Security & Compliancelow risk
metagit-release-audit
Mandatory before calling work complete when the session changed repo files. Runs format, lint, tests, integration tests, context-aware pip-audit/bandit, and optional gitleaks via task qa:prepush. Use before push, release, or hand-off.
metagit-ai/metagit-cli·src/metagit/data/skills/metagit-release-audit/SKILL.md
85/ 100质量分
导入这个 Skill
选择你的 coding agent,复制项目级或个人级安装命令。
导入当前项目.agents/skills/metagit-release-audit
npx skills add https://github.com/metagit-ai/metagit-cli/tree/482dfb3b7a407ca5e541657a6fcc9af619818243/src/metagit/data/skills/metagit-release-audit -a codex -y导入个人环境~/.agents/skills/metagit-release-audit
npx skills add https://github.com/metagit-ai/metagit-cli/tree/482dfb3b7a407ca5e541657a6fcc9af619818243/src/metagit/data/skills/metagit-release-audit -a codex -g -y导入当前项目.claude/skills/metagit-release-audit
npx skills add https://github.com/metagit-ai/metagit-cli/tree/482dfb3b7a407ca5e541657a6fcc9af619818243/src/metagit/data/skills/metagit-release-audit -a claude-code -y导入个人环境~/.claude/skills/metagit-release-audit
npx skills add https://github.com/metagit-ai/metagit-cli/tree/482dfb3b7a407ca5e541657a6fcc9af619818243/src/metagit/data/skills/metagit-release-audit -a claude-code -g -y导入当前项目.agents/skills/metagit-release-audit
npx skills add https://github.com/metagit-ai/metagit-cli/tree/482dfb3b7a407ca5e541657a6fcc9af619818243/src/metagit/data/skills/metagit-release-audit -a github-copilot -y导入个人环境~/.copilot/skills/metagit-release-audit
npx skills add https://github.com/metagit-ai/metagit-cli/tree/482dfb3b7a407ca5e541657a6fcc9af619818243/src/metagit/data/skills/metagit-release-audit -a github-copilot -g -y导入当前项目.agents/skills/metagit-release-audit
npx skills add https://github.com/metagit-ai/metagit-cli/tree/482dfb3b7a407ca5e541657a6fcc9af619818243/src/metagit/data/skills/metagit-release-audit -a cursor -y导入个人环境~/.cursor/skills/metagit-release-audit
npx skills add https://github.com/metagit-ai/metagit-cli/tree/482dfb3b7a407ca5e541657a6fcc9af619818243/src/metagit/data/skills/metagit-release-audit -a cursor -g -y导入当前项目.agents/skills/metagit-release-audit
npx skills add https://github.com/metagit-ai/metagit-cli/tree/482dfb3b7a407ca5e541657a6fcc9af619818243/src/metagit/data/skills/metagit-release-audit -a gemini-cli -y导入个人环境~/.gemini/skills/metagit-release-audit
npx skills add https://github.com/metagit-ai/metagit-cli/tree/482dfb3b7a407ca5e541657a6fcc9af619818243/src/metagit/data/skills/metagit-release-audit -a gemini-cli -g -yNative Gemini CLI
gemini skills install https://github.com/metagit-ai/metagit-cli.git --scope workspace --path src/metagit/data/skills/metagit-release-audit⚠ 安装命令使用开源 skills CLI。执行前请检查来源、脚本和权限。
Skill 指令
在 GitHub 查看原始文件 ↗# Auditing Release Readiness Use this skill **whenever** your session added or edited tracked files in this repository and you are about to hand off or say the task is done—not only “release” workflows. Read-only Q&A with no writes can skip it. ## Workflow 1. Run the pre-push quality gate. 2. Capture failing stage logs and iterate fixes. 3. Re-run until all required checks pass. 4. Return a short readiness summary. ## Commands - `task qa:prepush` - `task qa:prepush:loop -- 3` (optional bounded retry loop) ## Output Contract Return: - pass/fail status by stage (including `security_sync` / `security_audit` / `security_bandit` when triggered) - unresolved blockers (if any) - push readiness recommendation Security in the gate is context-aware: lockfile changes run `uv sync --frozen --all-extras` + `pip-audit` + `bandit`; `src/` changes run `pip-audit` + `bandit`; docs-only diffs skip security. Use `task security:scan` for a full manual run. ## Safety - Do not claim readiness unless checks are actually green.