chore(infra): main branch has no protection rules — deletion and force-push allowed

[mrveiss]

Summary

Discovered during session 29 branch cleanup (2026-04-04).

main has no branch protection rules. Any user with write access can:

• Delete the branch
• Force-push and rewrite history

Dev_new_gui was fixed in #3447 but main was missed.

Required Fix

Apply at minimum the same protection as Dev_new_gui:

gh api repos/mrveiss/AutoBot-AI/branches/main/protection \
  --method PUT \
  --field allow_deletions=false \
  --field allow_force_pushes=false \
  --field enforce_admins=false \
  --field required_status_checks=null \
  --field required_pull_request_reviews=null \
  --field restrictions=null

Additional Considerations

main is the production branch — stricter rules may be warranted:

• Require PR reviews before merge from Dev_new_gui
• Require CI status checks to pass
• Enforce admin rules

Related

• chore(infra): Dev_new_gui branch was unprotected — deletion and force-push allowed #3447 — same fix applied to Dev_new_gui

[mrveiss]

Branch protection applied to main via GitHub API — force-push and deletion are now blocked (matching Dev_new_gui protection from #3447). No code change needed.