Proposal: add a .gitallow allowlist for AI-generated repo artifacts #200163
Replies: 1 comment
-
|
💬 Your Product Feedback Has Been Submitted 🎉 Thank you for taking the time to share your insights with us! Your feedback is invaluable as we build a better GitHub experience for all our users. Here's what you can expect moving forward ⏩
Where to look to see what's shipping 👀
What you can do in the meantime 💻
As a member of the GitHub community, your participation is essential. While we can't promise that every suggestion will be implemented, we want to emphasize that your feedback is instrumental in guiding our decisions and priorities. Thank you once again for your contribution to making GitHub even better! We're grateful for your ongoing support and collaboration in shaping the future of our platform. ⭐ |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
🏷️ Discussion Type
Product Feedback
Body
Problem
AI workflows can create lots of extra files in a repo: plans, temporary scripts, generated output, and helper notes. With
.gitignore, it is easy for important files to be missed or for sensitive artifacts to be uploaded by mistake.This matters because even experienced teams can accidentally commit or share files they did not intend to expose, including agent instructions or repo-specific config such as
CLAUDE.md.Proposal
Add a
.gitallowallowlist that defines what is explicitly allowed to be tracked. Everything else would be skipped by default.Why this helps
Example risk
A file like
CLAUDE.mdor other internal guidance could be uploaded or committed unintentionally. An allowlist-based flow makes that less likely because only approved paths are considered valid.Why this matters
Publicly reported incidents involving Apple’s Support app and Netflix’s iOS app accidentally shipping
CLAUDE.mdfiles show that this is a real workflow risk, not just a theory.An allowlist-first approach would help prevent accidental exposure of internal agent instructions, repo guidance, and temporary AI artifacts.
Source links I used:
Beta Was this translation helpful? Give feedback.
All reactions