jacobpevans/sync-permissions
config-management/skills/sync-permissions/SKILL.md
Merge local AI permission settings into repository-wide permissions
$ install --global
skillsauthnpx skillsauth add jacobpevans/claude-code-plugins sync-permissionsInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 22, 2026, 7:49 PM37.0s1 file scanned
SKILL.md
- name:
- sync-permissions
- description:
- Merge local AI permission settings into repository-wide permissions
Sync Permissions
Scan local AI settings across all repos/worktrees, analyze permissions, and merge approved changes into repository permissions.
Supported Tools
| AI Tool | Config Location | Sync Status |
| --- | --- | --- |
| Claude | agentsmd/permissions/ | Fully supported |
| Gemini | .gemini/permissions/ | Fully supported |
| Copilot | .github/copilot-instructions.md | Not yet supported |
Workflow
Phase 1: Discovery and Analysis
Scan home directory for AI permission settings, classify permissions, and deduplicate against existing patterns.
Currently scans:
- Claude settings from
~/.claude/settings.local.jsonin all repos/worktrees - Gemini settings from
~/.gemini/settings.jsonin all repos/worktrees
Phase 2: User Approval
Review analysis report. Ask user to approve, modify, or cancel.
Phase 3: Execution
Only after approval, apply changes, sync across tools, and cleanup local files.
Sync strategy:
- Merge permissions using a union approach
- When same permission exists in both tools with different classifications, prioritize Claude classification
- When permission exists only in Gemini, preserve and propagate to Claude
- Result: identical permission sets across all supported tools
Architecture
Command -> Agent -> Skill pattern:
- Agents:
permissions-analyzer,permissions-syncer - Skill:
permission-patterns(safety classification, deduplication, token-efficient extraction)
Related Skills
- quick-add-permission (config-management)
Related Skills
jacobpevans/self-hosted-runners
documentation
VerifiedTrustedCommunity
Use when editing GitHub Actions workflow files (.github/workflows/*.yml) in JacobPEvans repos. Documents when to target self-hosted RunsOn runners vs GitHub-hosted runners, the v3 label catalog used across the org, the required github.run_id segment, and the GitHub App allowlist prereq.
2SKILL.mdUpdated May 16, 2026
jacobpevans/refresh-repo
testing
VerifiedTrustedCommunity
Check PR merge readiness, sync local repo, cleanup stale worktrees; optional cross-repo sweep and stale-branch prune modes
2SKILL.mdUpdated Apr 28, 2026
jacobpevans/rebase-pr
tools
VerifiedTrustedCommunity
Local rebase-merge workflow for pull requests with signed commits
2SKILL.mdUpdated Apr 28, 2026
jacobpevans/gh-cli-patterns
tools
VerifiedTrustedCommunity
Canonical reference for all gh CLI command shapes used by skills in this plugin. Defines the placeholder convention, allowed --json fields, GraphQL fallback rules, -f/-F/--raw-field flag semantics, the PR-readiness gate, code-scanning alert query, review-thread fetch/count/resolve mutations, and heredoc bodies. Prevents Unknown JSON field errors and divergent query shapes.
2SKILL.mdUpdated Apr 28, 2026