Skip to content

docs: forbid customer/private identifiers in this public repo#667

Merged
steventohme merged 1 commit into
mainfrom
docs/public-repo-no-customer-names
Jul 7, 2026
Merged

docs: forbid customer/private identifiers in this public repo#667
steventohme merged 1 commit into
mainfrom
docs/public-repo-no-customer-names

Conversation

@steventohme

Copy link
Copy Markdown
Collaborator

Why

This repo is public. Customer/company names and other private identifiers have leaked into router PRs before (e.g. an org name in a loop-fix PR title/description). We want a standing rule that agents and humans see up front.

What

Adds one bullet to the top of the "Things to NEVER do" section, mirrored verbatim in both AGENTS.md and CLAUDE.md (per the files' mirror notice):

Never put customer/company/org names or private identifiers in anything committed here. This repo is public — commit messages, branch names, PR titles/descriptions, code comments, tests, and fixtures are world-readable. This holds even when a change is motivated by one customer's investigation … describe the trigger generically ("a customer", "a large agentic session", "an org's monorepo"). No org names, org IDs, account emails, internal ticket/Linear links, or verbatim private Slack/support excerpts — those stay in the private WorkWeave repo + Linear.

Instruction-layer guardrail only — it loads into any agent working in a router checkout. A mechanical backstop (pre-push/CI grep against a private denylist) can follow if we want a hard block.

🤖 Generated with Claude Code

Add a "Things to NEVER do" rule (mirrored in AGENTS.md + CLAUDE.md) that
customer/company/org names and other private identifiers must never appear
in anything committed to this public repo — commit messages, branch names,
PR titles/descriptions, comments, tests, or fixtures — even when a change
was motivated by a specific customer's investigation.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
@greptile-apps

greptile-apps Bot commented Jul 7, 2026

Copy link
Copy Markdown

T-Rex T-Rex Logs

What T-Rex did

  • The initial validation attempt was captured in docs_guardrail-01-before.log, recording placement and byte-for-byte mirroring and showing that the exact phrase check was not satisfied by the actual wording.
  • The corrected validation attempt is captured in docs_guardrail-02-after.log, showing exit code 0 along with line numbers, extracted bullet text, immediate-placement result, and the complete byte-for-byte mirror and guardrail content checks being satisfied.

View all artifacts

T-Rex Ran code and verified through T-Rex

Reviews (1): Last reviewed commit: "docs: forbid customer/private identifier..." | Re-trigger Greptile

@steventohme steventohme merged commit 9e515f8 into main Jul 7, 2026
9 checks passed
@steventohme steventohme deleted the docs/public-repo-no-customer-names branch July 7, 2026 18:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant