Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

regenrek/no-mistakes

Name: no-mistakes
Author: regenrek

skills/no-mistakes/SKILL.md

npx skillsauth add regenrek/agent-skills no-mistakes

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

No Mistakes

Overview

Use no-mistakes as the repo's finished-feature workflow: inspect readiness, verify the local branch, push through the no-mistakes remote when approved, attach to the run, and help the user react to pipeline findings until PR/CI is ready.

Guardrails

Treat git push no-mistakes, bare no-mistakes -y, and CI auto-fix runs as remote-affecting operations. Ask before running them unless the user explicitly requested a push/PR flow.
Prefer explicit repo commands in .no-mistakes.yaml over agent auto-detection for repeatable gates.
Use bundled scripts with a generic Python runner (python3 first, then python) and no external dependencies.
Run commands from the target Git repo root when initializing, configuring, or checking status.
Use command -v and no-mistakes doctor for prerequisites. Avoid hard-coded local binary paths in reusable instructions.
Treat install commands as a fallback only when no-mistakes is missing or broken.

Deterministic Check

Start with the bundled health check when inspecting an existing repo. Resolve scripts/check_no_mistakes.py relative to this skill folder, then run it with whichever Python command exists:

python3 <skill-dir>/scripts/check_no_mistakes.py --cwd .
python <skill-dir>/scripts/check_no_mistakes.py --cwd .

Use --json when you need machine-readable output:

python3 <skill-dir>/scripts/check_no_mistakes.py --cwd . --json

The script is read-only and standard-library only. It checks git, no-mistakes, provider CLIs, supported agent binaries, origin and no-mistakes remotes, .no-mistakes.yaml, and no-mistakes doctor.

Finished Feature Workflow

Use this flow when the user says the feature is done and would normally run git push.

1. Inspect readiness

Run the deterministic check from the repo root:

python3 <skill-dir>/scripts/check_no_mistakes.py --cwd .

If python3 is unavailable, use:

python <skill-dir>/scripts/check_no_mistakes.py --cwd .

Then inspect Git state:

git status --short --branch
git branch --show-current
git remote -v
no-mistakes status
no-mistakes runs --limit 10

Stop and ask before continuing if:

the branch is dirty and the user did not ask you to commit
the current branch is main, master, develop, or another protected base branch
origin is missing
the no-mistakes remote is missing and no-mistakes init has not been approved
no-mistakes doctor reports a hard failure

2. Confirm the intended push

Before any remote-affecting command, state the exact branch and command:

Ready to push <branch> through no-mistakes with:
git push no-mistakes <branch>

Ask for confirmation unless the user already explicitly requested the no-mistakes push.

3. Push through the gate

Run:

git push no-mistakes <branch>

Do not use git push origin in this workflow.

4. Attach and drive the run

Open or attach to the active run:

no-mistakes

If the run is not active or you need a specific run:

no-mistakes attach

5. Handle findings

For each blocking finding:

summarize the exact step (rebase, review, test, document, lint, push, pr, or ci)
quote the important error/finding text
decide whether it is user-decision, code-fix, config-fix, or external-service failure
implement code/config fixes only when the user asked you to fix
rerun or continue the no-mistakes flow after fixes

If the run needs another attempt:

no-mistakes rerun

6. Report outcome

End with:

branch pushed or not pushed
PR URL if no-mistakes created/updated one
CI state if available
remaining blockers, if any

Bypass And Wizard

Use skip only for an explicitly accepted one-off bypass:

no-mistakes --skip test,lint
git push -o no-mistakes.skip=test,lint no-mistakes <branch>

Use the wizard for uncommitted work only when the user wants no-mistakes to guide branch/commit/push:

no-mistakes
no-mistakes -y

Missing Binary

First check whether it is already available:

command -v no-mistakes
no-mistakes --version

If it is missing or broken, choose one install path:

# macOS/Linux release binary; installs/restarts daemon
curl -fsSL https://raw.githubusercontent.com/kunchenguid/no-mistakes/main/docs/install.sh | sh

# Go install; telemetry off by default unless configured at runtime
go install github.com/kunchenguid/no-mistakes/cmd/no-mistakes@latest

# Source checkout
make build
make install

After install:

no-mistakes doctor

Required: git and at least one supported agent binary (claude, codex, opencode, acli for Rovo Dev, pi) or acpx for an ACP target. For PR/CI steps, GitHub uses gh, GitLab uses glab, and Bitbucket Cloud uses NO_MISTAKES_BITBUCKET_EMAIL plus NO_MISTAKES_BITBUCKET_API_TOKEN.

Repo Setup

Initialize a repo that already has an origin remote:

git remote -v
no-mistakes init

This adds a local no-mistakes remote and creates gate state under ~/.no-mistakes unless NM_HOME is set. It does not remove origin.

Remove a gate from the current repo:

no-mistakes eject

Configure

Prefer a repo-level .no-mistakes.yaml with explicit commands:

agent: codex

commands:
  test: "go test -race ./..."
  lint: "go vet ./..."
  format: "gofmt -w ."

ignore_patterns:
  - "*.generated.go"
  - "vendor/**"

auto_fix:
  rebase: 3
  review: 0
  test: 3
  document: 3
  lint: 3
  ci: 3

Adjust commands to the repo's real test/lint/format entrypoints. If commands are omitted, the selected agent tries to detect checks.

Use global config for machine-local agent paths or flags:

# ~/.no-mistakes/config.yaml
agent: auto

agent_path_override:
  codex: /absolute/path/to/codex

Do not put machine-local paths, approval modes, or personal model choices into .no-mistakes.yaml unless the repo intentionally owns that policy.

Pipeline Mental Model

The pipeline order is:

intent -> rebase -> review -> test -> document -> lint -> push -> pr -> ci

Key distinctions:

Local deterministic checks come from commands.test, commands.lint, and commands.format.
AI judgment covers diff review, missing-doc checks, auto-fix attempts, and check detection when commands are absent.
Remote CI still belongs to the Git provider; no-mistakes watches it and can ask the agent to fix failed jobs.

Troubleshooting

If doctor cannot find an agent, check PATH first, then set agent_path_override in ~/.no-mistakes/config.yaml.
If the daemon misses environment variables, put them in shell startup files loaded by a login shell, then restart the daemon.
If PR or CI steps skip, verify gh/glab authentication or Bitbucket env vars.
If tests are flaky because optional CLIs exist on the machine, rerun with a scoped PATH and report the exact command and failure.
If the user asks what "clean" means, explain it as "the branch passed the configured local and remote gates"; do not imply perfection.

regenrek/no-mistakes

skills/no-mistakes/SKILL.md

Use the no-mistakes gated push workflow in Git repositories. Use when the user wants to check no-mistakes readiness, initialize or inspect a gate, configure .no-mistakes.yaml, push through the no-mistakes remote, attach to runs, interpret/fix pipeline findings, rerun status/runs/doctor, or use no-mistakes with Codex/Claude/OpenCode/Pi/ACP agents. Install guidance is secondary and only for missing or broken no-mistakes binaries.

114 stars

development

Updated May 17, 2026

$ install --global

skillsauth

npx skillsauth add regenrek/agent-skills no-mistakes

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 17, 2026, 5:20 AM57.7s4 files scanned

SKILL.md

name:: no-mistakes
description:: Use the no-mistakes gated push workflow in Git repositories. Use when the user wants to check no-mistakes readiness, initialize or inspect a gate, configure .no-mistakes.yaml, push through the no-mistakes remote, attach to runs, interpret/fix pipeline findings, rerun status/runs/doctor, or use no-mistakes with Codex/Claude/OpenCode/Pi/ACP agents. Install guidance is secondary and only for missing or broken no-mistakes binaries.

No Mistakes

Overview

Guardrails

Treat git push no-mistakes, bare no-mistakes -y, and CI auto-fix runs as remote-affecting operations. Ask before running them unless the user explicitly requested a push/PR flow.
Prefer explicit repo commands in .no-mistakes.yaml over agent auto-detection for repeatable gates.
Use bundled scripts with a generic Python runner (python3 first, then python) and no external dependencies.
Run commands from the target Git repo root when initializing, configuring, or checking status.
Use command -v and no-mistakes doctor for prerequisites. Avoid hard-coded local binary paths in reusable instructions.
Treat install commands as a fallback only when no-mistakes is missing or broken.

Deterministic Check

Start with the bundled health check when inspecting an existing repo. Resolve scripts/check_no_mistakes.py relative to this skill folder, then run it with whichever Python command exists:

python3 <skill-dir>/scripts/check_no_mistakes.py --cwd .
python <skill-dir>/scripts/check_no_mistakes.py --cwd .

Use --json when you need machine-readable output:

python3 <skill-dir>/scripts/check_no_mistakes.py --cwd . --json

Finished Feature Workflow

Use this flow when the user says the feature is done and would normally run git push.

1. Inspect readiness

Run the deterministic check from the repo root:

python3 <skill-dir>/scripts/check_no_mistakes.py --cwd .

If python3 is unavailable, use:

python <skill-dir>/scripts/check_no_mistakes.py --cwd .

Then inspect Git state:

git status --short --branch
git branch --show-current
git remote -v
no-mistakes status
no-mistakes runs --limit 10

Stop and ask before continuing if:

the branch is dirty and the user did not ask you to commit
the current branch is main, master, develop, or another protected base branch
origin is missing
the no-mistakes remote is missing and no-mistakes init has not been approved
no-mistakes doctor reports a hard failure

2. Confirm the intended push

Before any remote-affecting command, state the exact branch and command:

Ready to push <branch> through no-mistakes with:
git push no-mistakes <branch>

Ask for confirmation unless the user already explicitly requested the no-mistakes push.

3. Push through the gate

Run:

git push no-mistakes <branch>

Do not use git push origin in this workflow.

4. Attach and drive the run

Open or attach to the active run:

no-mistakes

If the run is not active or you need a specific run:

no-mistakes attach

5. Handle findings

For each blocking finding:

summarize the exact step (rebase, review, test, document, lint, push, pr, or ci)
quote the important error/finding text
decide whether it is user-decision, code-fix, config-fix, or external-service failure
implement code/config fixes only when the user asked you to fix
rerun or continue the no-mistakes flow after fixes

If the run needs another attempt:

no-mistakes rerun

6. Report outcome

End with:

branch pushed or not pushed
PR URL if no-mistakes created/updated one
CI state if available
remaining blockers, if any

Bypass And Wizard

Use skip only for an explicitly accepted one-off bypass:

no-mistakes --skip test,lint
git push -o no-mistakes.skip=test,lint no-mistakes <branch>

Use the wizard for uncommitted work only when the user wants no-mistakes to guide branch/commit/push:

no-mistakes
no-mistakes -y

Missing Binary

First check whether it is already available:

command -v no-mistakes
no-mistakes --version

If it is missing or broken, choose one install path:

# macOS/Linux release binary; installs/restarts daemon
curl -fsSL https://raw.githubusercontent.com/kunchenguid/no-mistakes/main/docs/install.sh | sh

# Go install; telemetry off by default unless configured at runtime
go install github.com/kunchenguid/no-mistakes/cmd/no-mistakes@latest

# Source checkout
make build
make install

After install:

no-mistakes doctor

Repo Setup

Initialize a repo that already has an origin remote:

git remote -v
no-mistakes init

This adds a local no-mistakes remote and creates gate state under ~/.no-mistakes unless NM_HOME is set. It does not remove origin.

Remove a gate from the current repo:

no-mistakes eject

Configure

Prefer a repo-level .no-mistakes.yaml with explicit commands:

agent: codex

commands:
  test: "go test -race ./..."
  lint: "go vet ./..."
  format: "gofmt -w ."

ignore_patterns:
  - "*.generated.go"
  - "vendor/**"

auto_fix:
  rebase: 3
  review: 0
  test: 3
  document: 3
  lint: 3
  ci: 3

Adjust commands to the repo's real test/lint/format entrypoints. If commands are omitted, the selected agent tries to detect checks.

Use global config for machine-local agent paths or flags:

# ~/.no-mistakes/config.yaml
agent: auto

agent_path_override:
  codex: /absolute/path/to/codex

Do not put machine-local paths, approval modes, or personal model choices into .no-mistakes.yaml unless the repo intentionally owns that policy.

Pipeline Mental Model

The pipeline order is:

intent -> rebase -> review -> test -> document -> lint -> push -> pr -> ci

Key distinctions:

Local deterministic checks come from commands.test, commands.lint, and commands.format.
AI judgment covers diff review, missing-doc checks, auto-fix attempts, and check detection when commands are absent.
Remote CI still belongs to the Git provider; no-mistakes watches it and can ask the agent to fix failed jobs.

Troubleshooting

If doctor cannot find an agent, check PATH first, then set agent_path_override in ~/.no-mistakes/config.yaml.
If the daemon misses environment variables, put them in shell startup files loaded by a login shell, then restart the daemon.
If PR or CI steps skip, verify gh/glab authentication or Bitbucket env vars.
If tests are flaky because optional CLIs exist on the machine, rerun with a scoped PATH and report the exact command and failure.
If the user asks what "clean" means, explain it as "the branch passed the configured local and remote gates"; do not imply perfection.

Related Skills

regenrek/electron-live-test

tools

VerifiedTrustedCommunity

Live-test any Electron desktop app with native-devtools-mcp, Chrome DevTools Protocol, screenshots, OCR, and accessibility tools. Use when the user asks for Electron UI verification, MCP-driven app control, renderer CDP interaction, native desktop automation, screenshots, or OCR-driven checks.

124SKILL.mdUpdated May 28, 2026

regenrek/electron-live-test

regenrek/search-context

testing

VerifiedTrustedCommunity

Find, clone, inspect, and summarize high-quality GitHub reference repositories for coding agents. Use when a user asks for GitHub reference projects, examples, prior art, inspiration, implementation patterns, or includes "$search-context" in a coding prompt.

124SKILL.mdUpdated May 17, 2026

regenrek/search-context

regenrek/secleak-check

testing

VerifiedTrustedCommunity

Run or install repo security leak checks with BetterLeaks and Trivy. Use when asked to scan for leaked secrets, vulnerable dependencies, misconfigurations, add secret-leak guardrails, add BetterLeaks, add forbidden-path hooks, or run secleak-check before release.

114SKILL.mdUpdated May 17, 2026

regenrek/secleak-check

regenrek/package-security-check

development

VerifiedTrustedCommunity

Run a reusable JavaScript supply-chain security baseline with pnpm-first hardening, release-age gating, lifecycle-script controls, exotic dependency checks, CI install checks, and optional incident IOC profiles.

114SKILL.mdUpdated May 13, 2026

regenrek/package-security-check

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/regenrek/agent-skills.git

# Copy into Claude Code skills folder (global)
cp -r agent-skills/skills/no-mistakes ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

regenrek/agent-skills

114 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT