improve monitoring-security skill with concrete configs and validation#1
Open
fernandezbaptiste wants to merge 1 commit into
Open
Conversation
Owner
|
Are you using AI to create PRs in bulk? |
rayjun
added a commit
that referenced
this pull request
May 24, 2026
Four small follow-ups to Round 6 P0: - AGENTS.md §6: merge process rules #1 and #6 (one was a restatement of the other) — six rules become five - AGENTS.md §9: drop the standalone "其他约定" section (only three lines about output style) and fold it into §4 as a "### 输出风格" subsection; AGENTS.md now runs §0–§8 contiguously - skills/obsidian-writer: prepend a "示例 skill" callout above the body, making clear this skill is here as a per-vault AGENTS.md design showcase rather than a feature this repo uses - README.md: skill count drops from 6 to 5 (Round 5 removed monitoring-security but README still claimed 6); also notes obsidian-writer's demo status Measured: AGENTS.md 5246 → 5092 chars (~50 tokens), orient-session output 2330 → 2226 bytes (~35 tokens). Round 6 (P0 + P1) cumulative savings ~205 tokens per session. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
rayjun
added a commit
that referenced
this pull request
May 25, 2026
Four edits removing the same rule restated in multiple places inside AGENTS.md: - §6 superpowers note: collapse the eight-skill name list down to "★ marks superpowers-provided" and put a ★ suffix on those rows in the step table — readers can now tell external from in-repo skills at a glance instead of cross-referencing the prelude - §6 prelude: drop the standalone "跳步前必须明确询问用户确认, 禁止静默跳过" line; the same rule is process rule #1 below - §2 matrix footnote: change "必做 = 禁止静默跳过, 跳须询问用户" to "必做 = 必须执行 (跳步规则见 §6)" so §2 and §6 stop saying the same thing in slightly different words - §8: remove the "Harness 提醒" bullet list (status-reminder.sh / drift-detector.sh / session-end.sh) — each hook's own header comment already says exactly the same thing, and the canonical registration list lives in .claude/settings.json Measured: AGENTS.md drops 5092 → 4708 chars (~128 tokens). "禁止静默" mentions inside AGENTS.md drop from 3 to 1 (only process rule #1 remains). danger-patterns 25/25 still PASS. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
hey @rayjun, nice work building out a full set of Claude Code skills for your ai-coding-context project. Kudos on the structured approach with 6 skills covering everything from debugging to vault management! I've just starred it.
ran your monitoring-security skill through agent evals and spotted a few quick wins that took it from
~65%to~86%performance:added copy-paste-ready configuration examples for Docker Compose (network isolation + non-root), Prometheus Basic Auth, Grafana RBAC, and Nginx TLS reverse proxy, replacing the abstract guidance that scored low on actionability
replaced the flat 4-step implementation list with a sequenced 5-step protocol (network isolation, auth, TLS, secrets, verification) with explicit validation checkpoints and expected outputs at each stage
condensed the redundant core patterns section (which duplicated the quick reference table) and added a concrete verification step with 6 specific commands to confirm TLS, auth, security headers, and container user
this means you and your contributors get an instant quality signal and improvement suggestions before you review.
these were easy changes to bring the skill in line with what performs well against Anthropic's best practices. honest disclosure, I work at tessl.io where we build tooling around this. not a pitch, just fixes that were straightforward to make.
if you want to review your other skills, two options: I can open a follow-up PR with a GitHub Action that auto-scores skill.md changes on every PR (no signup, no token needed - it runs fully in CI with pinned versions you can inspect). this means you and your contributors get an instant quality signal and improvement suggestions before you review.
Alternatively, if you'd rather do it yourself, spin up Claude Code and run
tessl skill review --optimizefor your other skills.happy to answer any questions on the changes.