feat: add configuration management and MCP secrets workflows (closes #16204)
Major additions to address critical gaps in Claude Code configuration:
## New Documentation Sections
1. Section 3.2.1 "Version Control & Backup" (guide/ultimate-guide.md:4085)
- Configuration hierarchy: global → project → local
- Git strategy for ~/.claude (symlinks approach)
- Backup strategies: Git remote, cloud sync, cron
- Multi-machine sync workflows
- Disaster recovery procedures
- Documented .claude/settings.local.json (previously undocumented)
2. Section 8.3.1 "MCP Secrets Management" (guide/ultimate-guide.md:8113)
- Three practical approaches: OS Keychain, .env, Secret Vaults
- Secrets rotation workflow
- Pre-commit secret detection
- Verification checklist
- Best practices summary
## New Templates
1. sync-claude-config.sh (examples/scripts/)
- Commands: setup, sync, backup, restore, validate
- .env parsing + envsubst for variable substitution
- Git repo creation with symlinks
- Validation checks (secrets not in Git)
2. pre-commit-secrets.sh (examples/hooks/bash/)
- Detects 10+ secret patterns (OpenAI, GitHub, AWS, etc.)
- Whitelist system for false positives
- Clear error messages with remediation steps
3. settings.local.json.example (examples/config/)
- Machine-specific overrides template
- Example use cases and patterns
## Resource Evaluation
- Added docs/resource-evaluations/ratinaud-config-management-evaluation.md
- Score: 5/5 (CRITICAL)
- Validated via 3 Perplexity searches + technical-writer agent challenge
- Community demand: GitHub #16204 + brianlovin/claude-config
## Updated References
- machine-readable/reference.yaml: 22 new entries
- Configuration management sections
- MCP secrets workflows
- Community resources (Ratinaud, brianlovin, GitHub issue)
## Impact
- Security: Pre-commit hook prevents secret leaks
- Productivity: Multi-machine sync reduces manual reconfig
- Team coordination: Onboarding workflow for ~/.claude setup
- Disaster recovery: Backup/restore strategies documented
Credits:
- Martin Ratinaud (504 sessions, LinkedIn post)
- brianlovin/claude-config (community example)
- GitHub Issue #16204 (community request)
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
0630fcd883