BERORINPO
|
db7f2a6fd5
|
fix(skills): move top-level origin frontmatter key under metadata
The official Agent Skills spec (agentskills.io/specification) whitelists exactly
6 top-level frontmatter keys (name/description/license/compatibility/metadata/
allowed-tools). A top-level `origin` key fails the official validator
(anthropics/skills quick_validate.py ALLOWED_PROPERTIES; skills-ref validate).
This moves `origin: X` -> `metadata.origin: X` across the canonical skills/
tree, preserving each value verbatim. Frontmatter-only, minimal diff.
- 251 SKILL.md updated (242 new metadata block, 9 appended to existing metadata)
- origin values preserved verbatim (verified 251/251)
- YAML validated on all changed files
- scoped to canonical skills/ only (docs/<lang> translations + tool mirrors
.cursor/.kiro/.agents left untouched; presumably regenerated from canonical)
Addresses #2233
|
2026-06-11 21:12:21 +09:00 |
|
elmochilyas
|
06c376ae8b
|
feat(skills): add laravel-security, laravel-tdd, and php-reviewer agent (#2122)
* feat(skills): add laravel-security, laravel-tdd, and php-reviewer agent
* fix: resolve code review findings across laravel-security, laravel-tdd, and php-reviewer
- laravel-security: replace env() with config() in runtime code,
replace wildcard trusted proxies with CIDR ranges, remove blanket
api/* CSRF exclusion, fix validated() return type, add null-safe
rate limiter user access, sync mimes/extensions allowlists,
replace #[Encrypted] with ShouldBeEncrypted, fix RateLimited args
- laravel-tdd: remove global withoutExceptionHandling() from setUp,
remove contradictory assertNothingOutgoing(), fix undefined
variable, replace invalid PHPUnit --min-coverage flag
- php-reviewer: fix Python contamination, add automated check
requirement to approval criteria
* fix: align php-reviewer approval criteria and use config dot-notation keys
- agents/php-reviewer.md: sync approval criteria with .txt file version
(add automated checks requirement for consistency across harnesses)
- skills/laravel-security/SKILL.md: replace raw env names with proper
Laravel dot-notation config keys (app.key, services.stripe.*, etc.)
so config() returns valid values instead of null
* fix: remove unnecessary secret validation for SMTP password
|
2026-06-07 13:29:12 +08:00 |
|
Sam Rook
|
113119dc6f
|
feat: add laravel skills (#420)
* feat: add laravel skills
* docs: fix laravel patterns example
* docs: add laravel api example
* docs: update readme and configure-ecc for laravel skills
* docs: reference laravel skills in php rules
* docs: add php import guidance
* docs: expand laravel skills with more pattern, security, testing, and verification examples
* docs: add laravel routing, security, testing, and sail guidance
* docs: fix laravel example issues from code review
* docs: fix laravel examples and skills per review findings
* docs: resolve remaining laravel review fixes
* docs: refine laravel patterns and tdd guidance
* docs: clarify laravel queue healthcheck guidance
* docs: fix laravel examples and test guidance
* docs: correct laravel tdd and api example details
* docs: align laravel form request auth semantics
* docs: fix laravel coverage, imports, and scope guidance
* docs: align laravel tdd and security examples with guidance
* docs: tighten laravel form request authorization examples
* docs: fix laravel tdd and queue job examples
* docs: harden laravel rate limiting and policy examples
* docs: fix laravel pagination, validation, and verification examples
* docs: align laravel controller response with envelope
* docs: strengthen laravel password validation example
* docs: address feedback regarding examples
* docs: improve guidance and examples for pest usage
* docs: clarify laravel upload storage and authorization notes
* docs: tighten up examples
|
2026-03-16 13:35:23 -07:00 |
|