Add external contribution safety rules for all AI coding tools

[stuckvgn]

Summary

• Adds external-contribution-safety.md rule file to 8 tool directories with dedicated rule systems (claude-code, cursor, windsurf, cline, roo-code, augment-code, kilo-code, github-copilot), covering identity suppression, commit hygiene, PR description hygiene, and branch naming when contributing to third-party repos
• Adds a new # External Contribution Safety section to agents-md/AGENTS.md (vendor-neutral)
• Adds the same rules inline to the monolithic instruction files for aider (CONVENTIONS.md), gemini-cli (GEMINI.md), and jetbrains-junie (guidelines.md)

Why

Developers using these AI coding tools to contribute to external open-source repos risk:

• Attribution trailers (Co-Authored-By: Claude) linking the AI tool to external commits permanently
• Advocacy language leaking into third-party codebases
• AI-generated PR description patterns getting PRs flagged or rejected
• Unauthorized linking of Open Paws to external projects in commit history

The safe default must be documented: treat any repo whose remote does not match the org's allowlist as external, and apply full suppression. Confidence must be positive that you are in an internal repo; absent positive confirmation, stay in external mode.

Test plan

• Rule file exists at claude-code/.claude/rules/external-contribution-safety.md
• Cursor MDC file exists at cursor/.cursor/rules/external-contribution-safety.mdc with correct description frontmatter
• Rule files exist for windsurf, cline, roo-code, augment-code, kilo-code, github-copilot
• agents-md/AGENTS.md has the new # External Contribution Safety section
• aider/CONVENTIONS.md, gemini-cli/GEMINI.md, and jetbrains-junie/.junie/guidelines.md each have the new paragraph under their Git Workflow section
• No existing rules contradict the new ones
• No advocacy language or attribution identifiers in the new rule content itself

[coderabbitai]

Warning

Rate limit exceeded

@stuckvgn has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 3 minutes and 36 seconds before requesting another review.

Your organization is not enrolled in usage-based pricing. Contact your admin to enable usage-based pricing to continue reviews beyond the rate limit, or try again in 3 minutes and 36 seconds.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: 6e1b8c83-bf19-4f6b-a714-d578f954859e

📥 Commits

Reviewing files that changed from the base of the PR and between a8ce5d8 and 0b485d5.

📒 Files selected for processing (12)

• agents-md/AGENTS.md
• aider/CONVENTIONS.md
• augment-code/.augment/rules/external-contribution-safety.md
• claude-code/.claude/rules/external-contribution-safety.md
• cline/.clinerules/external-contribution-safety.md
• cursor/.cursor/rules/external-contribution-safety.mdc
• gemini-cli/GEMINI.md
• github-copilot/.github/instructions/external-contribution-safety.md
• jetbrains-junie/.junie/guidelines.md
• kilo-code/.kilocode/rules/external-contribution-safety.md
• roo-code/.roo/rules/external-contribution-safety.md
• windsurf/.windsurf/rules/external-contribution-safety.md

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/external-contribution-safety

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}