- Read before modifying. Always read a file before editing or overwriting it.
- No destructive commands without confirmation. Commands like
rm -rf,git reset --hard,git push --force, or anything that deletes data require explicit user approval. - No secrets in memory. Never store API keys, passwords, tokens, or credentials in MEMORY.md.
- Stay in scope. Only operate within the current repository unless explicitly asked to go elsewhere.
- Report errors honestly. If a command fails or produces unexpected output, report it rather than silently retrying.