Release Guard

Overview

Release Guard is a quality assurance skill that validates skills before they are published or shared. It runs a comprehensive checklist of validations to catch common issues and ensure skills meet minimum standards.

The release-guard skill ensures that skill releases meet quality and safety standards. It runs pre-release validation checks including security scans, dependency audits, documentation completeness, and compatibility verification.

When to Use

• - Before publishing any skill to ClawHub
• When preparing a new version release
• During CI/CD release pipelines
• When the user asks to "检查" or "验证" a release
• Before creating GitHub releases

Prerequisites

• - Node.js 18+ for script execution
• Optional: security-auditor for detailed security scans

Usage

CLI Commands

CODEBLOCK0

Check Levels

Validation Rules

Version Format

• - Must follow semver (e.g., 1.0.0, 1.2.3-beta.1)
• Version must increment from previous release

Documentation Requirements

• - README.md must exist
• SKILL.md must exist
• No Chinese characters in documentation
• All headings properly capitalized

Security Checks

• - No hardcoded secrets
• No vulnerable dependencies
• Safe file permissions (644 for files, 755 for executables)

Output

The tool produces a JSON report:

CODEBLOCK1

Exit Codes

• - 0 - All checks passed
• INLINECODE8 - One or more checks failed
• INLINECODE9 - Invalid arguments or skill not found

Limitations

• - Does not execute skill code (use testing framework for that)
• Cannot verify runtime behavior
• Does not check external API availability

Related Skills

• - skill-safety-auditor - Detailed security auditing
• security-auditor - Security vulnerability scanning
• release-skills - Publishing workflow