fix(pm): add explicit write permissions boundary (fixes #52) #55

Merged

shoko merged 3 commits from fix/issue-52-pm-write-boundaries into main

2026-04-01 08:09:31 +02:00

Author	SHA1	Message	Date
shokollm	71cab655fc	make delegation format agnostic to git server Replace hardcoded git.fbrns.co/shoko/kugetsu with dynamic <domain>/<user>/<repo> format pulled from git remote and config. Makes PM skill usable with github.com, gitlab.com, or any git server.	2026-03-31 22:20:15 +00:00
shokollm	cb0ada9e1c	address PR #55 review: tighten write permissions to queue.json and logs/* only - PM can ONLY write to ~/.kugetsu/queue.json and ~/.kugetsu/logs/* (was entire ~/.kugetsu/) - Update delegation format to git.fbrns.co/shoko/kugetsu#<issue> - PM must not write new kugetsu scripts - delegate via issue/PR workflow - Update examples and violation cases to reflect stricter boundaries	2026-03-31 22:13:51 +00:00
shokollm	449dfaecc6	fix(pm): add explicit write permissions boundary to prevent repo file writes Issue #52: PM violated NEVER write code constraint by writing directly to repo files (SKILL.md) instead of delegating to a dev agent. Added explicit Write Permissions section defining: - PM can ONLY write to ~/.kugetsu/ - PM can NEVER write to repositories/, skills/, or any dir outside ~/.kugetsu/ - If asked to write outside ~/.kugetsu/, must delegate via kugetsu start	2026-03-31 22:00:16 +00:00

Author

SHA1

Message

Date

shokollm

71cab655fc

make delegation format agnostic to git server

Replace hardcoded git.fbrns.co/shoko/kugetsu with dynamic
<domain>/<user>/<repo> format pulled from git remote and config.
Makes PM skill usable with github.com, gitlab.com, or any git server.

2026-03-31 22:20:15 +00:00

shokollm

cb0ada9e1c

address PR #55 review: tighten write permissions to queue.json and logs/* only

- PM can ONLY write to ~/.kugetsu/queue.json and ~/.kugetsu/logs/* (was entire ~/.kugetsu/)
- Update delegation format to git.fbrns.co/shoko/kugetsu#<issue>
- PM must not write new kugetsu scripts - delegate via issue/PR workflow
- Update examples and violation cases to reflect stricter boundaries

2026-03-31 22:13:51 +00:00

shokollm

449dfaecc6

fix(pm): add explicit write permissions boundary to prevent repo file writes

Issue #52: PM violated NEVER write code constraint by writing directly to
repo files (SKILL.md) instead of delegating to a dev agent.

Added explicit Write Permissions section defining:
- PM can ONLY write to ~/.kugetsu/
- PM can NEVER write to repositories/*, skills/*, or any dir outside ~/.kugetsu/
- If asked to write outside ~/.kugetsu/, must delegate via kugetsu start

2026-03-31 22:00:16 +00:00

fix(pm): add explicit write permissions boundary (fixes #52) #55

3 Commits