fix: rewrite checkpoint commands for runner allowlist; broaden license and metadata checks for org-wide files

[CybotTM]

Summary

Two unrelated but related-in-scope fixes to skills/github-project/checkpoints.yaml, both surfaced by running the assessment runner from automated-assessment against netresearch/agent-harness-skill:

1. Allowlist conflicts on feat: add Go project CI checklist and related skills section #6, feat: add release announcement discussion to release-labeler #23, refactor: trim SKILL.md for token efficiency #30, feat: add skill validation CI job #31 — these checkpoints could never actually evaluate because the runner rejected their command strings as unsafe. Rewritten to use the runner's first-class file-existence and gh_api types.
2. License + project-metadata checks that didn't account for split-license repos and Netresearch's org-wide .github repo. Broadened the LICENSE brace expansion; demoted SECURITY/CONTRIBUTING/CODEOWNERS from warning to info with explicit notes about the org-wide fallback.

Allowlist rewrites (commit 8aa7ed1)

The runner's is_safe_eval_command rejects:

• ;, &&, ||, backticks, $() (command-chaining)
• .. path segments anywhere
• ./X paths except ./vendor/bin/*
• path-prefixed cmd_base
• bare base commands not in the allowlist

Pipes (|) ARE allowed mid-pipeline, but the runner's simple line parser sees the YAML literal-block scalar indicator (target: |) as the first whitespace-separated token of the command, and rejects with '|' not in allowed command whitelist.

Checkpoint	Before	After
GH-6	type: command with test -f X || test -f Y || ... (5 alternatives)	type: file_exists with brace expansion
GH-23	type: command with test -f X || test -f Y	type: file_exists with brace expansion
GH-30	type: command multi-line literal block invoking gh api	type: gh_api (runner skips with clear evidence; semantically covered by GH-32 in llm_reviews)
GH-31	type: command multi-line literal block invoking gh api	type: gh_api (same as GH-30)

License + metadata broadening (commits 781b156, e79050d)

GH-2 only matched the literal filename LICENSE, so any skill repo using the SPDX-style multi-file naming (e.g. LICENSE-MIT for code + LICENSE-CC-BY-SA-4.0 for prose) failed even though it is properly licensed. Broadened the brace expansion per the issue description.

GH-3/04/05 check for files that are typically provided org-wide via netresearch/.github. The runner cannot cheaply check org-wide files (gh api is intentionally not in the allowlist, and that is the right tradeoff). Demoted these from warning to info and updated descriptions to mention the org-wide fallback explicitly. Also extended each target with brace expansion for the documented in-repo locations (e.g. .github/SECURITY.md, docs/CONTRIBUTING.md, .github/CODEOWNERS — GitHub honours CODEOWNERS in any of those locations).

Severity changes

Checkpoint	Before	After	Why
GH-3 (SECURITY.md)	warning	info	Org-wide fallback common; runner can't verify it
GH-4 (CONTRIBUTING.md)	warning	info	Org-wide fallback common; runner can't verify it
GH-5 (CODEOWNERS)	warning	info	Org-wide fallback common; runner can't verify it

Why no gh-api-based checks for org-wide files?

The runner's allowlist deliberately excludes gh. Adding it would let arbitrary gh api invocations run during automated assessment, which broadens the security surface for a payoff (org-wide file detection) that is only meaningful for a small subset of repos. The severity demotion is the correct tradeoff: the checks still surface as info so consumers can choose to address them, without flagging org-aware repos as failing.

Verification

Run the runner against netresearch/agent-harness-skill (the same repo that surfaced these issues during /assess):

bash /home/sme/.claude/skills/automated-assessment/scripts/run-checkpoints.sh \
  skills/github-project/checkpoints.yaml /home/sme/p/agent-harness-skill/main

Before this PR: 5 passed, 21 failed, 0 skipped — including 4 Command rejected: ... rejections that the assessor cannot remediate from the project side.

After this PR: 8 passed, 16 failed, 2 skipped — zero Command rejected rejections. Remaining failures are all genuine repo gaps (missing files, missing patterns in target files), not allowlist issues. GH-30 and GH-31 cleanly skip with explanatory evidence.

Test plan

• Skill-validation CI passes
• Assessment runner produces zero Command rejected results on agent-harness-skill
• /assess github-project against another netresearch repo evaluates all checkpoints without rejection

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Scanned Files

None

[gemini-code-assist]

Code Review

This pull request updates the checkpoints.yaml file to modernize file existence checks and branch protection audits. Specifically, it replaces several shell-based command checks with a more structured file_exists type using glob-like patterns for licenses, security policies, and dependency configurations. It also introduces a new gh_api type for branch protection rules to handle GitHub API interactions more cleanly. The review feedback suggests further expanding the allowed filenames and extensions for licenses, dependency tools, and GitHub Actions workflows to include common variants like COPYING, .yaml, and .json5.

[Copilot]

Pull request overview

This PR updates skills/github-project/checkpoints.yaml so the GitHub project skill's mechanical checks align better with the assessment runner and better recognize common repository layouts.

Changes:

• Replaces unsafe command-based checks in GH-6 and GH-23 with file_exists targets using brace expansion.
• Broadens GH-2 through GH-5 to accept more license/community-health file locations and adjusts severities/descriptions for org-wide defaults.
• Rewrites GH-30 and GH-31 from shell commands to gh_api checkpoint definitions intended to skip cleanly instead of being rejected by the runner.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.