions[bot]
30f8e267a1
bump(dataverse): 2d50cf65 → 2c373943 (#2483) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:43:23 -05:00
github-actions[bot]
7be381f4cf
bump(exa): f0838825 → 9ea4ba3e (#2485) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 07:05:31 -05:00
github-actions[bot]
3175a58228
bump(figma): a742f0a7 → 54ad1560 (#2486) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 06:30:13 -05:00
github-actions[bot]
c78c61e117
bump(outputai): 2cc4685e → fc6a93e6 (#2491) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 05:05:03 -05:00
github-actions[bot]
e7710f24ba
bump(sumup): 715464b4 → 5b9b2d72 (#2496) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 04:21:58 -05:00
github-actions[bot]
2fe8c1d7ad
bump(workos): e8900cc5 → 2c3acef6 (#2497) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-09 03:21:25 -05:00
github-actions[bot]
bbbff6ab54
bump(qdrant-skills): 11df00a7 → 82337ccd (#2458) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:38:37 -05:00
github-actions[bot]
6105eea1c6
bump(sentry-cli): 329f5c5d → 9e9fe0fb (#2462) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:38:13 -05:00
github-actions[bot]
7a574ede07
bump(codspeed): 9793aaf9 → c6112f16 (#2451) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:37:48 -05:00
github-actions[bot]
50507ce03c
bump(expo): 145a923c → c3886024 (#2452) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:37:24 -05:00
github-actions[bot]
9dbb38fff1
bump(oracle-ai-data-platform-workbench-spark-connectors): 04cc355f → 00cedef3 (#2456) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:36:45 -05:00
github-actions[bot]
0f2b68bec6
bump(sap-fiori-mcp-server): f6e9ae1f → fbfe8c32 (#2461) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:36:19 -05:00
github-actions[bot]
e408e54811
bump(aws-data-analytics): df13dea6 → 55b9acfe (#2445) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:35:53 -05:00
github-actions[bot]
7a5c13e654
bump(carta-cap-table): 0227331a → 9eb31290 (#2447) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:35:26 -05:00
github-actions[bot]
a0bf1eed49
bump(chrome-devtools-mcp): 7afd0167 → 702d3734 (#2450) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:34:57 -05:00
github-actions[bot]
e0825af81b
bump(brightdata-plugin): 3e6d0838 → bd5bd76b (#2446) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:34:27 -05:00
github-actions[bot]
318f7c9674
bump(carta-crm): 0227331a → 9eb31290 (#2448) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:33:56 -05:00
github-actions[bot]
60706e7bc3
bump(carta-investors): 0227331a → 9eb31290 (#2449) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:33:27 -05:00
github-actions[bot]
f00d6d8005
bump(nvidia-skills): e29b3c65 → 0482ebce (#2455) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:32:56 -05:00
github-actions[bot]
48bbef8757
bump(hyperframes): 1fd1b316 → 25420bf4 (#2453) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:32:48 -05:00
github-actions[bot]
4d5ccd2968
bump(jfrog): 8324c7fc → 117febaa (#2454) 
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2026-06-08 13:32:16 -05:00