mirror of https://github.com/affaan-m/everything-claude-code.git synced 2026-01-31 19:53:07 +08:00

Files

Affaan Mustafa 45959c326e Initial release: Complete Claude Code configuration collection

Battle-tested configs from 10+ months of daily Claude Code usage.
Won Anthropic x Forum Ventures hackathon building zenith.chat.

Includes:
- 9 specialized agents (planner, architect, tdd-guide, code-reviewer, etc.)
- 9 slash commands (tdd, plan, e2e, code-review, etc.)
- 8 rule files (security, coding-style, testing, git-workflow, etc.)
- 7 skills (coding-standards, backend-patterns, frontend-patterns, etc.)
- Hooks configuration (PreToolUse, PostToolUse, Stop)
- MCP server configurations (15 servers)
- Plugin/marketplace documentation
- Example configs (project CLAUDE.md, user CLAUDE.md, statusline)

Read the full guide: https://x.com/affaanmustafa/status/2012378465664745795

2026-01-17 17:49:33 -08:00

885 B

Raw Blame History

Security Guidelines

Mandatory Security Checks

Before ANY commit:

No hardcoded secrets (API keys, passwords, tokens)
All user inputs validated
SQL injection prevention (parameterized queries)
XSS prevention (sanitized HTML)
CSRF protection enabled
Authentication/authorization verified
Rate limiting on all endpoints
Error messages don't leak sensitive data

Secret Management

// NEVER: Hardcoded secrets
const apiKey = "sk-proj-xxxxx"

// ALWAYS: Environment variables
const apiKey = process.env.OPENAI_API_KEY

if (!apiKey) {
  throw new Error('OPENAI_API_KEY not configured')
}

Security Response Protocol

If security issue found:

STOP immediately
Use security-reviewer agent
Fix CRITICAL issues before continuing
Rotate any exposed secrets
Review entire codebase for similar issues

885 B Raw Blame History

Security Guidelines

Mandatory Security Checks

Secret Management

Security Response Protocol

885 B

Raw Blame History