← Back to list
validate-git-safety
by cowwoc
AI Agents that land on their feet
⭐ 2🍴 0📅 Jan 25, 2026
Run in ManusSKILL.md
name: validate-git-safety description: Validate git operations won't affect protected branches or cause data loss
Validate Git Safety Skill
Purpose: Validate git history-rewriting operations won't affect protected branches or cause unintended data loss.
When to Use
- Before
git filter-branch - Before
git rebasewith--allor--branches - Before any history-rewriting operation
- Before deleting branches
Protected Branch Patterns
Version Branches (NEVER modify)
- Pattern:
v[0-9]+(e.g., v1, v13, v21) - Protection: NEVER delete, rewrite history, or force push
Main/Master (careful modifications only)
- Only fast-forward merges
- No history rewriting
Task Branches
- Treat as immutable after completion
Dangerous Commands
# NEVER use --all with history rewriting
git filter-branch --all
git rebase --all
# NEVER force push without explicit request
git push --force
git push -f
# NEVER delete version branches
git branch -D v21
# NEVER rebase shared branches
git checkout main
git rebase feature # Rewrites main!
Safe Alternatives
# Target specific branch (not --all)
git filter-branch main
# Rebase feature onto main (not main onto feature)
git checkout feature
git rebase main
# Use --force-with-lease instead of --force
git push --force-with-lease
# Move version branch pointer forward (not rewrite)
git branch -f v21 <new-commit>
Worktree Verification (M101)
During CAT task execution, NEVER operate on the main /workspace worktree.
# Before ANY git operation in a CAT task, verify location:
CURRENT_DIR=$(pwd)
if [[ "$CURRENT_DIR" == "/workspace" ]] && [[ -d "/workspace/.worktrees" ]]; then
echo "BLOCKED: Currently in main worktree while task worktrees exist"
echo "Expected: /workspace/.worktrees/<task-name>"
echo "Current: $CURRENT_DIR"
exit 1
fi
Check for active task worktrees:
# If any worktrees exist, you should be in one of them (not main)
if ls -d /workspace/.worktrees/*/ 2>/dev/null | head -1 | grep -q .; then
# Worktrees exist - verify we're in one
if [[ "$(pwd)" == "/workspace" ]]; then
echo "ERROR: Task worktrees exist but operating on main"
ls /workspace/.worktrees/
exit 1
fi
fi
Pre-Operation Checklist
Before any history-rewriting operation:
- List all branches:
git branch -a - Identify protected branches:
git branch | grep -E "^ v[0-9]+" - Verify command targets specific branch (not --all)
- Create backup:
git branch backup-before-op-$(date +%Y%m%d-%H%M%S) - Execute operation
- Verify protected branches unchanged
- Cleanup backup
Validation Before Dangerous Operations
# Before running dangerous command, check:
COMMAND="git filter-branch --tree-filter 'rm secrets.txt' HEAD"
# Check for dangerous flags
if echo "$COMMAND" | grep -qE "(--all|--branches)"; then
echo "BLOCKED: --all/--branches affects protected branches"
echo "Use: git filter-branch <branch-name>"
exit 1
fi
# Check target isn't version branch
TARGET=$(echo "$COMMAND" | grep -oE "v[0-9]+")
if [[ -n "$TARGET" ]]; then
echo "BLOCKED: Cannot modify version branch $TARGET"
exit 1
fi
echo "Command appears safe"
Recovery If Protected Branch Modified
# If version branch history was modified:
# 1. Check reflog for original position
git reflog show v21
# 2. Reset to original commit
git branch -f v21 v21@{1}
# 3. Verify restored
git log v21 -5 --oneline
Success Criteria
- Identified all protected branches
- Command doesn't use --all or --branches
- Command doesn't target version branches
- Backup created before operation
- Protected branches unchanged after operation
Score
Total Score
65/100
Based on repository quality metrics
✓SKILL.md
SKILL.mdファイルが含まれている
+20
✓LICENSE
ライセンスが設定されている
+10
○説明文
100文字以上の説明がある
0/10
○人気
GitHub Stars 100以上
0/15
✓最近の活動
1ヶ月以内に更新
+10
○フォーク
10回以上フォークされている
0/5
✓Issue管理
オープンIssueが50未満
+5
✓言語
プログラミング言語が設定されている
+5
✓タグ
1つ以上のタグが設定されている
+5
Reviews
💬
Reviews coming soon
