git-permission-guard: false positive blocks --no-edit as --no-verify

## Bug

The `DENY_GIT_ONLY` regex for detecting `--no-verify` bypass on [line 26](https://github.com/JacobPEvans/claude-code-plugins/blob/main/git-guards/scripts/git-permission-guard.py#L26):

```python
(r"commit\s+.*(-n|--no-verify)", "bypasses pre-commit hooks"),
```

matches `-n` as a substring inside `--no-edit`, causing `git commit --amend --no-edit` to be incorrectly denied with:

> BLOCKED: This command bypasses pre-commit hooks. Fix the underlying issue instead.

## Reproduction

```bash
git commit --amend --no-edit  # BLOCKED (false positive)
```

## Fix

Anchor `-n` as a standalone flag using word boundaries:

```python
(r"commit\s+.*(\s-n\s|--no-verify)", "bypasses pre-commit hooks"),
```

Or use negative lookahead/lookbehind:

```python
(r"commit\s+.*(?<!\w)(-n(?!\w)|--no-verify)", "bypasses pre-commit hooks"),
```

## Context

Discovered while amending a commit on PR [nix-ai#314](https://github.com/JacobPEvans/nix-ai/pull/314) to fix GPG signing.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

git-permission-guard: false positive blocks --no-edit as --no-verify #180

Bug

Reproduction

Fix

Context

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

git-permission-guard: false positive blocks --no-edit as --no-verify #180

Description

Bug

Reproduction

Fix

Context

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions