fix(plugins): sync all 171 plugin SKILL.md files with fixed skills/ versions
Propagates Anti-Patterns sections, description rewrites, Required Inputs additions, and Quality Checks format fixes from skills/ to matching plugin SKILL.md copies. https://claude.ai/code/session_01MuGKn3a3Gbqoe8uM5Lmuqt
This commit is contained in:
@@ -290,3 +290,11 @@ Medium and Low findings should be tracked as follow-up issues with a committed r
|
||||
- [ ] Code snippets in findings show both the problematic code AND the corrected version
|
||||
- [ ] Overall risk rating is justified by the highest-severity open finding
|
||||
- [ ] Checklist items are binary (checkable) — not narrative observations
|
||||
|
||||
## Anti-Patterns
|
||||
|
||||
- [ ] Do not mark a finding as Low if it involves hardcoded credentials or secrets in any form — always Critical
|
||||
- [ ] Do not review IaC in isolation from the deployment context — networking and IAM must be evaluated together
|
||||
- [ ] Do not produce narrative findings without the specific resource name, file, and line number
|
||||
- [ ] Do not skip the "Required Actions Before Merge" summary — reviewers need a clear blocking list, not just a full report
|
||||
- [ ] Do not approve code where encryption at rest or in transit is missing on data stores, even if not explicitly flagged by the requester
|
||||
|
||||
Reference in New Issue
Block a user