From 889a7b244a8362a59f9852f0aa649d53483b2f84 Mon Sep 17 00:00:00 2001 From: Christian Date: Fri, 15 May 2026 09:44:18 -0500 Subject: [PATCH 1/2] Add guardrails for example-only documentation data --- CLAUDE.md | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/CLAUDE.md b/CLAUDE.md index ec76ee46..78d07bde 100644 --- a/CLAUDE.md +++ b/CLAUDE.md @@ -209,6 +209,14 @@ impl core::error::Error for MyError {} - Format messages with present-tense verbs. - Use `log-fastly` as the backend for Fastly Compute. +## Other guidelines + +- Use only example or fictional information in comments, tests, docs, examples, + and similar non-runtime materials. +- Do not write or commit real domains, customer names, credentials, + configuration values, or other potentially sensitive real-world information in + comments, tests, docs, or examples. + --- ## Git Commit Conventions @@ -382,6 +390,7 @@ both runtime behavior and build/tooling changes. - Do not use `unwrap()` in production code — use `expect("should ...")`. - Do not use thiserror — use `derive_more::Display` + `impl Error`. - Do not use wildcard imports (except `use super::*` in test modules). -- Do not commit `.env` files or secrets. +- Do not commit `.env` files, secrets, or potentially sensitive real-world + information in comments, tests, docs, examples, or configuration files. - Do not make large refactors without approval. - Always run tests and linting before committing. From 5fcb5e563a39a0c184bc9ab0b32ab2d18dd3d8a9 Mon Sep 17 00:00:00 2001 From: Christian Date: Mon, 18 May 2026 16:23:43 -0500 Subject: [PATCH 2/2] only use example.com --- CLAUDE.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/CLAUDE.md b/CLAUDE.md index 78d07bde..b768403c 100644 --- a/CLAUDE.md +++ b/CLAUDE.md @@ -212,7 +212,7 @@ impl core::error::Error for MyError {} ## Other guidelines - Use only example or fictional information in comments, tests, docs, examples, - and similar non-runtime materials. + and similar non-runtime materials. (eg. for urls use: example.com domains only) - Do not write or commit real domains, customer names, credentials, configuration values, or other potentially sensitive real-world information in comments, tests, docs, or examples.