Stats
Actions
Tags
From repo-polish
Use when setting up new repositories, auditing existing ones, or preparing repos for public visibility. Generates .gitignore, .env.example, README, and LICENSE files. Detects committed secrets and flags security issues.
How this skill is triggered — by the user, by Claude, or both
Slash command
/repo-polish:repo-polishThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
| Item | Required | Check |
| Item | Required | Check |
|---|---|---|
.gitignore | Yes | Covers OS files, editor files, language artifacts, .env, secrets |
.env.example | If .env used | Documents all env vars with placeholder values |
README.md | Yes | Project name, description, setup, usage, tech stack |
LICENSE | Yes | MIT for personal, match upstream for forks |
| No committed secrets | Critical | No .env, credentials, API keys in git history |
git pull before making changes (skip for forks)chore: add missing repo hygiene filesnode_modules/
dist/
build/
.next/
.env
.env.local
.env.*.local
*.log
npm-debug.log*
.DS_Store
Thumbs.db
.vscode/
.idea/
coverage/
__pycache__/
*.py[cod]
*$py.class
*.so
venv/
.venv/
.env
*.egg-info/
dist/
build/
.pytest_cache/
.coverage
htmlcov/
*.h5
*.pkl
*.model
*.weights
.ipynb_checkpoints/
.DS_Store
Thumbs.db
.vscode/
.idea/
bin/
vendor/
*.exe
*.test
*.out
.env
.DS_Store
Thumbs.db
.vscode/
.idea/
target/
Cargo.lock
*.pdb
.env
.DS_Store
Thumbs.db
.vscode/
.idea/
[Ll]ibrary/
[Tt]emp/
[Oo]bj/
[Bb]uild/
[Bb]uilds/
[Ll]ogs/
[Uu]ser[Ss]ettings/
*.csproj
*.sln
*.suo
*.user
*.pdb
.DS_Store
Thumbs.db
Search for env var usage in the codebase:
process.env.VAR_NAMEos.environ["VAR"], os.getenv("VAR"), dotenvos.Getenv("VAR")Write placeholders - never real values:
# Database
DATABASE_URL=postgresql://localhost:5432/dbname
# Authentication
JWT_SECRET=your-secret-key-here
# External APIs
API_KEY=your-api-key-here
Group by category with comments.
Adapt based on the actual project - never write generic filler.
# Project Name
Brief description of what this project does and why.
## Features
- Feature 1
- Feature 2
## Tech Stack
- Technology 1
- Technology 2
## Getting Started
### Prerequisites
- Runtime version (e.g., Node.js 22+, Python 3.13+)
### Installation
1. Clone the repo
2. Install dependencies
3. Set up environment: `cp .env.example .env`
4. Run the project
## License
MIT
Use MIT for personal projects (replace placeholders with actual values):
MIT License
Copyright (c) <YEAR> <YOUR NAME>
Permission is hereby granted, free of charge, to any person obtaining a copy
of this software and associated documentation files (the "Software"), to deal
in the Software without restriction, including without limitation the rights
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
copies of the Software, and to permit persons to whom the Software is
furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all
copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
SOFTWARE.
For forks: always match the upstream project's license.
Before pushing, verify:
.env files with real values are stagedsecrets.yml) are git-ignored.env.example contains only placeholdersIf real credentials are found in git history, they must be rotated immediately - removing from future commits does not invalidate exposed secrets.
Detect the project type by checking for these files:
| File | Project Type |
|---|---|
package.json | Node.js / React / Next.js |
requirements.txt / pyproject.toml | Python |
Cargo.toml | Rust |
go.mod | Go |
*.csproj / *.sln | C# / Unity |
Makefile only | C / C++ |
Use the appropriate .gitignore template based on detected type. For multi-language projects, combine relevant templates.
npx claudepluginhub sagargupta16/claude-skills --plugin repo-polishInitializes .gitignore with exclusion patterns based on detected project technologies via file globs for Node.js, Python, Go, Rust, Java, Docker, Next.js, and more. Use for new repos to exclude artifacts.
Bootstraps new projects interactively (Node/TS scripted, others manual) or adds enforcement tooling (TDD, secret scanning, file limits, git hooks, CLAUDE.md) to existing projects.
Audits codebase before GitHub push: deletes junk files like node_modules and .env, removes dead code and debug statements, fixes .gitignore, scans for secrets, and improves code quality line-by-line.