Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

terryyin/tty-assert-release

Name: tty-assert-release
Author: terryyin

.cursor/skills/tty-assert-release/SKILL.md

npx skillsauth add terryyin/tty-assert tty-assert-release

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

tty-assert: cut an npm release

Human-oriented detail: docs/release.md.

Preconditions

Default release branch is main unless the user specifies another branch.
Working tree should be clean before committing; resolve or stash unrelated changes first.
If the target version is unclear, ask for X.Y.Z (semver) before editing files.

Steps (execute in order)

CHANGELOG — In CHANGELOG.md, insert a new section immediately after # Changelog:
```
## [X.Y.Z] - YYYY-MM-DD

- Concise bullets: what changed for users or integrators.
```
Use today’s date in ISO form (YYYY-MM-DD). The heading must be exactly ## [X.Y.Z] (no v); this string is what .github/workflows/release.yml greps for.
Version — Set "version": "X.Y.Z" in package.json to match.
Verify — From repo root, run (use nix develop -c before these if the user’s environment requires it):
```
pnpm lint && pnpm test && pnpm build
```
Fix any failures before committing.

Commit — Stage at least CHANGELOG.md and package.json:

git add CHANGELOG.md package.json
git commit -m "chore: release vX.Y.Z"

Tag — Create an annotated or lightweight tag vX.Y.Z on that commit:
```
git tag vX.Y.Z
```
Push — Push the branch first, then the tag (replace main if needed):
```
git push origin main
git push origin vX.Y.Z
```
Handoff — Tell the user to watch GitHub → Actions → Release for the run triggered by vX.Y.Z. Remind them that Trusted Publishing must already link this repo to npm (see docs/release.md).

Do not

Push a tag without the matching ## [X.Y.Z] block in CHANGELOG.md (CI will fail).
Skip pnpm lint, pnpm test, or pnpm build before the release commit unless the user explicitly accepts that risk.

terryyin/tty-assert-release

.cursor/skills/tty-assert-release/SKILL.md

Prepares an npm release for tty-assert: edits CHANGELOG.md and package.json, verifies lint/test/build, commits, tags vX.Y.Z, and pushes branch plus tag to trigger GitHub Actions Release. Use when the user asks to release, publish to npm, ship a version, cut a tag, or bump the package version for tty-assert.

development

Updated Apr 16, 2026

$ install --global

skillsauth

npx skillsauth add terryyin/tty-assert tty-assert-release

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 16, 2026, 3:02 PM4.8s1 file scanned

SKILL.md

name:: tty-assert-release
description:: >-
Prepares an npm release for tty-assert:: edits CHANGELOG.md and package.json,

tty-assert: cut an npm release

Human-oriented detail: docs/release.md.

Preconditions

Default release branch is main unless the user specifies another branch.
Working tree should be clean before committing; resolve or stash unrelated changes first.
If the target version is unclear, ask for X.Y.Z (semver) before editing files.

Steps (execute in order)

CHANGELOG — In CHANGELOG.md, insert a new section immediately after # Changelog:
```
## [X.Y.Z] - YYYY-MM-DD

- Concise bullets: what changed for users or integrators.
```
Use today’s date in ISO form (YYYY-MM-DD). The heading must be exactly ## [X.Y.Z] (no v); this string is what .github/workflows/release.yml greps for.
Version — Set "version": "X.Y.Z" in package.json to match.
Verify — From repo root, run (use nix develop -c before these if the user’s environment requires it):
```
pnpm lint && pnpm test && pnpm build
```
Fix any failures before committing.

Commit — Stage at least CHANGELOG.md and package.json:

git add CHANGELOG.md package.json
git commit -m "chore: release vX.Y.Z"

Tag — Create an annotated or lightweight tag vX.Y.Z on that commit:
```
git tag vX.Y.Z
```
Push — Push the branch first, then the tag (replace main if needed):
```
git push origin main
git push origin vX.Y.Z
```
Handoff — Tell the user to watch GitHub → Actions → Release for the run triggered by vX.Y.Z. Remind them that Trusted Publishing must already link this repo to npm (see docs/release.md).

Do not

Push a tag without the matching ## [X.Y.Z] block in CHANGELOG.md (CI will fail).
Skip pnpm lint, pnpm test, or pnpm build before the release commit unless the user explicitly accepts that risk.

Related Skills

terryyin/phased-planning

tools

VerifiedTrustedCommunity

Decompose tasks into phased plans with one behavior per phase. Use when planning new features, breaking down large tasks, when a task has been in progress for over 10 minutes, or when the planning timer hook fires. Triggers on: plan, decompose, phases, break down, task too large, stuck.

SKILL.mdUpdated Apr 16, 2026

terryyin/phased-planning

terryyin/bug-fixing

testing

VerifiedTrustedCommunity

Fix bugs with a test-first workflow. Use when the user reports a bug, asks to fix a defect, or describes unexpected behavior. Triggers on: bug, fix, defect, broken, regression, not working, unexpected behavior.

SKILL.mdUpdated Apr 16, 2026

openclaw/openclaw-secret-scanning-maintainer

development

VerifiedTrustedCommunity

Maintainer-only workflow for handling GitHub Secret Scanning alerts on OpenClaw. Use when Codex needs to triage, redact, clean up, and resolve secret leakage found in issue comments, issue bodies, PR comments, or other GitHub content.

357,764SKILL.mdUpdated Apr 15, 2026

openclaw/openclaw-secret-scanning-maintainer

openclaw/openclaw-release-maintainer

development

VerifiedTrustedCommunity

Maintainer workflow for OpenClaw releases, prereleases, changelog release notes, and publish validation. Use when Codex needs to prepare or verify stable or beta release steps, align version naming, assemble release notes, check release auth requirements, or validate publish-time commands and artifacts.

357,764SKILL.mdUpdated Apr 10, 2026

openclaw/openclaw-release-maintainer

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/terryyin/tty-assert.git

# Copy into Claude Code skills folder (global)
cp -r tty-assert/.cursor/skills/tty-assert-release ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

terryyin/tty-assert

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT