security: remove user-profile.md from public repo

[OpenGaryBot]

URGENT — personal information exposure.

user-profile.md was propagated to this public repo by the chore/sync-canonical-rules-2026-04-25 branch. This file contains personal information about the organisation founder that must not appear in any public repository.

This PR removes the file. Please merge immediately.

No other changes.

Summary by CodeRabbit

• Chores
  • Removed internal configuration file.

---

Note: This release contains no user-facing changes.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: 80df0d59-1e66-4c8e-8248-3b7aec939f12

📥 Commits

Reviewing files that changed from the base of the PR and between ad49e04 and 0529142.

📒 Files selected for processing (1)

• .claude/rules/user-profile.md

💤 Files with no reviewable changes (1)

• .claude/rules/user-profile.md

---

📝 Walkthrough

Walkthrough

The .claude/rules/user-profile.md file, which defined user identity details, communication expectations, and security constraints for sensitive advocacy data handling, is completely removed. This eliminates the user profile configuration and associated security/privacy rules.

Changes

Cohort / File(s)	Summary
User Profile Configuration .claude/rules/user-profile.md	Complete removal of user profile rules, including identity details, communication expectations, domain-specific terminology, and critical security/privacy constraints for sensitive advocacy data (PII handling, external API transmission restrictions, MCP server self-hosting requirements).

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Suggested labels

security

🚥 Pre-merge checks | ✅ 7

✅ Passed checks (7 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	Title uses imperative verb 'remove', is 49 characters (under 70 limit), and directly summarizes the main change: removing a sensitive file from the public repository.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.
No Hardcoded Secrets Or Credentials	✅ Passed	Pull request successfully removes user-profile.md file and eliminates all hardcoded secrets from the codebase.
No Speciesist Idioms	✅ Passed	PR deletes .claude/rules/user-profile.md with no new code, comments, or documentation. Repository search found only README.md reference guide showing appropriate terminology alternatives. No speciesist idioms detected in the PR campaign.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch security/remove-user-profile-20260427

• 🛠️ fix NAV violations: Commit on current branch
• 🛠️ fix NAV violations: Create PR

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}