Merge pull request #46 from project-codeguard/feature/plugin-fixes

Add ClaudeCodeFormat to unified build system

Author: santosomar

.claude-plugin/marketplace.json

@@ -8,16 +8,13 @@
     "url": "https://project-codeguard.org",
     "email": "contact@project-codeguard.org"
   },
-  "repository": {
-    "type": "git",
-    "url": "https://github.com/project-codeguard/rules.git"
-  },
   "plugins": [
     {
       "name": "codeguard-security",
-      "source": ".",
+      "source": "./",
       "description": "Comprehensive security rules for AI coding agents",
       "version": "1.0.0",
+      "repository": "https://github.com/project-codeguard/rules.git",
       "tags": ["security", "code-review", "vulnerability-prevention"]
     }
   ]

.claude-plugin/plugin.json

@@ -8,10 +8,7 @@
   },
   "license": "CC-BY-4.0 (rules), Apache-2.0 (tools)",
   "homepage": "https://github.com/project-codeguard/rules",
-  "repository": {
-    "type": "git",
-    "url": "https://github.com/project-codeguard/rules.git"
-  },
+  "repository": "https://github.com/project-codeguard/rules.git",
   "keywords": ["security", "secure-coding", "vulnerability-prevention", "code-review", "appsec"]
 }
 

skills/software-security/rules/codeguard-0-additional-cryptography.md

@@ -17,6 +17,8 @@ languages:
 alwaysApply: false
 ---
 
+rule_id: codeguard-0-additional-cryptography
+
 ## Additional Cryptography & TLS
 
 Apply modern, vetted cryptography for data at rest and in transit. Manage keys safely, configure TLS correctly, deploy HSTS, and consider pinning only when appropriate.

skills/software-security/rules/codeguard-0-api-web-services.md

@@ -15,6 +15,8 @@ languages:
 alwaysApply: false
 ---
 
+rule_id: codeguard-0-api-web-services
+
 ## API & Web Services Security
 
 Secure REST, GraphQL, and SOAP/WS services end‑to‑end: transport, authn/z, schema validation, SSRF controls, DoS limits, and microservice‑safe patterns.

skills/software-security/rules/codeguard-0-authentication-mfa.md

@@ -16,6 +16,8 @@ languages:
 alwaysApply: false
 ---
 
+rule_id: codeguard-0-authentication-mfa
+
 ## Authentication & MFA
 
 Build a resilient, user-friendly authentication system that resists credential attacks, protects secrets, and supports strong, phishing-resistant MFA and secure recovery.

skills/software-security/rules/codeguard-0-authorization-access-control.md

@@ -14,6 +14,8 @@ languages:
 alwaysApply: false
 ---
 
+rule_id: codeguard-0-authorization-access-control
+
 ## Authorization & Access Control
 
 Enforce least privilege and precise access decisions for every request and resource, prevent IDOR and mass assignment, and provide strong transaction authorization where necessary.

skills/software-security/rules/codeguard-0-client-side-web-security.md

@@ -11,6 +11,8 @@ languages:
 alwaysApply: false
 ---
 
+rule_id: codeguard-0-client-side-web-security
+
 ## Client‑side Web Security
 
 Protect browser clients against code injection, request forgery, UI redress, cross‑site leaks, and unsafe third‑party scripts with layered, context‑aware controls.

skills/software-security/rules/codeguard-0-cloud-orchestration-kubernetes.md

@@ -7,6 +7,8 @@ languages:
 alwaysApply: false
 ---
 
+rule_id: codeguard-0-cloud-orchestration-kubernetes
+
 ## Cloud & Orchestration (Kubernetes)
 
 Kubernetes cluster and workload hardening: identity, policy, networking, secrets, and supply chain controls.

skills/software-security/rules/codeguard-0-data-storage.md

@@ -9,6 +9,8 @@ languages:
 alwaysApply: false
 ---
 
+rule_id: codeguard-0-data-storage
+
 ## Database Security Guidelines
 
 This rule advises on securely configuring SQL and NoSQL databases to protect against data breaches and unauthorized access:

skills/software-security/rules/codeguard-0-devops-ci-cd-containers.md

@@ -11,6 +11,8 @@ languages:
 alwaysApply: false
 ---
 
+rule_id: codeguard-0-devops-ci-cd-containers
+
 ## DevOps, CI/CD, and Containers
 
 Secure the build, packaging, and deployment supply chain: protect pipelines and artifacts, harden containers, and use virtual patching and toolchain flags when necessary.