marketing-shibata50/claude-code-ultimate-guide
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
414 commits 1 branch 0 tags 20 MiB
Commit graph

414 commits

This branch
This branch
All branches
Author SHA1 Message Date
Florian BRUNIAUX
5b713db6fd feat(mcp): add official Anthropic docs tracker — v1.1.0 
New tools (4):
- init_official_docs()    — fetch + store baseline + current snapshots locally
- refresh_official_docs() — update current without touching baseline
- diff_official_docs()    — compare baseline vs current, 0 network, section-level
- search_official_docs(query) — search official docs, loads only matching sections

Architecture:
- 4 local cache files in ~/.cache/claude-code-guide/ (index + content, baseline + current)
- Diff reads index files only (~50KB each), never the full 1.2MB content
- search loads only matched sections from content file (not entire doc)
- Atomic writes (.tmp + rename) prevent snapshot corruption
- schemaVersion: 1 for future-proof migrations

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-11 17:28:25 +01:00
Florian BRUNIAUX
4dd479161d docs: update Claude Code releases to v2.1.72 
- Update latest tracked version: 2.1.71 → 2.1.72 (2026-03-09)
- Agent model parameter restored on Agent tool for per-invocation overrides
- SDK query() prompt cache fix — up to 12x input token cost reduction
- CLAUDE.md HTML comments now hidden from Claude when auto-injected
- Simplified effort levels: low/medium/high, new symbols ○ ◐ ●
- ExitWorktree tool + CLAUDE_CODE_DISABLE_CRON env var + /plan optional desc
- Bump guide version: 3.34.1 → 3.34.2

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-11 15:55:15 +01:00
Florian BRUNIAUX
ff11f7566b fix(mcp): correct releases GitHub URL (guide/core/ path) 
Wrong path guide/claude-code-releases.md → guide/core/claude-code-releases.md in 3 tools (changelog, releases, compare-versions). Was generating 404 links in get_digest output.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-11 14:49:47 +01:00
Florian BRUNIAUX
a0bd2c112f docs: document /btw side-question command 
Add /btw to cheatsheet and ultimate guide — ephemeral overlay agent for quick side questions mid-task, read-only, no tools, single response, no history pollution.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-11 13:57:34 +01:00
Florian BRUNIAUX
8dd202ed1c release: v3.34.1 - dynamic OG image generation workflow 
Add og-image-generation.md workflow guide and production-ready og-image-astro.ts
template. Update stats: 218 templates, 22,800+ guide lines. Bump VERSION to 3.34.1.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-11 12:09:50 +01:00
Florian BRUNIAUX
2f83320bc7 docs: add OG image generation workflow + Astro template 
New workflow guide covering Satori + resvg pattern for dynamic social
preview images. Includes production template, gotchas (font format,
static file shadowing), design variants, and testing approach.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-11 11:53:50 +01:00
Florian BRUNIAUX
fe28f89574 feat(context): Context Engineering Configurator + consolidated guide (v3.34.0) 
New: interactive configurator at cc.bruniaux.com/context/ that generates a
personalized CLAUDE.md starter kit based on team size, stack, and current setup.
Multi-step flow (profile, current state, stack, results) with maturity scoring
(Level 1-5), copy-to-clipboard artifacts, localStorage persistence.

Guide content:
- guide/core/context-engineering.md (1,188 lines, 8 sections): context budget,
  150-instruction ceiling, modular architecture, team assembly, ACE pipeline,
  quality measurement, context reduction techniques
- examples/context-engineering/ (10 templates): assembler.ts, profile-template.yaml,
  skeleton-template.md, canary-check.sh, ci-drift-check.yml, eval-questions.yaml,
  context-budget-calculator.sh, rules/knowledge-feeding.md, rules/update-loop-retro.md
- tools/context-audit-prompt.md (543 lines): 8-dimension scoring /100

Navigation: guide/README.md, machine-readable/reference.yaml (24 new entries)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-11 11:18:04 +01:00
Florian BRUNIAUX
318ba915de docs(rtk): update RTK coverage from v0.16.0 to v0.28.0 
New modules: docker compose, mypy, aws, psql, cargo nextest, Graphite CLI (gt), wc.
Major features: TOML Filter DSL (declarative filters, 33+ built-in, no Rust required),
rtk rewrite single source of truth (migration note: rtk init --global after upgrade),
rtk gain -p per-project savings, rtk init --global settings.json auto-patch,
exclude_commands config, SHA-256 hook integrity.

Updated: ultimate-guide.md, third-party-tools.md, reference.yaml (version_tested bump).

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 19:06:11 +01:00
Florian BRUNIAUX
2332ddcacf release: v3.33.0 — enterprise AI governance + accuracy fixes 
- New: enterprise-governance.md (1100+ lines) — org-level governance
  for teams deploying Claude Code at scale (tiers, MCP workflow, charter)
- New: 3 templates (mcp-registry.yaml, governance-enforcement-hook.sh,
  ai-usage-charter-template.md)
- Fixed: 6 accuracy issues in enterprise-governance (fabricated API,
  non-existent hooks, GNU-only date syntax, PII classification, invalid JSON)
- Docs: enriched adoption-approaches, observability, ai-traceability,
  production-safety, security-hardening
- Updated: template count 176→204, guide lines 20K→22K, quiz 274→271

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 16:02:16 +01:00
Florian BRUNIAUX
3ba824942f docs(changelog): document enterprise-governance accuracy fixes 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 15:17:01 +01:00
Florian BRUNIAUX
3832bf3c86 fix(security): correct enterprise-governance accuracy issues 
- Remove non-existent hook references from tier configs
  (dependency-guard.sh, compliance-pre-check.sh, pii-detector.sh,
  compliance-session-init.sh never existed in examples/)
- Replace compliance-audit-logger.sh in Regulated tier with session-logger.sh
- Remove all invalid JSON // comments from settings.json code blocks
- Fix fabricated CLAUDE_SETTINGS env var + claude run-headless API
  (neither exist in Claude Code) — replaced with CI pipeline check pattern
- Fix date -d syntax (GNU-only, breaks macOS) → cross-platform with OS check
- Reclassify Customer PII from CONFIDENTIAL to RESTRICTED
  (GDPR/CCPA treat PII as protected — Enterprise plan alone insufficient)
- Clarify §3.3 governance-check.sh vs governance-enforcement-hook.sh templates
- Fix org config directory listing to use real hooks only

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 11:16:58 +01:00
Florian BRUNIAUX
77b48db01b docs(security): add enterprise AI governance guide + templates 
New section for org-level Claude Code governance — fills the gap
between individual dev security (security-hardening.md) and what
engineering managers actually need when deploying at scale.

New files:
- guide/security/enterprise-governance.md (1117 lines)
  6 sections: local/shared split, usage charter, MCP approval
  workflow, 4 guardrail tiers (Starter/Standard/Strict/Regulated),
  policy enforcement at scale, SOC2/ISO27001 compliance guide
- examples/scripts/mcp-registry-template.yaml
  Org-level MCP registry with approved/pending/denied tracking
- examples/hooks/bash/governance-enforcement-hook.sh
  SessionStart hook validating MCPs against approved registry
- examples/scripts/ai-usage-charter-template.md
  Full charter template with data classification, use case rules,
  compliance mapping (SOC2/ISO27001/HIPAA/PCI DSS/GDPR)

Enriched sections:
- adoption-approaches.md: enterprise rollout (50+ devs) with
  3-phase approach and common mistakes
- observability.md: manager audit checklist, compliance reporting
- ai-traceability.md: evidence collection table for auditors
- production-safety.md + security-hardening.md: cross-references
  with explicit scope boundaries

Integration: guide/README.md, reference.yaml (22 new entries),
CHANGELOG.md

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 11:05:21 +01:00
Florian BRUNIAUX
b65630641b refactor(guide): restructure guide/ into thematic subdirectories 
Reorganize 22 guide files from a flat directory into 5 thematic subdirs:
- core/ (architecture, methodologies, known-issues, claude-code-releases, visual-reference)
- security/ (security-hardening, sandbox-isolation, sandbox-native, production-safety, data-privacy)
- ecosystem/ (ai-ecosystem, mcp-servers-ecosystem, third-party-tools, remarkable-ai)
- roles/ (ai-roles, adoption-approaches, learning-with-ai, agent-evaluation)
- ops/ (devops-sre, observability, ai-traceability)

All internal links updated across ~50 files (ultimate-guide.md, workflows/,
diagrams/, README.md, docs/, tools/, examples/, machine-readable/).

Also: merge search-tools-cheatsheet.md into cheatsheet.md, rewrite guide/README.md
with H2 grouped sections, update CLAUDE.md repository structure.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-10 08:35:13 +01:00
Florian BRUNIAUX
9e789117c3 docs(readme): recap cards available in EN too 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 17:36:39 +01:00
Florian BRUNIAUX
11dadc2815 docs(readme): restore full content + apply Choose Your Path + badge updates 
Restores 780 lines deleted by commit 0d70fd8 (GEO/SEO). Applies the 5
intended changes on top: Choose Your Path H2 heading, 2 new role rows
(Developer + Career pivot), badges updated (Quiz 271, Templates 222,
Threat DB 15 vulnerabilities), resource evaluations count 84 → 115.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 17:35:45 +01:00
Florian BRUNIAUX
8f1dcecfa2 docs: update guide content, examples, tools, and reference files 
- guide/ultimate-guide.md — content updates
- guide/workflows/README.md, guide/README.md — navigation improvements
- guide/diagrams/ — diagram updates (context/sessions, config, MCP ecosystem)
- guide/third-party-tools.md — additions
- examples/README.md, hooks/README.md, scripts/README.md — examples updates
- examples/skills/pr-triage/SKILL.md — expanded skill
- machine-readable/reference.yaml — reference sync
- tools/audit-prompt.md, tools/onboarding-prompt.md — tooling updates
- docs/for-cto.md, docs/for-tech-leads.md, docs/resource-evaluations/README.md — doc updates
- .gitignore — gitignore update

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 15:32:33 +01:00
Florian BRUNIAUX
9c02214bb8 docs(roles): strengthen salary disclaimer — indicative only, US-only baseline 
Add explicit warning that figures are US base salaries (2025-2026),
Europe -30-50%, other markets -40-60%, and should be used as orientation
not negotiation anchors.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 15:28:43 +01:00
Florian BRUNIAUX
91b33aa45c docs(changelog): add GEO/SEO optimization entry [Unreleased] 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 15:16:26 +01:00
Florian BRUNIAUX
86585148dd docs(roles): add AI roles & career paths guide 
New file guide/ai-roles.md — 13 roles mapped (Prompt Engineer, Context
Engineer, AI Engineer, LLM Engineer, AI Agent Engineer, Founding AI Engineer,
AI Architect, Platform Engineer, Harness Engineer, AI Product Manager,
AI Safety & Eval Engineer, ML Engineer) with career decision matrix,
salary benchmarks, and entry path guidance.

Also: link from README "What's Inside" + "Choose Your Path", and
learning-with-ai.md "See Also" section.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 14:57:46 +01:00
Florian BRUNIAUX
0d70fd88f0 feat(seo): GEO optimization — llms.txt v3.32.2, llms-full.txt, FAQ 
Phase 1 (repo): update machine-readable/llms.txt (v3.8.0→3.32.2,
87→238 templates, 9.6K→22.7K lines), create root llms.txt per
llmstxt.org convention, create llms-full.txt (~20KB: cheatsheet,
template list, FAQ), sync mcp-server/content/llms.txt.

Phase 4 (README): replace invisible HTML keyword comment with visible
mini-FAQ (5 Q&A) for GEO crawlers.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 14:15:35 +01:00
Florian BRUNIAUX
8c06d47a80 docs(security): update threat-db v2.6.0 — ClawJacked + Wave2 + 3 defensive tools 
New entries:
- T014: WebSocket Localhost Gateway Hijacking (ClawJacked pattern, Oasis Security)
- T015: Log Poisoning via WebSocket for Prompt Injection (OpenClaw v2026.2.13 fix)
- Campaign: ClawHub Wave 2 — 71 additional malicious skills (2026-02-28)
- Scanning tool: Verify Security Scanner (Claude Code skill, 1000+ bug patterns)
- Defensive: GitHub MCP Server secret scanning integration (2026-02-27)
- Defensive: Cycode AI Guardrails for MCP real-time secret interception
- Sources: Oasis Security + THN ClawJacked articles

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 11:22:56 +01:00
Florian BRUNIAUX
aeefaa0e43 docs(readme): fix whitepaper count (9→11) + add recap cards section 
- WP list now complete: 00→10 (was stopping at 08)
- Add WP09 Learning with AI + WP10 AI Budget
- Add Recap Cards section (57 cards, 3 series, coming soon)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 11:00:21 +01:00
Florian BRUNIAUX
98f0c87806 feat(docs): add persona sub-READMEs + routing table in README 
Add 4 audience-specific entry points in docs/:
- for-tech-leads.md — team adoption, shared config, security posture
- for-cto.md — ROI, compliance, adoption path
- for-cio-ceo.md — 3-min brief, budget, 3 questions for your CTO
- for-product-managers.md — vibe coding, working with AI-assisted teams

Add visual routing table in README ("Not a developer?") linking to each.
Mark whitepapers as coming soon throughout.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 10:57:12 +01:00
Florian BRUNIAUX
2262d9e1f6 docs(cheatsheet): add /loop, /stats, /rename, /copy + Ctrl+F (v3.32.2) 
Cheatsheet updated with commands from Claude Code v2.1.59–v2.1.71:
- /loop [interval] [prompt] — recurring scheduler (bg polling while you work)
- /stats — usage graph, favorite model, streak
- /rename [name] — name/rename current session
- /copy — interactive picker for code blocks
- Ctrl+F — kill all background agents (double press)
- /loop added to "Features méconnues" section (v2.1.71)

Applied to both guide/cheatsheet.md and landing cheatsheet/index.astro.
Landing version synced: 3.29.2 → 3.32.2.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-09 10:44:06 +01:00
Florian BRUNIAUX
7e26dc45ad docs: update Claude Code releases (v2.1.70, v2.1.71) 
- v2.1.71: /loop command + cron scheduling tools for recurring prompts
- v2.1.70: VSCode spark icon + API 400 fixes + perf (−74% re-renders, −426KB startup)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-08 17:43:07 +01:00
Florian BRUNIAUX
7ffd8413fb feat(v3.32.1): auto-rename-session hook + guide section update 
- Add examples/hooks/bash/auto-rename-session.sh template (SessionEnd hook,
  Haiku-generated titles, JSONL-based context extraction, /dev/tty output)
- Rewrite "Session Auto-Rename" guide section: two complementary approaches
  (CLAUDE.md behavioral + SessionEnd hook), remove outdated "Why not a hook?"
- Update CHANGELOG.md

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-08 17:27:55 +01:00
Florian BRUNIAUX
7bda706da2 feat(v3.32.0): Plan-Validate-Execute Pipeline — 3-command AI-first workflow 
New workflow for production teams: dynamic agent teams, ADR learning loop,
automated execution from PRD to merged PR.

Added:
- guide/workflows/plan-pipeline.md — complete workflow guide (philosophy,
  non-prescriptive AI-first, No Bandaids first principles, ADR learning loop,
  CLAUDE.md 120-line discipline, /clear context reset, cost profile)
- examples/commands/plan-start.md — 5-phase planning with 12-agent dynamic
  pool (trigger-based selection, Tier 0 Solo → Tier 4 Full Spectrum,
  planning-coordinator synthesis, auto-transition to validate)
- examples/commands/plan-validate.md — 2-layer validation (structural inline +
  8 specialist agents), ADR-aware auto-fix (Bucket A ~95% auto-resolve,
  Bucket B human input → new rule), issue persistence in metrics JSON
- examples/commands/plan-execute.md — worktree → TDD scaffold → level-based
  parallel agents → drift detection → quality gate → smoke test → PR squash
  merge → post-merge metrics → cleanup
- examples/agents/planning-coordinator.md — Opus synthesis agent: merges
  multi-agent reports into coherent task graph, resolves conflicts via ADR
  precedence, verifies plan completeness before output
- examples/agents/integration-reviewer.md — Opus runtime validator: connection
  params, async/sync consistency, env var completeness, library API
  correctness (WebFetch), OTEL pipeline validation

Updated:
- machine-readable/reference.yaml — 16 new indexed keys
- CHANGELOG.md — v3.32.0 entry with 6 detailed items
- VERSION, README.md, guide/cheatsheet.md, guide/ultimate-guide.md — bumped to 3.32.0

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-06 17:24:26 +01:00
Florian BRUNIAUX
07c3c42b03 release: v3.31.0 — Skills 2.0 taxonomy, evals, lifecycle 
- §5.0 Two Kinds of Skills: Capability Uplift vs Encoded Preference
- §5.X Skill Lifecycle & Retirement: Catch Regressions + Spot Outgrowth
- §5.Y Skill Evals: Benchmark Mode, A/B Testing, Trigger Tuning
- Vitals + SE-CoVe community plugins documented (§8.5)
- Memory system: 3 corrections (Auto-Memories v2.1.59+, thresholds, WHAT/WHY/HOW)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-06 15:53:45 +01:00
Florian BRUNIAUX
a37f8b6aba docs(cheatsheet): update ultrathink note — re-introduced in v2.1.68 
ultrathink now forces high effort for next turn (no longer cosmetic).
Opus 4.6 defaults to medium effort since v2.1.68.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-05 18:16:50 +01:00
Florian BRUNIAUX
52d12a28b7 release: v3.30.2 — issue-triage skill, design-reference-file, Conductor docs 
New templates:
- examples/skills/issue-triage/ — 3-phase issue backlog management with
  Jaccard duplicate detection, risk classification, and validated actions
- examples/claude-md/design-reference-file.md — brand-book + ui-kit
  pattern for consistent UI generation across sessions

Resource evaluation:
- docs/resource-evaluations/075-paillard-design-system-first-website.md
  (Boris Paillard, mixt.care, score 3/5)

Docs update:
- guide/third-party-tools.md — Conductor section enriched with verified
  features (Next Workspace, Manual Mode, GitHub CI integration, BMAD pattern)

Version bump: 3.30.1 → 3.30.2 (synced across README, cheatsheet, guide, reference.yaml)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-05 16:18:24 +01:00
Florian BRUNIAUX
4d829ff47d docs(third-party-tools): enrich Conductor section with verified features 
Rewrote from 5 generic bullets to 6 structured subsections, verified
against official conductor.build changelog. Added Next Workspace button
(v0.36.4), workspace status system (v0.35.0), turn-by-turn diff viewer
(v0.22.0), Manual Mode editor (v0.37.0), full GitHub/CI integration,
Linear deeplinks, Codex support, Melty Labs attribution, and community
BMAD workflow pattern (user-reported, marked as unverified).

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-05 16:13:53 +01:00
Florian BRUNIAUX
d444721bda docs: update Claude Code releases to v2.1.69 
- Update latest tracked version: 2.1.66 → 2.1.69
- v2.1.69: InstructionsLoaded hook, 4 security fixes (nested skills/symlink/trust dialog/sandbox), ${CLAUDE_SKILL_DIR}, /reload-plugins, Voice STT 20 languages, 15+ memory fixes, Sonnet 4.5 → 4.6 migration
- v2.1.68: ultrathink keyword re-introduced, Opus 4.6 medium effort default, Opus 4/4.1 removed from first-party API
- Updated milestones and breaking_summary sections
- Updated dates: 2026-03-05

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-05 16:03:04 +01:00
Florian BRUNIAUX
2b9c654f0f docs(entire-cli): enrich 4 guide files with production diagrams from issue #802 
6 additions across ai-traceability, ai-ecosystem, third-party-tools, security-hardening.

- ai-traceability.md: full hook architecture diagram (sans/avec Entire),
  real checkpoint structure (entire/checkpoints/v1/ tree), orphan branch
  diagram, Go/No-Go thresholds table with 2h spike commands
- ai-ecosystem.md: agent handoffs flow diagram (Claude → Gemini, no cold start)
- third-party-tools.md: delta table vs existing setups (JSONL, attribution,
  handoffs) + evaluation stop criteria
- security-hardening.md: approval gate flow diagram (policy check →
  low/high risk → approve/reject → audit trail)

Source: github.com/methode-aristote/app/issues/802

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-05 15:11:32 +01:00
Florian BRUNIAUX
0bdb34b2a4 docs: external orchestration frameworks, pr-triage skill, GitHub Actions templates 
Added:
- guide/third-party-tools.md: External Orchestration Frameworks section
  (Ruflo + Athena Flow) with architectural distinction from multi-instance tools
- examples/skills/pr-triage/: 3-phase PR backlog management skill
  (audit, deep review via parallel agents, validated comment posting)
- examples/github-actions/: claude-code-review.yml + .coderabbit.yaml +
  prompts/code-review.md — AI-powered PR review GitHub Actions workflow
- docs/resource-evaluations/073-athena-flow-workflow-runtime.md (2/5 Watch)
- docs/resource-evaluations/074-ruflo-multi-agent-orchestration.md (3/5 Pertinent)

Updated:
- examples/README.md + examples/github-actions/README.md: new templates indexed
- machine-readable/reference.yaml: new entries for github-actions + pr-triage

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-05 09:47:16 +01:00
Florian BRUNIAUX
18a6e0ce5c docs(security): update threat-db v2.5.0 + security-hardening CVE table 
threat-db.yaml:
- 6 new CVEs: CVE-2026-25253 (OpenClaw 1-click RCE, CVSS 8.8),
  CVE-2026-25725 (Claude Code sandbox escape), CVE-2026-3484
  (nmap-mcp-server cmd injection), CVE-2025-35028 (HexStrike critical
  9.1, no patch), CVE-2025-15061 (Figma MCP critical 9.8),
  CVE-2026-0757 (MCP Manager sandbox escape)
- T013: Autonomous Safety Control Bypass (Ona research, 2026-03-03)
- openclaw v2026.1.29 added to minimum_safe_versions
- 10 new sources, version bump 2.4.0 → 2.5.0

security-hardening.md:
- CVE table extended from 9 to 15 entries
- Callouts added for 4 critical/unpatched CVEs

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-05 09:08:32 +01:00
Florian BRUNIAUX
bc7f4654b3 docs: add Claude Code Desktop (Code tab) section to installation 
Document the Code tab in Claude Desktop app as a terminal-free
alternative to the CLI — visual diff, live preview, parallel sessions,
GitHub PR monitoring. Includes CLI vs Desktop comparison table and
shared config notes.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-05 08:59:28 +01:00
Florian BRUNIAUX
37d9d70ea2 docs: tech leads section, straude, session-naming, cowork updates 
- guide/learning-with-ai.md: §12 For Tech Leads & Engineering Managers
  (onboarding 4 semaines, métriques croissance réelle, mentoring scalable,
  warning signs équipe, template politique AI)
- guide/third-party-tools.md: fiche straude (dashboard social CC, analyse sécu)
- examples/claude-md/session-naming.md: template auto-rename sessions
- guide/cowork.md: mise à jour contenu et comparaisons
- docs/resource-evaluations/: +2 évaluations (eveillard, straude)
- README.md + examples/README.md: compteurs templates 175→176
- machine-readable/reference.yaml: nouvelles entrées

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-04 17:29:06 +01:00
Florian BRUNIAUX
3788369839 docs: add Compound Engineering patterns + guide-reviewer agent 
4 patterns issus du plugin compound-engineering d'Every.to intégrés
dans le guide (Named Perspective Agents, Swarm vs Sequential, Skill
Quality Gates, Brainstorm-before-planning). Évaluation formelle 4/5.

- guide/ultimate-guide.md: +~90 lignes (4 insertions)
- docs/resource-evaluations/2026-03-04-compound-engineering-every-to.md
- .claude/agents/guide-reviewer.md: audit accuracy/style guide content
- CLAUDE.md: command naming conventions section
- CHANGELOG.md: entrée [Unreleased] documentant les changements

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-04 17:25:02 +01:00
Florian BRUNIAUX
6e1f7a3e3b docs: add agent-browser + Compound Engineering patterns 
- agent-browser (Vercel Labs): AI-native browser CLI, 12K+ stars, ~82.5% token
  reduction vs Playwright MCP. Section in §MCP Browser Tools, eval file added.
- Compound Engineering philosophy (Every.to): Plan→Work→Review→Compound loop,
  docs/solutions/ pattern for cross-PR memory. Section in §CLAUDE.md Memory.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-04 10:14:58 +01:00
Florian BRUNIAUX
29e8b62679 docs: update Claude Code releases to v2.1.66 (v3.30.1) 
- Update latest tracked version: 2.1.63 → 2.1.66
- Add v2.1.66: reduced spurious error logging
- Add v2.1.63: HTTP hooks, worktree config sharing, /simplify & /batch, memory leaks wave
- Add v2.1.62/61: prompt cache + Windows config fixes
- Bump guide: 3.30.0 → 3.30.1
- Update 2.1.x series date range (January-March 2026)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-04 09:30:52 +01:00
Florian BRUNIAUX
d9187ba17b release: v3.30.0 - 10 advanced patterns documentation 
5 new files (plan-challenger, adr-writer, audit-codebase, first-principles, event-driven-agents),
4 workflow files enriched (iterative-refinement, agent-teams, ultimate-guide x3 sections),
reference.yaml updated with 9 new entries. Fact-checked via 9 Perplexity searches (March 2026).

Patterns covered: modular CLAUDE.md architecture, session invariants, auto-ADR, adversarial
plan review, worktree dependency coordination, auto-fix loops (Ralph Loop), Linear/Kanban
event-driven agents, codebase audit scoring, deployment automation (Vercel + Infisical).

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-03 06:27:28 +01:00
Florian BRUNIAUX
01283fafec docs: SonnetPlan hack — budget Sonnet+Haiku hybrid via env var remap 
- guide/ultimate-guide.md §OpusPlan: new "Budget Variant: SonnetPlan"
  section with shell function, Plan/Act routing table, caveat on
  unreliable model self-report, link to GitHub issue #9749
- examples/scripts/sonnetplan.sh: new ready-to-use shell function
  with installation instructions and verification guidance

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-02 17:58:25 +01:00
Florian BRUNIAUX
16e3275240 docs: fix /batch description - parallel worktree agents, not just batch processing 
/batch orchestrates 5-30 parallel worktree agents for large-scale
codebase changes (migrations, refactors, bulk annotations), each
opening its own PR. Source: Volvox/Discord official.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-02 17:41:36 +01:00
Florian BRUNIAUX
2195622b50 release: v3.29.2 - /simplify + /batch commands documentation 
Added dedicated sections for the two bundled slash commands
introduced in Claude Code v2.1.63: /simplify (over-engineering
detection) and /batch (batch processing). Built-in Commands
table updated in §1.3 and §6.1.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-02 17:30:58 +01:00
Florian BRUNIAUX
252148fe75 release: v3.29.1 - Git MCP + GitHub MCP catalog entries 
Add Git MCP Server (12 tools, uvx setup) and GitHub MCP Server
(Issues/PRs/Projects, remote Copilot + self-hosted PAT-only) to §8.2
MCP Server Catalog. Document real-world fix for Incompatible auth
server error via gh auth token + manual header injection.

Also ships: CC v2.1.63 tracking, HTTP hooks, observability quality
patterns, config lifecycle §9.23, terminal personalization, tool
comparison table extensions, MCP server 3 new tools.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-03-02 16:10:19 +01:00
Florian BRUNIAUX
155b07a589 feat: threat-db v2.4.0 + MCP guide section + resource evals + ci 
## threat-db v2.4.0
- CVE-2026-27735: path traversal in mcp-server-git git_add (CVSS 6.4)
- Campaign: Clinejection (Cline CLI 2.3.0 supply chain, 4000 downloads)
- T012: AI Recommendation Poisoning (Microsoft research, 50+ prompts)
- 3 new sources (NVD, Snyk, Microsoft Security Blog, Hacker News)

## guide/ultimate-guide.md
- New section "This Guide as an MCP Server" (§10) — installation,
  tools list, dev mode, usage examples, slash commands

## docs/resource-evaluations
- eval #070: claude-code-best-practice .claude/ config (score 4/5)
- eval #071: Steven Ge technical writing workflow (score TBD)
- eval #072: Rippletide AI reliability platform (score 2/5, watch only)
- 2026-02-26: boristane SDLC dead post evaluation
- README: count 60→72 evals, add #072 entry

## ci + config
- .github/workflows/trigger-landing-deploy.yml — auto-trigger landing
  rebuild on push to main (guide content changes)
- .gitignore: add .claude/agents/ exception + mcp-server/dist/ ignore

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-02-28 21:35:03 +01:00
Florian BRUNIAUX
314f872f1f docs: update reference.yaml + CHANGELOG for mcp v1.0.3 
- reference.yaml: add 4 missing tools to mcp_server.tools list
  (compare_versions, search_examples, get_threat, list_threats)
  + correct bundle_size 123KB→132KB
- CHANGELOG [Unreleased] Fixed: document content path bug fix (1.0.3)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-02-28 21:32:43 +01:00
Florian BRUNIAUX
67ea720d63 fix(mcp): correct content path + publish 1.0.3 
Fix ENOENT on production install: CONTENT_DIR resolved 2 levels up
from dist/ instead of 1, reaching node_modules/ instead of package
root where content/ lives. ../content is the correct relative path.

Publié : claude-code-ultimate-guide-mcp@1.0.3

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-02-28 21:26:57 +01:00
Florian BRUNIAUX
7236362c1e feat(mcp): add 4 new tools — compare_versions, get_threat, list_threats, search_examples 
New tools (8 → 12 total):
- compare_versions(from, to): diff Claude Code releases between two versions,
  aggregating highlights and breaking changes across the range
- get_threat(id): look up any CVE or attack technique (T-code) with full details,
  severity, mitigation, and source references
- list_threats(category?): browse the threat database — summary table or
  detailed view by section (cves, authors, skills, techniques, mitigations, sources)
- search_examples(query, limit?): semantic search across 199 templates with
  token-aware scoring and get_example() hints

Infrastructure:
- content.ts: add loadThreatDb() with memory cache and dual-mode loading
  (GUIDE_ROOT filesystem in dev, GitHub fetch in production)
- Threat DB interface with correct Record<string, string> type for minimum_safe_versions

Docs:
- mcp-server/README.md: document all 12 tools with usage examples
- mcp-server/IDEAS.md: future ideas (quiz, methodology, workflow, diff resource)
- CHANGELOG.md: [Unreleased] entry for all 4 tools
- README.md: promote MCP section to standalone ## after Quick Start (was ### inside Quick Start)
- guide/architecture.md: add MCP server to Extended Tool Ecosystem

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-02-28 19:22:20 +01:00
Florian BRUNIAUX
e62af76767 docs: spinner verbs + tips personalization — new example + guide section 
- New section §3.3 Terminal Personalization Settings (ultimate-guide.md:4978)
  spinnerVerbs (mode replace/add) + spinnerTipsOverride (excludeDefault)
- New examples/config/settings-personalization.json — 19 verbs, 113+ tips, 13 categories
- reference.yaml: new spinner_personalization entry + line number fix
- CHANGELOG updated

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-02-28 10:00:58 +01:00