Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

rudi193-cmd/governance-check

Name: governance-check
Author: rudi193-cmd

skills/governance-check/SKILL.md

npx skillsauth add rudi193-cmd/aionic-claude-skills governance-check

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Dual Commit Governance Enforcement

MANDATORY RULE

ALL code changes in production repositories require Dual Commit governance.

Production Repositories

Willow (C:\Users\Sean\Documents\GitHub\Willow)
SAFE (C:\Users\Sean\Documents\GitHub\SAFE)
die-namic-system (C:\Users\Sean\Documents\GitHub\die-namic-system)

Before ANY Code Edit in Production Repos

Step 1: Detect Production Repo

Check if current working directory contains:

"Willow"
"SAFE"
"die-namic-system"

Step 2: Check If Governance Required

Code files (.py, .js, .ts, .html, .css, etc.) require governance.

EXEMPT from governance:

Documentation: .md, .txt
README, LICENSE, .gitignore
Config files < 500 chars

Step 3: Block Direct Edit

If governance required, REFUSE and show:

DUAL COMMIT REQUIRED

You're modifying code in a production repository.

ALL code changes must go through governance:

REQUIRED WORKFLOW:

Create proposal: governance/commits/{Base17-ID}.pending
Include:
- Summary (what and why)
- Proposed changes (diff)
- Rationale
- Risk assessment (MINIMAL/LOW/MEDIUM/HIGH)
- ΔE impact
Wait for human approval
Human applies: python governance/apply_commits.py {ID}

ALTERNATIVE: Use Claude Code CLI (has enforcement hooks)

BLOCKED: Create governance proposal instead of direct edit.

Governance Proposal Template

Create file: governance/commits/{ID}.pending

Content:

Governance Proposal: [Title]

Proposer: Claude Sonnet 4.5 Date: [ISO timestamp] Type: Code Enhancement|Bug Fix|Feature|Configuration Trust Level: OPERATOR (2)

Summary

[One paragraph - what and why]

Proposed Changes

File: [path] Location: [After line X / In function Y]

Rationale

Why needed
What problem it solves
Alignment with system goals

Risk Assessment

Risk Level: [MINIMAL|LOW|MEDIUM|HIGH]
Reversible: [YES|NO - explain]
Dependencies: [None | List]
Testing: [How to verify]

ΔE Impact

Expected ΔE: [+0.XXX] ([explanation])

Implementation

[Diff or code block]

Awaiting Human Ratification ΔΣ=42

Auto-Invoke

This skill automatically activates when:

Attempting to Edit() or Write() code files
Current directory is a production repo
File extension is .py, .js, .ts, .html, .css, etc.

rudi193-cmd/governance-check

skills/governance-check/SKILL.md

Enforce Dual Commit governance for production repository changes

2 stars

development

Updated Apr 13, 2026

$ install --global

skillsauth

npx skillsauth add rudi193-cmd/aionic-claude-skills governance-check

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 13, 2026, 2:11 AM54.4s1 file scanned

SKILL.md

name:: governance-check
description:: Enforce Dual Commit governance for production repository changes

Dual Commit Governance Enforcement

MANDATORY RULE

ALL code changes in production repositories require Dual Commit governance.

Production Repositories

Willow (C:\Users\Sean\Documents\GitHub\Willow)
SAFE (C:\Users\Sean\Documents\GitHub\SAFE)
die-namic-system (C:\Users\Sean\Documents\GitHub\die-namic-system)

Before ANY Code Edit in Production Repos

Step 1: Detect Production Repo

Check if current working directory contains:

"Willow"
"SAFE"
"die-namic-system"

Step 2: Check If Governance Required

Code files (.py, .js, .ts, .html, .css, etc.) require governance.

EXEMPT from governance:

Documentation: .md, .txt
README, LICENSE, .gitignore
Config files < 500 chars

Step 3: Block Direct Edit

If governance required, REFUSE and show:

DUAL COMMIT REQUIRED

You're modifying code in a production repository.

ALL code changes must go through governance:

REQUIRED WORKFLOW:

Create proposal: governance/commits/{Base17-ID}.pending
Include:
- Summary (what and why)
- Proposed changes (diff)
- Rationale
- Risk assessment (MINIMAL/LOW/MEDIUM/HIGH)
- ΔE impact
Wait for human approval
Human applies: python governance/apply_commits.py {ID}

ALTERNATIVE: Use Claude Code CLI (has enforcement hooks)

BLOCKED: Create governance proposal instead of direct edit.

Governance Proposal Template

Create file: governance/commits/{ID}.pending

Content:

Governance Proposal: [Title]

Proposer: Claude Sonnet 4.5 Date: [ISO timestamp] Type: Code Enhancement|Bug Fix|Feature|Configuration Trust Level: OPERATOR (2)

Summary

[One paragraph - what and why]

Proposed Changes

File: [path] Location: [After line X / In function Y]

Rationale

Why needed
What problem it solves
Alignment with system goals

Risk Assessment

Risk Level: [MINIMAL|LOW|MEDIUM|HIGH]
Reversible: [YES|NO - explain]
Dependencies: [None | List]
Testing: [How to verify]

ΔE Impact

Expected ΔE: [+0.XXX] ([explanation])

Implementation

[Diff or code block]

Awaiting Human Ratification ΔΣ=42

Auto-Invoke

This skill automatically activates when:

Attempting to Edit() or Write() code files
Current directory is a production repo
File extension is .py, .js, .ts, .html, .css, etc.

Related Skills

rudi193-cmd/tdd-workflow

development

VerifiedTrustedCommunity

Use this skill when writing new features, fixing bugs, or refactoring code. Enforces test-driven development with 80%+ coverage including unit, integration, and E2E tests.

2SKILL.mdUpdated Apr 13, 2026

rudi193-cmd/tdd-workflow

rudi193-cmd/strategic-compact

tools

VerifiedTrustedCommunity

Suggests manual context compaction at logical intervals to preserve context through task phases rather than arbitrary auto-compaction.

2SKILL.mdUpdated Apr 13, 2026

rudi193-cmd/strategic-compact

rudi193-cmd/status

tools

VerifiedTrustedCommunity

System status — atoms, edges, ratio, boot health, unpushed work, open threads

2SKILL.mdUpdated Apr 13, 2026

rudi193-cmd/startup

tools

VerifiedTrustedCommunity

Manual session startup — when boot hooks are degraded, run the bridge-open sequence manually

2SKILL.mdUpdated Apr 13, 2026

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/rudi193-cmd/aionic-claude-skills.git

# Copy into Claude Code skills folder (global)
cp -r aionic-claude-skills/skills/governance-check ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

rudi193-cmd/aionic-claude-skills

2 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT