n4m3z/GuardRails
skills/GuardRails/SKILL.md
Safety guardrails: runtime overrides for AI-safety plugin blocks, and per-language security review for python, javascript/typescript, and go. USE WHEN a safety plugin blocks a command, sandbox blocked, git reset --hard blocked, rm -rf blocked, workaround for a blocked command, safety plugin configuration, security review, secure-by-default coding, vulnerability report.
$ install --global
skillsauthnpx skillsauth add n4m3z/forge-core GuardRailsInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 15, 2026, 6:05 AM157.5s4 files scanned
SKILL.md
- name:
- GuardRails
- description:
- Safety guardrails: runtime overrides for AI-safety plugin blocks, and per-language security review for python, javascript/typescript, and go. USE WHEN a safety plugin blocks a command, sandbox blocked, git reset --hard blocked, rm -rf blocked, workaround for a blocked command, safety plugin configuration, security review, secure-by-default coding, vulnerability report.
- version:
- 0.2.0
- allowed-tools:
- Read, Grep, Glob, Write, Edit
GuardRails
Two related disciplines under one roof: making sure execution doesn't go wrong at runtime, and making sure code doesn't ship with foreseeable vulnerabilities. Read the relevant companion based on the current need.
Companions
- SafetyOverride.md — operating under AI-safety plugins that gate destructive commands; how to recognize blocks and recover.
- SafetyNet.md — reference for claude-code-safety-net: rules, workarounds, when not to disable.
- SecurityReview.md — per-language security review (python, javascript/typescript, go); secure-by-default coding, passive detection, full vulnerability reports.
Future safety plugins land as sibling companions following the same shape: overview, what they catch, workarounds, configuration, when not to disable.
Routing
| Trigger | Read |
| ------------------------------------------------------------- | ----------------------------------- |
| A command just got blocked with a safety-plugin error | The plugin's companion (SafetyNet.md and similar) |
| Configuring a safety plugin for the first time | The plugin's companion |
| Considering whether to disable or override a rule | SafetyOverride.md |
| User requests a security review of code | SecurityReview.md |
| Starting a new project, want secure-by-default coding | SecurityReview.md |
| Producing a vulnerability report | SecurityReview.md |
Cross-cutting constraints
- Never disable a safety plugin to push a blocked command through.
- Never retry a blocked command with cosmetic variations to slip past the regex.
- For irrecoverable operations (force-push to main, drop production table, unbounded
rm), prefer hand-off to the user over attempting the command yourself. - Security review triggers only on explicit security-review requests, never on generic code review or debugging.
Related Skills
n4m3z/Wtf
development
VerifiedTrustedCommunity
Reactive correction and root-cause fix. USE WHEN something went wrong, user is frustrated, demands a correction, says wtf, what the hell, why did you, that's wrong, this is broken, no not that, stop. Executes the immediate fix, then hunts the upstream artifact that caused it and creates a corrective change.
4SKILL.mdUpdated May 28, 2026
n4m3z/ResearchTopic
development
VerifiedTrustedCommunity
Decompose a research question into sub-queries, spawn parallel WebResearcher agents per angle, synthesize findings with citations and explicit confidence. USE WHEN the user asks to research, investigate, look online, look up, dig into, find sources, gather evidence, or survey what's known about a topic. Single-pass; for multi-round adversarial research use ResearchCouncil in forge-council.
4SKILL.mdUpdated May 27, 2026
n4m3z/WriteDocs
tools
VerifiedTrustedCommunity
Author project documentation that future humans (and AI sessions) actually read. Covers TLDRs for tools, READMEs, runbooks, journals. USE WHEN write documentation, create tldr, tool one-pager, document a cli, write readme, runbook, journal entry, capture knowledge about a tool, distill a session into reusable notes.
4SKILL.mdUpdated May 25, 2026
n4m3z/StagedReview
development
VerifiedTrustedCommunity
Review your own staged changes via a code-review TUI before triggering a commit. USE WHEN about to commit, walking through your own staged diff, self-reviewing before approval, tuicr, revdiff, git diff cached.
4SKILL.mdUpdated May 25, 2026