renolation/english
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

init

Browse Source
This commit is contained in:
renolation
2026-04-12 01:06:31 +07:00
commit 10d660cbcb
1066 changed files with 228596 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

69
.opencode/skills/git/references/safety-protocols.md Normal file
View File

@@ -0,0 +1,69 @@
# Git Safety Protocols
## Secret Detection Patterns
### Scan Command
```bash
git diff --cached | grep -iE "(AKIA|api[_-]?key|token|password|secret|credential|private[_-]?key|mongodb://|postgres://|mysql://|redis://|-----BEGIN)"
```
### Patterns to Detect
| Category | Pattern | Example |
|----------|---------|---------|
| API Keys | `api[_-]?key`, `apiKey` | `API_KEY=abc123` |
| AWS | `AKIA[0-9A-Z]{16}` | `AKIAIOSFODNN7EXAMPLE` |
| Tokens | `token`, `auth_token`, `jwt` | `AUTH_TOKEN=xyz` |
| Passwords | `password`, `passwd`, `pwd` | `DB_PASSWORD=secret` |
| Private Keys | `-----BEGIN PRIVATE KEY-----` | PEM files |
| DB URLs | `mongodb://`, `postgres://`, `mysql://` | Connection strings |
| OAuth | `client_secret`, `oauth_token` | `CLIENT_SECRET=abc` |
### Files to Warn About
- `.env`, `.env.*` (except `.env.example`)
- `*.key`, `*.pem`, `*.p12`
- `credentials.json`, `secrets.json`
- `config/private.*`
### Action on Detection
1. **BLOCK commit immediately**
2. Show matching lines: `git diff --cached | grep -B2 -A2 <pattern>`
3. Suggest: "Add to .gitignore or use environment variables"
4. Offer to unstage: `git reset HEAD <file>`
## Branch Protection
### Never Force Push To
- `main`, `master`, `production`, `prod`, `release/*`
### Pre-Merge Checks
```bash
# Check for conflicts before merge
git merge --no-commit --no-ff origin/{branch} && git merge --abort
```
### Remote-First Operations
Always use `origin/{branch}` for comparisons:
-`git diff origin/main...origin/feature`
-`git diff main...HEAD` (includes local uncommitted)
## Error Recovery
### Undo Last Commit (unpushed)
```bash
git reset --soft HEAD~1 # Keep changes staged
git reset HEAD~1 # Keep changes unstaged
```
### Abort Merge
```bash
git merge --abort
```
### Discard Local Changes
```bash
git checkout -- <file> # Single file
git reset --hard HEAD # All files (DANGER)
```
**Always confirm with user before destructive operations.**