feat: Initial Claude Code plugin template

Complete plugin template with:
- Marketplace and plugin configuration
- Example skill demonstrating structure
- Validation framework (naming, JSON, frontmatter)
- GitHub Actions CI/CD
- Security scanning
- ShellCheck integration
- Git hooks
- Comprehensive documentation
- Interactive setup script

Features:
✅ Zero-warning ShellCheck compliance
✅ Automated validation
✅ Production-ready workflows
✅ Placeholder replacement system
✅ Quality standards enforcement

Usage:
1. Click "Use this template" on GitHub
2. Run ./scripts/setup.sh
3. Customize skills/
4. Push to GitHub

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>

Author: ZenterFlow

.claude-plugin/marketplace.json

@@ -0,0 +1,18 @@
+{
+  "name": "{{PLUGIN_NAME}}-marketplace",
+  "version": "1.0.0",
+  "description": "Marketplace for {{PLUGIN_NAME}} plugin",
+  "owner": {
+    "name": "{{AUTHOR_NAME}}",
+    "email": "{{AUTHOR_EMAIL}}",
+    "url": "https://github.com/{{GITHUB_USERNAME}}"
+  },
+  "plugins": [
+    {
+      "name": "{{PLUGIN_NAME}}",
+      "source": ".",
+      "description": "{{PLUGIN_DESCRIPTION}}",
+      "version": "1.0.0"
+    }
+  ]
+}

.claude-plugin/plugin.json

@@ -0,0 +1,26 @@
+{
+  "name": "{{PLUGIN_NAME}}",
+  "version": "1.0.0",
+  "description": "{{PLUGIN_DESCRIPTION}}",
+  "author": {
+    "name": "{{AUTHOR_NAME}}",
+    "email": "{{AUTHOR_EMAIL}}",
+    "url": "https://github.com/{{GITHUB_USERNAME}}"
+  },
+  "license": "MIT",
+  "keywords": [
+    "claude-code",
+    "plugin",
+    "{{KEYWORD_1}}",
+    "{{KEYWORD_2}}"
+  ],
+  "category": "tools",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/{{GITHUB_USERNAME}}/{{REPO_NAME}}.git"
+  },
+  "homepage": "https://github.com/{{GITHUB_USERNAME}}/{{REPO_NAME}}#readme",
+  "bugs": {
+    "url": "https://github.com/{{GITHUB_USERNAME}}/{{REPO_NAME}}/issues"
+  }
+}

.gitattributes

@@ -0,0 +1,29 @@
+# Enforce LF line endings (not CRLF) for shell scripts and text files
+# This prevents SC1017 errors in Linux/macOS environments
+
+*.sh text eol=lf
+*.md text eol=lf
+*.json text eol=lf
+*.yml text eol=lf
+*.yaml text eol=lf
+*.txt text eol=lf
+
+# Binary files
+*.png binary
+*.jpg binary
+*.jpeg binary
+*.gif binary
+*.ico binary
+*.mov binary
+*.mp4 binary
+*.mp3 binary
+*.flv binary
+*.fla binary
+*.swf binary
+*.gz binary
+*.zip binary
+*.7z binary
+*.ttf binary
+*.eot binary
+*.woff binary
+*.woff2 binary

.github/template-settings.json

@@ -0,0 +1,18 @@
+{
+  "name": "claude-code-plugin-template",
+  "description": "Production-ready template for Claude Code plugins with validation, testing, and CI/CD",
+  "template": {
+    "name": "Claude Code Plugin Template",
+    "description": "High-quality plugin template with built-in validation, ShellCheck integration, GitHub Actions, and comprehensive documentation",
+    "owner": "ZenterFlow",
+    "topics": [
+      "claude-code",
+      "plugin-template",
+      "template",
+      "validation",
+      "shellcheck",
+      "ci-cd",
+      "github-actions"
+    ]
+  }
+}

.github/workflows/security.yml

@@ -0,0 +1,96 @@
+name: Security Scan
+
+on:
+  push:
+    branches: [ main ]
+    paths:
+      - '**/*.sh'
+      - '.github/workflows/security.yml'
+  schedule:
+    - cron: '0 9 * * 1'  # Every Monday at 9 AM UTC
+  workflow_dispatch:
+
+permissions:
+  contents: read
+
+jobs:
+  shellcheck:
+    name: ShellCheck Security Analysis
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Install ShellCheck
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y shellcheck
+
+      - name: Run ShellCheck with security focus
+        run: |
+          echo "🔒 Running security-focused ShellCheck analysis..."
+          echo ""
+
+          SCRIPTS=$(find . -name "*.sh" -type f)
+
+          for script in $SCRIPTS; do
+            echo "━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━"
+            echo "Analyzing: $script"
+            echo "━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━"
+
+            shellcheck \
+              --severity=warning \
+              --shell=bash \
+              --format=gcc \
+              "$script"
+
+            echo ""
+          done
+
+          echo "✅ Security analysis complete!"
+
+  secrets:
+    name: Secret Detection
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Check for secrets in code
+        run: |
+          echo "🔍 Checking for accidentally committed secrets..."
+
+          SECRETS_FOUND=0
+
+          if grep -r "GITHUB_TOKEN=[A-Za-z0-9_-]\{20,\}" . \
+            --exclude-dir=.git \
+            --exclude-dir=.github \
+            --exclude="*.md"; then
+            echo "⚠️  Found potential GitHub token!"
+            SECRETS_FOUND=1
+          fi
+
+          if grep -r "password\s*=\s*['\"][A-Za-z0-9_-]\{8,\}['\"]" . \
+            --exclude-dir=.git \
+            --exclude-dir=.github \
+            --exclude="*.md"; then
+            echo "⚠️  Found potential password!"
+            SECRETS_FOUND=1
+          fi
+
+          if grep -r "api[_-]key\s*=\s*['\"][A-Za-z0-9_-]\{20,\}['\"]" . \
+            --exclude-dir=.git \
+            --exclude-dir=.github \
+            --exclude="*.md"; then
+            echo "⚠️  Found potential API key!"
+            SECRETS_FOUND=1
+          fi
+
+          if [ $SECRETS_FOUND -eq 0 ]; then
+            echo "✅ No secrets detected"
+          else
+            echo "❌ Potential secrets found! Please review."
+            exit 1
+          fi

.github/workflows/validate.yml

@@ -0,0 +1,45 @@
+name: Validate Plugin
+
+on:
+  push:
+    branches: [ main, develop ]
+  pull_request:
+    branches: [ main ]
+
+permissions:
+  contents: read
+
+jobs:
+  validate:
+    name: Plugin Validation
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Install ShellCheck
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y shellcheck
+
+      - name: Install jq
+        run: |
+          sudo apt-get install -y jq
+
+      - name: Run validation scripts
+        run: |
+          chmod +x scripts/*.sh
+          ./scripts/validate-all.sh
+
+      - name: Validation Summary
+        if: always()
+        run: |
+          echo "━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━"
+          echo "🔍 Validation Complete"
+          echo "━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━"
+          echo ""
+          echo "Repository: ${{ github.repository }}"
+          echo "Branch: ${{ github.ref_name }}"
+          echo "Commit: ${{ github.sha }}"
+          echo ""

.gitignore

@@ -0,0 +1,112 @@
+# Claude Code local settings
+.claude/
+
+# OS files
+.DS_Store
+Thumbs.db
+desktop.ini
+
+# IDE files
+.vscode/
+.idea/
+*.swp
+*.swo
+*~
+
+# Temporary files
+*.log
+*.tmp
+*.temp
+
+# ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
+# SECURITY: Secrets and Sensitive Data
+# ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
+
+# Environment files
+.env
+.env.*
+!.env.example
+*.env
+
+# Secrets and keys
+secrets/
+*.key
+*.pem
+*.p12
+*.pfx
+*.cer
+*.crt
+*_rsa
+*_dsa
+*_ecdsa
+*_ed25519
+
+# Credentials
+credentials.json
+credentials.yml
+credentials.yaml
+auth.json
+token.txt
+*.credentials
+
+# API Keys
+*apikey*
+*api_key*
+*api-key*
+
+# GPG
+secring.*
+*.gpg
+!*.gpg.asc
+
+# SSH
+known_hosts
+authorized_keys
+
+# Cloud provider credentials
+.aws/
+.azure/
+.gcloud/
+
+# Database
+*.db
+*.db-journal
+*.sqlite
+*.sqlite3
+
+# Backup files
+*.bak
+*.backup
+*.old
+
+# ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
+# DEVELOPMENT
+# ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
+
+# Node modules (if using JavaScript tooling)
+node_modules/
+package-lock.json
+yarn.lock
+
+# Python (if using Python validation)
+__pycache__/
+*.py[cod]
+*$py.class
+.Python
+venv/
+env/
+
+# Test coverage
+coverage/
+.coverage
+htmlcov/
+
+# Build artifacts
+dist/
+build/
+*.egg-info/
+
+# Development notes
+notes/
+scratch/
+*.draft.md

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) {{CURRENT_YEAR}} {{AUTHOR_NAME}}
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.