thumbgate 1.3.0 → 1.4.1

package/scripts/check-congruence.js

@@ -18,8 +18,53 @@ const {
   PRODUCTHUNT_URL,
   getClaudePluginLatestDownloadUrl,
 } = require('./distribution-surfaces');
+const {
+  TEAM_MIN_SEATS,
+  TEAM_MONTHLY_PRICE_DOLLARS,
+  TEAM_PRICE_LABEL,
+} = require('./commercial-offer');
 
 const ROOT = path.join(__dirname, '..');
+const PRICING_SURFACE_ROOTS = [
+  'README.md',
+  'SKILL.md',
+  'bin',
+  'docs',
+  'public',
+  '.agents/skills/thumbgate/SKILL.md',
+  '.claude/skills/thumbgate/SKILL.md',
+];
+const PRICING_SURFACE_EXTENSIONS = new Set(['.html', '.js', '.json', '.md', '.txt']);
+const LEGACY_THUMBGATE_PRICING_PATTERNS = [
+  {
+    label: 'legacy $12 Team seat price',
+    pattern: /\$12\s*\/\s*seat\s*\/\s*mo|\$12\/seat|\bTEAM \$12\b|"price":\s*"12"/i,
+  },
+  {
+    label: 'retired founder $5 pricing',
+    pattern: /(?:Founding Member|Founding|founder)[^\n]{0,80}\$5\/mo|\$5\/mo[^\n]{0,80}(?:Founding Member|Founding|founder)|Price:\s*\$5\/mo recurring/i,
+  },
+  {
+    label: 'retired $10 Pro pricing',
+    pattern: /(?:\*\*Pro\*\*|\bPro\b|price reverts|paying users)[^\n]{0,80}\$10\/mo|\$10\/mo[^\n]{0,80}(?:\*\*Pro\*\*|\bPro\b|price reverts|paying users)/i,
+  },
+  {
+    label: 'retired $29 Team pricing',
+    pattern: /(?:\*\*Team\*\*|Team)[^\n]{0,80}\$29\/mo|\$29\/mo[^\n]{0,80}(?:\*\*Team\*\*|Team)/i,
+  },
+  {
+    label: 'retired $19 starter-pack positioning',
+    pattern: /Mistake-Free Starter Pack|Mistake-Free Starter Pack[^\n]{0,80}\$19\/mo|\$19\/mo[^\n]{0,80}subscriptions/i,
+  },
+  {
+    label: 'retired $49 founder lifetime pricing',
+    pattern: /(?:Founding Member|Founder|Founding Member Deal)[^\n]{0,100}\$49|\$49[^\n]{0,100}(?:Pro forever|Founding Member|Founder)/i,
+  },
+  {
+    label: 'retired founder-license positioning',
+    pattern: /founder[- ]license/i,
+  },
+];
 
 function read(rel) {
   const full = path.join(ROOT, rel);
@@ -27,6 +72,27 @@ function read(rel) {
   return fs.readFileSync(full, 'utf-8');
 }
 
+function listTextFiles(rel) {
+  const full = path.join(ROOT, rel);
+  if (!fs.existsSync(full)) return [];
+  const stat = fs.statSync(full);
+  if (stat.isFile()) {
+    return PRICING_SURFACE_EXTENSIONS.has(path.extname(full)) ? [rel] : [];
+  }
+  if (!stat.isDirectory()) return [];
+
+  const files = [];
+  for (const entry of fs.readdirSync(full, { withFileTypes: true })) {
+    const childRel = path.join(rel, entry.name);
+    if (entry.isDirectory()) {
+      files.push(...listTextFiles(childRel));
+    } else if (PRICING_SURFACE_EXTENSIONS.has(path.extname(entry.name))) {
+      files.push(childRel);
+    }
+  }
+  return files;
+}
+
 async function main() {
   const errors = [];
   const githubAbout = loadGitHubAboutConfig(ROOT);
@@ -43,16 +109,32 @@ async function main() {
 
   const landingHtml = read('public/index.html') || '';
   const guideHtml = read('public/guide.html') || '';
+  const compareHtml = read('public/compare.html') || '';
+  const proHtml = read('public/pro.html') || '';
   const readmeMd = read('README.md') || '';
   const commercialTruth = read('docs/COMMERCIAL_TRUTH.md') || '';
+  const docsLandingHtml = read('docs/landing-page.html') || '';
   const agentsMd = read('AGENTS.md') || '';
   const claudeMd = read('CLAUDE.md') || '';
   const geminiMd = read('GEMINI.md') || '';
   const serverStdio = read('adapters/mcp/server-stdio.js') || '';
   const productHuntKit = read('docs/marketing/product-hunt-launch.md') || '';
+  const productHuntLaunchKit = read('docs/marketing/product-hunt-launch-kit.md') || '';
   const claudePluginReadme = read('.claude-plugin/README.md') || '';
   const claudeDesktopPacket = read('docs/CLAUDE_DESKTOP_EXTENSION.md') || '';
   const latestClaudePluginUrl = getClaudePluginLatestDownloadUrl(ROOT);
+  const teamSeatPrice = `$${TEAM_MONTHLY_PRICE_DOLLARS}/seat/mo`;
+  const teamSeatPricePattern = new RegExp(`\\$${TEAM_MONTHLY_PRICE_DOLLARS}/seat/mo`, 'i');
+  const pricingSurfaceFiles = PRICING_SURFACE_ROOTS.flatMap(listTextFiles);
+  const legacyPricingHits = [];
+  for (const rel of pricingSurfaceFiles) {
+    const text = read(rel) || '';
+    for (const { label, pattern } of LEGACY_THUMBGATE_PRICING_PATTERNS) {
+      if (pattern.test(text)) {
+        legacyPricingHits.push(`${rel} (${label})`);
+      }
+    }
+  }
 
   check(
     landingHtml.includes(`v${version}`),
@@ -137,7 +219,19 @@ async function main() {
     'public/guide.html must advertise the current Pro monthly and annual pricing'
   );
   check(
-    /\$12\/seat\/mo/i.test(guideHtml),
+    TEAM_MONTHLY_PRICE_DOLLARS === 99 && TEAM_MIN_SEATS === 3,
+    'scripts/commercial-offer.js must anchor Team at $99/seat/mo with a 3-seat minimum'
+  );
+  check(
+    TEAM_PRICE_LABEL.includes(teamSeatPrice),
+    'scripts/commercial-offer.js Team label must match the canonical Team seat price'
+  );
+  check(
+    legacyPricingHits.length === 0,
+    `Legacy ThumbGate pricing found in public pricing surfaces: ${legacyPricingHits.join(', ')}`
+  );
+  check(
+    teamSeatPricePattern.test(guideHtml),
     'public/guide.html must advertise the current Team pricing anchor'
   );
   check(
@@ -145,17 +239,33 @@ async function main() {
     'docs/COMMERCIAL_TRUTH.md must record the current Pro offer'
   );
   check(
-    /shared lessons and org visibility/i.test(githubAbout.description),
-    'config/github-about.json description must mention shared lessons and org visibility'
+    teamSeatPricePattern.test(commercialTruth),
+    'docs/COMMERCIAL_TRUTH.md must record the current Team pricing anchor'
+  );
+  check(
+    /shared lessons and org visibility/i.test(githubAbout.metaDescription),
+    'config/github-about.json metaDescription must mention shared lessons and org visibility'
   );
   check(
     /\$19\/mo or \$149\/yr/i.test(readmeMd),
     'README.md must advertise the current Pro monthly and annual pricing'
   );
   check(
-    /\$12\/seat\/mo/i.test(readmeMd),
+    teamSeatPricePattern.test(readmeMd),
     'README.md must advertise the current Team pricing anchor'
   );
+  for (const [surface, text] of Object.entries({
+    'public/index.html': landingHtml,
+    'public/compare.html': compareHtml,
+    'public/pro.html': proHtml,
+    'docs/landing-page.html': docsLandingHtml,
+    'docs/marketing/product-hunt-launch-kit.md': productHuntLaunchKit,
+  })) {
+    check(
+      teamSeatPricePattern.test(text),
+      `${surface} must advertise the current Team pricing anchor`
+    );
+  }
   check(
     /shared hosted lesson db/i.test(readmeMd),
     'README.md must describe the shared hosted Team lesson database'
@@ -246,24 +356,32 @@ async function main() {
     'public/index.html must explain the thumbs-down feedback path'
   );
   check(
-    githubAbout.description.includes('👍'),
-    'config/github-about.json description must include the thumbs-up icon'
+    githubAbout.metaDescription.includes('👍'),
+    'config/github-about.json metaDescription must include the thumbs-up icon'
+  );
+  check(
+    githubAbout.metaDescription.includes('👎'),
+    'config/github-about.json metaDescription must include the thumbs-down icon'
+  );
+  check(
+    /thumbs[\s-]?up/i.test(githubAbout.metaDescription),
+    'config/github-about.json metaDescription must mention thumbs-up feedback'
   );
   check(
-    githubAbout.description.includes('👎'),
-    'config/github-about.json description must include the thumbs-down icon'
+    /thumbs[\s-]?down/i.test(githubAbout.metaDescription),
+    'config/github-about.json metaDescription must mention thumbs-down feedback'
   );
   check(
-    /thumbs[\s-]?up/i.test(githubAbout.description),
-    'config/github-about.json description must mention thumbs-up feedback'
+    /history-aware lessons/i.test(githubAbout.metaDescription),
+    'config/github-about.json metaDescription must mention history-aware lessons'
   );
   check(
-    /thumbs[\s-]?down/i.test(githubAbout.description),
-    'config/github-about.json description must mention thumbs-down feedback'
+    /agent governance/i.test(githubAbout.githubDescription),
+    'config/github-about.json githubDescription must mention agent governance'
   );
   check(
-    /history-aware lessons/i.test(githubAbout.description),
-    'config/github-about.json description must mention history-aware lessons'
+    /pre-action gates|shared lessons|team safeguards/i.test(githubAbout.githubDescription),
+    'config/github-about.json githubDescription must preserve the GitHub repo positioning'
   );
   check(
     productHuntKit.includes(PRODUCTHUNT_URL),

package/scripts/commercial-offer.js

@@ -2,20 +2,19 @@
 
 const PRO_MONTHLY_PAYMENT_LINK = 'https://buy.stripe.com/5kQ4gzbmI9Lo6tPayn3sI06';
 const PRO_ANNUAL_PAYMENT_LINK = 'https://buy.stripe.com/3cI8wPfCYaPs2dzdKz3sI07';
-const PRO_FOUNDER_PAYMENT_LINK = 'https://buy.stripe.com/aFa4gz1M84r419v7mb3sI05';
 
 const PRO_MONTHLY_PRICE_ID = 'price_1THQY7GGBpd520QYHoS7RG0J';
 const PRO_ANNUAL_PRICE_ID = 'price_1THQZ7GGBpd520QYxzDRnxhB';
-const TEAM_MONTHLY_PRICE_ID = 'price_1THQa5GGBpd520QYoqdq1R1S';
+const TEAM_MONTHLY_PRICE_ID = 'price_1TKLUhGGBpd520QYr5pgEZit';
 
 const PRO_MONTHLY_PRICE_DOLLARS = 19;
 const PRO_ANNUAL_PRICE_DOLLARS = 149;
-const TEAM_MONTHLY_PRICE_DOLLARS = 12;
-const TEAM_ANNUAL_PRICE_DOLLARS = 99;
+const TEAM_MONTHLY_PRICE_DOLLARS = 99;
+const TEAM_ANNUAL_PRICE_DOLLARS = 1188;
 const TEAM_MIN_SEATS = 3;
 
-const PRO_PRICE_LABEL = '$19/mo or $149/yr';
-const TEAM_PRICE_LABEL = 'Starts at $36/mo for 3 seats, then $12/seat/mo';
+const PRO_PRICE_LABEL = '$19/mo or $149/yr (individual)';
+const TEAM_PRICE_LABEL = '$99/seat/mo — Agent governance for engineering teams';
 
 function normalizePlanId(value) {
   const text = String(value || '').trim().toLowerCase();
@@ -39,7 +38,6 @@ function normalizeSeatCount(value, fallback = TEAM_MIN_SEATS) {
 module.exports = {
   PRO_MONTHLY_PAYMENT_LINK,
   PRO_ANNUAL_PAYMENT_LINK,
-  PRO_FOUNDER_PAYMENT_LINK,
   PRO_MONTHLY_PRICE_ID,
   PRO_ANNUAL_PRICE_ID,
   TEAM_MONTHLY_PRICE_ID,

package/scripts/content-engine/linkedin-content-generator.js

@@ -0,0 +1,154 @@
+#!/usr/bin/env node
+
+/**
+ * LinkedIn Content Generator for ThumbGate Gates
+ *
+ * Usage:
+ *   node scripts/content-engine/linkedin-content-generator.js
+ *   node scripts/content-engine/linkedin-content-generator.js --preview
+ *
+ * Suggested package.json scripts:
+ *   "content:linkedin": "node scripts/content-engine/linkedin-content-generator.js"
+ *   "content:linkedin:preview": "node scripts/content-engine/linkedin-content-generator.js --preview"
+ */
+
+const crypto = require('crypto');
+const fs = require('fs');
+const path = require('path');
+
+// Read gate config
+const configPath = path.join(__dirname, '../../config/gates/default.json');
+let config;
+try {
+  config = JSON.parse(fs.readFileSync(configPath, 'utf8'));
+} catch (err) {
+  process.stderr.write(`Failed to load gate config from ${configPath}: ${err.message}\n`);
+  process.exit(1);
+}
+
+// Select 7 diverse gates across severity levels
+const severityOrder = { critical: 0, high: 1, medium: 2, low: 3 };
+const gatesBySeverity = {
+  critical: [],
+  high: [],
+  medium: [],
+  low: []
+};
+
+config.gates.forEach(gate => {
+  const severity = gate.severity || 'low';
+  if (gatesBySeverity[severity]) {
+    gatesBySeverity[severity].push(gate);
+  }
+});
+
+// Select one from each severity, then fill remaining from largest buckets
+const selected = [];
+['critical', 'high', 'medium', 'low'].forEach(severity => {
+  if (gatesBySeverity[severity].length > 0) {
+    selected.push(gatesBySeverity[severity][0]);
+  }
+});
+
+// Fill remaining slots (7 total) — shuffle with crypto-secure randomness (Fisher-Yates)
+const remaining = config.gates.filter(g => !selected.includes(g));
+for (let i = remaining.length - 1; i > 0; i--) {
+  const j = crypto.randomInt(i + 1);
+  [remaining[i], remaining[j]] = [remaining[j], remaining[i]];
+}
+while (selected.length < 7 && remaining.length > 0) {
+  selected.push(remaining.pop());
+}
+
+// Generate LinkedIn post content
+const posts = selected.map((gate, index) => {
+  const hookLines = [
+    '🚨 Your AI agents are running without guardrails.',
+    '⚠️ One missing gate. One catastrophic mistake.',
+    '🛡️ Even the best engineers miss edge cases.',
+    '💥 Your deployment pipeline has a blind spot.',
+    '🔓 Git operations—unguarded by default.',
+    '🎯 Prevention beats firefighting.',
+    '⏱️ How fast can your agent destroy a month of work?'
+  ];
+
+  const gateDescriptions = {
+    'local-only-git-writes': 'Blocks git writes when local-only mode is active, preventing accidental remote pushes during development.',
+    'task-scope-required': 'Enforces explicit task scoping before any git, PR, or publish operations can proceed.',
+    'protected-file-approval-required': 'Requires human approval before modifying sensitive files like CLAUDE.md, configs, and skills.',
+    'gh-pr-create-restricted': 'Restricts PR creation to explicitly approved workflows, preventing unvetted code changes.',
+    'gh-pr-merge-restricted': 'Blocks PR merges without explicit permission, enforcing code review discipline.',
+    'branch-governance-required': 'Demands branch governance context before release, deploy, or publish actions.',
+    'force-push': 'Blocks destructive force-push operations—no exceptions.',
+    'protected-branch-push': 'Prevents direct pushes to main/develop. All changes flow through PR review.',
+    'release-readiness-required': 'Ensures releases only happen from releasable mainline commits with version alignment.',
+    'admin-merge-bypass-blocked': 'Blocks admin merge bypass. Code review gates apply equally to everyone.',
+    'push-without-thread-check': 'Forces thread review before pushing—prevents shipping unresolved feedback.',
+    'env-file-edit': 'Warns when editing .env files—catches accidental token deletion.',
+    'unverified-skill-use': 'Validates skill provenance before delegating to subagents in restricted modes.',
+    'production-deploy-approval': 'Requires human sign-off on production deployments.',
+    'schema-migration-approval': 'Demands approval for database schema migrations—no surprise breaking changes.',
+    'supply-chain-dep-add': 'Audits package.json mutations for typosquatting and suspicious installs.',
+    'deny-network-egress': 'Warns on unauthorized egress—catches exfiltration attempts early.'
+  };
+
+  const post = `
+## Post ${index + 1}: ${gate.id.split('-').map(w => w.charAt(0).toUpperCase() + w.slice(1)).join(' ')}
+
+${hookLines[index % hookLines.length]}
+
+${gateDescriptions[gate.id] || `Protects your workflow by ${gate.message.toLowerCase()}`}
+
+The problem? AI agents run autonomously. A single unchecked operation—a force-push, an unapproved deploy, a dependency injection—can unwind days of work in seconds. Traditional CI won't catch it. Your human reviewer might miss it.
+
+The solution? **Gate \`${gate.id}\`** in ThumbGate stops high-risk operations *before* they execute. No second chances. Just prevention.
+
+This isn't about slowing down. It's about building trust in autonomous systems. Every gate is a rule learned from real failures.
+
+🔒 Install ThumbGate today:
+\`\`\`bash
+npx thumbgate@latest init
+\`\`\`
+
+Then add this gate to your config and sleep better.
+
+#AIGovernance #DevTools #AgentSafety #EngineeringTeams
+
+---
+`;
+  return post;
+});
+
+// Generate output filename with today's date
+const today = new Date();
+const dateStr = today.toISOString().split('T')[0]; // YYYY-MM-DD
+const outputDir = path.join(__dirname, 'output');
+const outputFile = path.join(outputDir, `linkedin-posts-${dateStr}.md`);
+
+// Create output directory if it doesn't exist
+if (!fs.existsSync(outputDir)) {
+  fs.mkdirSync(outputDir, { recursive: true });
+}
+
+// Generate markdown content
+const markdown = `# LinkedIn Content: ThumbGate Gates (${dateStr})
+
+Generated from: \`config/gates/default.json\`
+Gate count in config: ${config.gates.length}
+Posts generated: ${selected.length}
+
+---
+${posts.join('\n')}
+`;
+
+// Output or write file
+const preview = process.argv.includes('--preview');
+if (preview) {
+  console.log(markdown);
+  console.log(`\n✅ Preview mode (${selected.length} posts)`);
+} else {
+  fs.writeFileSync(outputFile, markdown, 'utf8');
+  console.log(`✅ Generated ${selected.length} LinkedIn posts to: ${outputFile}`);
+  console.log(`   Severities: ${selected.map(g => g.severity).sort().join(', ')}`);
+  console.log(`   Gates: ${selected.map(g => g.id).join(', ')}`);
+}

package/scripts/content-engine/output/linkedin-memento-validation.md

@@ -0,0 +1,17 @@
+# ThumbGate: Validated in Production
+
+Academic research just proved what we've been running in production for 18 months.
+
+The Memento-Skills paper (arXiv 2603.18743) demonstrates that external skill memory systems — ones that rewrite themselves from failure feedback — achieve 26-116% accuracy improvements without touching the model. No retraining. No fine-tuning. Just structured context engineering.
+
+That's exactly what ThumbGate does. We capture agent failures, infer prevention rules, and inject them as PreToolUse gates. The paper's Read → Execute → Reflect → Write loop maps directly to our capture → infer → enforce → block cycle. The academic validation confirms what we've observed: you don't need to retrain your model to make it safer and more reliable. You need better context.
+
+ThumbGate processes real-world AI agent failures — git operations, code edits, file writes, API calls — and learns from them. Every "thumbs down" on a failed action becomes a lesson. Every lesson becomes a rule. Every rule becomes a gate that stops the same mistake from happening again. The feedback loop is tight. The enforcement is immediate.
+
+The paper validates the core insight: agents fail in predictable ways, and those patterns can be captured, learned, and blocked without model modification. That's not theoretical. We're doing it now, across 48+ tool adapters and 4,500+ prevention gates, with zero retraining.
+
+Context engineering works. The research proves it. The production metrics show it.
+
+Try it: `npx thumbgate@latest init`
+
+#AIGovernance #AgentSafety #MementoSkills #ContextEngineering

package/scripts/content-engine/output/linkedin-posts-2026-04-09.md

@@ -0,0 +1,175 @@
+# LinkedIn Content: ThumbGate Gates (2026-04-09)
+
+Generated from: `config/gates/default.json`
+Gate count in config: 25
+Posts generated: 7
+
+---
+
+## Post 1: Local Only Git Writes
+
+🚨 Your AI agents are running without guardrails.
+
+Blocks git writes when local-only mode is active, preventing accidental remote pushes during development.
+
+The problem? AI agents run autonomously. A single unchecked operation—a force-push, an unapproved deploy, a dependency injection—can unwind days of work in seconds. Traditional CI won't catch it. Your human reviewer might miss it.
+
+The solution? **Gate `local-only-git-writes`** in ThumbGate stops high-risk operations *before* they execute. No second chances. Just prevention.
+
+This isn't about slowing down. It's about building trust in autonomous systems. Every gate is a rule learned from real failures.
+
+🔒 Install ThumbGate today:
+```bash
+npx thumbgate@latest init
+```
+
+Then add this gate to your config and sleep better.
+
+#AIGovernance #DevTools #AgentSafety #EngineeringTeams
+
+---
+
+
+## Post 2: Gh Pr Create Restricted
+
+⚠️ One missing gate. One catastrophic mistake.
+
+Restricts PR creation to explicitly approved workflows, preventing unvetted code changes.
+
+The problem? AI agents run autonomously. A single unchecked operation—a force-push, an unapproved deploy, a dependency injection—can unwind days of work in seconds. Traditional CI won't catch it. Your human reviewer might miss it.
+
+The solution? **Gate `gh-pr-create-restricted`** in ThumbGate stops high-risk operations *before* they execute. No second chances. Just prevention.
+
+This isn't about slowing down. It's about building trust in autonomous systems. Every gate is a rule learned from real failures.
+
+🔒 Install ThumbGate today:
+```bash
+npx thumbgate@latest init
+```
+
+Then add this gate to your config and sleep better.
+
+#AIGovernance #DevTools #AgentSafety #EngineeringTeams
+
+---
+
+
+## Post 3: Env File Edit
+
+🛡️ Even the best engineers miss edge cases.
+
+Warns when editing .env files—catches accidental token deletion.
+
+The problem? AI agents run autonomously. A single unchecked operation—a force-push, an unapproved deploy, a dependency injection—can unwind days of work in seconds. Traditional CI won't catch it. Your human reviewer might miss it.
+
+The solution? **Gate `env-file-edit`** in ThumbGate stops high-risk operations *before* they execute. No second chances. Just prevention.
+
+This isn't about slowing down. It's about building trust in autonomous systems. Every gate is a rule learned from real failures.
+
+🔒 Install ThumbGate today:
+```bash
+npx thumbgate@latest init
+```
+
+Then add this gate to your config and sleep better.
+
+#AIGovernance #DevTools #AgentSafety #EngineeringTeams
+
+---
+
+
+## Post 4: Style Violation Log
+
+💥 Your deployment pipeline has a blind spot.
+
+Protects your workflow by style audit mode active. action recorded for review but allowed to proceed.
+
+The problem? AI agents run autonomously. A single unchecked operation—a force-push, an unapproved deploy, a dependency injection—can unwind days of work in seconds. Traditional CI won't catch it. Your human reviewer might miss it.
+
+The solution? **Gate `style-violation-log`** in ThumbGate stops high-risk operations *before* they execute. No second chances. Just prevention.
+
+This isn't about slowing down. It's about building trust in autonomous systems. Every gate is a rule learned from real failures.
+
+🔒 Install ThumbGate today:
+```bash
+npx thumbgate@latest init
+```
+
+Then add this gate to your config and sleep better.
+
+#AIGovernance #DevTools #AgentSafety #EngineeringTeams
+
+---
+
+
+## Post 5: Loop Abuse Prevention
+
+🔓 Git operations—unguarded by default.
+
+Protects your workflow by high-risk command detected inside a loop. scheduled tasks must not perform egress or destructive writes without explicit approval.
+
+The problem? AI agents run autonomously. A single unchecked operation—a force-push, an unapproved deploy, a dependency injection—can unwind days of work in seconds. Traditional CI won't catch it. Your human reviewer might miss it.
+
+The solution? **Gate `loop-abuse-prevention`** in ThumbGate stops high-risk operations *before* they execute. No second chances. Just prevention.
+
+This isn't about slowing down. It's about building trust in autonomous systems. Every gate is a rule learned from real failures.
+
+🔒 Install ThumbGate today:
+```bash
+npx thumbgate@latest init
+```
+
+Then add this gate to your config and sleep better.
+
+#AIGovernance #DevTools #AgentSafety #EngineeringTeams
+
+---
+
+
+## Post 6: Release Readiness Required
+
+🎯 Prevention beats firefighting.
+
+Ensures releases only happen from releasable mainline commits with version alignment.
+
+The problem? AI agents run autonomously. A single unchecked operation—a force-push, an unapproved deploy, a dependency injection—can unwind days of work in seconds. Traditional CI won't catch it. Your human reviewer might miss it.
+
+The solution? **Gate `release-readiness-required`** in ThumbGate stops high-risk operations *before* they execute. No second chances. Just prevention.
+
+This isn't about slowing down. It's about building trust in autonomous systems. Every gate is a rule learned from real failures.
+
+🔒 Install ThumbGate today:
+```bash
+npx thumbgate@latest init
+```
+
+Then add this gate to your config and sleep better.
+
+#AIGovernance #DevTools #AgentSafety #EngineeringTeams
+
+---
+
+
+## Post 7: Protected Branch Push
+
+⏱️ How fast can your agent destroy a month of work?
+
+Prevents direct pushes to main/develop. All changes flow through PR review.
+
+The problem? AI agents run autonomously. A single unchecked operation—a force-push, an unapproved deploy, a dependency injection—can unwind days of work in seconds. Traditional CI won't catch it. Your human reviewer might miss it.
+
+The solution? **Gate `protected-branch-push`** in ThumbGate stops high-risk operations *before* they execute. No second chances. Just prevention.
+
+This isn't about slowing down. It's about building trust in autonomous systems. Every gate is a rule learned from real failures.
+
+🔒 Install ThumbGate today:
+```bash
+npx thumbgate@latest init
+```
+
+Then add this gate to your config and sleep better.
+
+#AIGovernance #DevTools #AgentSafety #EngineeringTeams
+
+---
+