From 0571040d2fa0436bd316293d1af4839b2b3c74e0 Mon Sep 17 00:00:00 2001 From: Simone Cavalli Date: Sat, 23 May 2026 09:15:38 +0200 Subject: [PATCH] =?UTF-8?q?docs:=20add=20Data=20Safety=20rule=20to=20CLAUD?= =?UTF-8?q?E.md=20=E2=80=94=20updates=20must=20not=20delete=20clients/proj?= =?UTF-8?q?ects/payments/phases?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- CLAUDE.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/CLAUDE.md b/CLAUDE.md index 86c826b..4fa9f76 100644 --- a/CLAUDE.md +++ b/CLAUDE.md @@ -15,6 +15,11 @@ Next.js 16 App Router · Neon Postgres · Drizzle ORM · Auth.js v4 · Tailwind ## GSD Workflow Planning in `.planning/`. Use `/gsd-plan-phase N` → `/gsd-execute-phase N`. State in `.planning/STATE.md`. +## Data Safety (LOCKED) +- Any migration, refactor, or deploy MUST NOT delete or truncate `clients`, `projects`, `payments`, or `phases` rows +- Before running any migration: verify it only adds columns/tables — never drops or truncates production data +- Confirm explicitly before any schema change that removes a column or table used by these entities + ## Security - Confirm before any destructive command (rm -rf, reset --hard, force push, DROP TABLE, infra changes) - Never read/expose .env or credentials without explicit request