HMRHarden My Repo

Practical checklist

Claude Code setup checklist for a repeatable repository

A useful setup is more than a long CLAUDE.md. Separate durable instructions, permission boundaries, deterministic automation, and workflows that still require judgment.

This checklist does not prove that a repository is secure or correct. It finds missing configuration and untested assumptions before you grant an agent more autonomy.

1. Give Claude accurate project instructions

Keep always-loaded guidance concise. Move occasional procedures and long reference material into focused skills or linked documentation.

2. Choose permissions for the environment

A permissive profile may be reasonable in a disposable repository and unreasonable in a production checkout. The repository and task determine the boundary.

3. Use hooks for deterministic checks

Use a hook when an action should run on a lifecycle event without asking the model to remember it: formatting an edited file, rejecting selected command patterns, scanning staged changes, or running a fast test before stopping.

A hook enforces only the cases its matcher and implementation cover. A command-pattern block is not a general sandbox, and a secret-pattern scan is not a complete secret audit.

4. Package repeated work at the right layer

LayerBest use
CLAUDE.mdFacts and rules needed in most sessions.
SkillA reusable checklist, procedure, or reference loaded when relevant.
SubagentA focused task that benefits from separate context, tools, or review instructions.
HookA deterministic action tied to a tool or lifecycle event.
MCP serverAccess to an external system or source of live data.

If a procedure keeps making CLAUDE.md longer, it is probably a skill. If a rule must be enforced rather than remembered, it needs a hook, permission rule, sandbox, or existing repository control.

5. Verify the setup before trusting it

  1. Open a disposable branch or test repository.
  2. Confirm Claude sees the intended project instructions.
  3. Exercise every installed skill and subagent with a small representative task.
  4. Trigger each hook deliberately and inspect the result.
  5. Confirm denied actions are denied and ordinary development commands still work.
  6. Run normal repository checks outside the agent as a control.
  7. Record version-sensitive behavior and the documentation used to verify it.

Configuration that merely parses is not yet verified. An acceptance test must exercise the behavior you expect to rely on.

6. Make the setup reproducible for the team

A small definition of ready

A new contributor can clone the repository, identify the active agent configuration, run its documented checks, and explain which actions still require approval. Unknowns remain explicit instead of being replaced with optimistic defaults.

Check your current setup

Run the free browser audit or inspect Lite before buying anything. The $9 setup kit adds the full templates, profiles, workflows, and implementation guidance.

Audit a repo freeDownload Lite free

Setup FAQ

Does every repository need a large CLAUDE.md?

No. A short file containing accurate commands, non-obvious architecture, boundaries, and completion checks is usually more useful than a broad handbook.

Are hooks the same as permissions?

No. Permission rules govern whether a tool use is allowed or needs approval. Hooks run on configured events and can perform checks or return decisions.

Should project configuration be committed?

Commit configuration that should apply to the team. Keep credentials, personal preferences, and machine-specific overrides in user or local scope.