Scope: user-invoked CLI scripts (scripts/*.mjs) and release bookkeeping for the series' tools (CoalMine, CoalTipple, ...). Hooks follow hooks-safety.md (fail-silent); CLI scripts follow the OPPOSITE discipline — fail loud.
User-invoked scripts must exit non-zero when any unit of work fails, including partial failures (exemplar: npm install exits non-zero on any package failure).
- Per-item catch blocks may warn and continue, but must set
process.exitCode = 1. - Done-summary lines must report failed counts (e.g.
Done: 8/9 skill(s), 1 failed). - Gate scripts (
verify.mjs) must wrap every per-item check in try-catch so one corrupt input yields a cleanFAIL <item>: <reason>line and the remaining checks still run — never a raw stack trace. - Gates must check both directions: source→dist staleness AND dist-only orphans (nothing ships that has no source).
Core shared logic (scripts/lib/) must have unit tests runnable with built-ins only: node --test (node:test — available since Node 18, stable since Node 20; exemplar: husky keeps automated tests despite a ~2 kB codebase).
- Cover at minimum: SHARED marker injection,
{{*_INTENT}}placeholder substitution, missing/corruptskill-meta.jsonfallback, recursive skill-dir copy. - The verify gate must have at least one automated negative-path test (stale dist → exit 1; exemplar: Cargo blocks publish from a dirty working tree).
- Wire
node --test <explicit test-file list>into the pre-commit AND pre-push hooks alongsideverify.mjs— enumerate every test file and fail loud if a listed file is missing (node --testsilently ignores missing file args, and the directory form proved unreliable on Node 24: MODULE_NOT_FOUND).
On every version bump in .claude-plugin/plugin.json (exemplars: Keep a Changelog convention, keepachangelog.com; Cargo registry checksums culture):
- Size the bump to the change (SemVer — correctness, not habit): new backward-compatible features / capabilities → MINOR (
x.Y.0); a bugfix or internal refactor with no new capability → PATCH (x.y.Z); a breaking change → MAJOR. NEVER ship a large feature set as a PATCH — the version number must tell the user how big the change is. - Add a
CHANGELOG.mdentry at repo root in keep-a-changelog format. - Create an annotated git tag
vX.Y.Zand push it with--follow-tags— the GitHub remote is canonical since the marketplace submission (supersedes the early local-git-only decision). - Publish a GitHub Release for every stable tag (a beta/pre-release tag is history only — the policy: tags = beta + stable, Releases = stable-only) (
gh release create vX.Y.Z --title ... --notes ...) — the tag is history, the Release is the announcement; an empty Releases panel reads as an abandoned repo. Keep the repo About description in sync with the canary count and headline features (it went stale at "5 canaries" for four versions before anyone noticed). - After publishing, run the offline mirror so the dogfood / scan mirror reflects the release — a STALE mirror makes the user scan the WRONG state and waste tokens.
Some docs carry data that must change on every version bump or security re-scan; a missed one silently rots (the About sat at "5 canaries" for four versions; the org landing read an old version / "Design Only" after a tool had already shipped). Two mechanisms keep them honest:
- Gated (mechanical): any doc line carrying a
version-pin:marker must quote the currentplugin.jsonversion, orverify.mjsfails (checkVersionPins) — today, the issue-template placeholders. Prefer dropping a version outright (git describe, number-free "major N" counts) over pinning; pin only where the concrete version genuinely helps the reader. - Listed (manual — this checklist, for what a gate can't reach):
SECURITY.md— the SkillSpector version + score + finding line-refs (line-refs shift on ANY skill edit: re-run the scan, re-sync). Carries an inline<!-- version-transition: ... -->marker. SECURITY.md sits at repo root, OUTSIDE the scanned dir, so an HTML-comment marker here never trips SkillSpector's own P2 "hidden instructions" flag.- The repo About description and the org landing (
TheColliery/.githubprofile README) suite table — version + live/design status per tool.
Rule of thumb: a number that names this version is debt. Drop it where the reader does not need it (dynamic / number-free); mark + enumerate it where they do. Grep version-transition across a repo's root docs to find every manual spot before tagging.