@claudeye/linux-arm64 1.0.5-beta.4 → 1.0.5

package/assets/standalone/README.md

@@ -7,7 +7,7 @@
                                 |___/
 ```
 
-# Claudeye: Watchtower for Claude Code and Claude Agents SDK
+# Claudeye: Oversight and Observability for Claude Code Agents
 
 **Uncover** what your agents did.
 **Understand** where they struggle.
@@ -24,9 +24,10 @@
 
 - [What is Claudeye?](#what-is-claudeye)
 - [Quick Start](#quick-start)
+- [Hook Policies](#protect-hook-policies)
+- [Enterprise](#enterprise)
 - [Why Claudeye?](#why-claudeye)
 - [Features](#features)
-- [Hook Policies](#protect-hook-policies)
 - [CLI Reference](#cli-reference)
 - [Custom Evals & Enrichments](#custom-evals--enrichments)
 - [API Reference](#api-reference)
@@ -69,9 +70,9 @@
 
 ## What is Claudeye?
 
-One command. Full visibility into every Claude agent session.
+Claudeye is an oversight and observability tool for Claude Code agents (CLI and Agents SDK).
 
-Claudeye lets you replay agent executions, grade them with custom evals, and surface exactly where reliability breaks down, across both Claude Code and the Agents SDK. Deploy it locally or on your infrastructure. No setup, no config, just `claudeye` and you're in.
+AI agents execute shell commands, read files, and make changes autonomously — without guardrails, they can `rm -rf /`, read your `.env` secrets, `sudo` install packages, or force-push to main. Claudeye ships **13 built-in hook policies** (free, with more added every update) that block dangerous actions in real time, before they execute. Beyond protection, it gives you full session replay, custom evals, enrichments, and a local-first dashboard. One command and you're in:
 
 ## Quick Start
 
@@ -99,74 +100,6 @@ Works with [Claude Code](https://docs.anthropic.com/en/docs/claude-code) session
 > immediately. See [Claude Code settings](https://code.claude.com/docs/en/settings)
 > for details.
 
-## Why Claudeye?
-
-| Feature | Claudeye | Langfuse | Dev-Agent-Lens | ccusage | Raw JSONL |
-|---------|:--------:|:--------:|:--------------:|:-------:|:---------:|
-| Local-first (no cloud) | **Yes** | Self-host option | Proxy required | Yes | Yes |
-| Session replay | **Yes** | Traces only | Traces only | No | Manual |
-| Custom evals | **Yes** | Limited | No | No | No |
-| Subagent expansion | **Yes** | No | No | No | No |
-| Zero config | **Yes** | Setup required | Proxy setup | Yes | N/A |
-| Visual dashboard | **Yes** | Yes | Yes (Phoenix) | CLI only | No |
-| Hook security policies | **Yes** | No | No | No | No |
-
-## Features
-
-### Uncover
-
-- **Projects & sessions browser** - filter by date range or keyword, paginated and sorted newest-first
-- **Full execution trace viewer** - every message, tool call, thinking block, and system event
-- **Nested subagent logs** - expand to see subagent executions inline, pre-loaded with the session
-- **Virtual scrolling** - handles sessions with thousands of entries without performance issues
-
-### Understand
-
-- **Session stats bar** - turns, tool calls, subagents, duration, and models at a glance
-- **Custom evals** - grade sessions with pass/fail results and 0-1 scores
-- **Per-eval recompute** - re-run a single eval without reprocessing all others
-- **Conditional evals** - gate evals globally or per-item, with session/subagent scope control
-- **Cache invalidation hook** - register a custom function via `app.cacheInvalidation()` to invalidate stale cached results based on age, score, or any custom logic
-
-### Utilize
-
-- **Hook security policies** - 10 built-in policies that block dangerous commands (`sudo`, `rm -rf /`, `.env` reads, `curl | sh`, force-pushes, and more) in real time via Claude Code's hook system — before they execute
-- **Hook activity dashboard** - see every policy check at `/hooks`: what was allowed, what was blocked, with filters by decision, event type, and policy name
-- **Custom enrichments** - compute metadata (token counts, quality signals, labels) as key-value pairs
-- **Custom actions** - on-demand tasks triggered from the dashboard via `app.action()` — generate summaries, export metrics, or run side-effects with full access to eval and enrichment results
-- **Alerts** - register callbacks via `app.alert()` that fire after all evals and enrichments complete (Slack webhooks, CI notifications, logging)
-- **Dashboard views & filters** - organize filters into named views, each with focused filter tiles (boolean toggles, range sliders, multi-select dropdowns) and a filterable sessions table
-- **Dashboard aggregates** - define cross-session summary tables with `app.dashboard.aggregate()`, using `{ collect, reduce }` for full control over output
-- **Unified queue** - all evals and enrichments (session, subagent, UI, background) go through a single priority queue with bounded concurrency, live tracking at `/queue`
-- **JSONL export** - download raw session logs
-- **Auto-refresh** - monitor live sessions at 5s, 10s, or 30s intervals
-- **Light/dark theme** - with system preference detection
-
-## CLI Reference
-
-| Flag | Description | Default |
-|------|-------------|---------|
-| `--projects-path, -p <path>` | Path to Claude projects directory | `~/.claude/projects` |
-| `--port <number>` | Port to bind | `8020` |
-| `--host <address>` | Host to bind (`0.0.0.0` for LAN) | `localhost` |
-| `--evals <path>` | Path to evals/enrichments file | - |
-| `--auth-user <user:pass>` | Add an auth user (repeatable) | - |
-| `--cache-path <path>` | Custom cache directory | `~/.claudeye/cache` |
-| `--cache-clear` | Clear all cached results and exit | - |
-| `--no-open` | Don't auto-open the browser | - |
-| `--queue-interval <secs>` | Background scan interval in seconds | disabled |
-| `--queue-concurrency <num>` | Max parallel items per batch | `2` |
-| `--queue-history-ttl <secs>` | Seconds to keep completed items | `3600` |
-| `--max-queue-items <num>` | Max items to enqueue per scan (0=unlimited) | `500` |
-| `--logging <level>` | Log level: `info`, `warn`, `error` | `warn` |
-| `--disable-telemetry` | Disable anonymous usage analytics | enabled |
-| `--install-hooks [policies]` | Install hooks (interactive, or: `all`, `name1 name2 ...`) | - |
-| `--remove-hooks [policies]` | Remove hooks (all, or: `name1 name2 ...` to disable specific) | - |
-| `--list-hooks` | Show hook policies and installation status | - |
-| `--scope <scope>` | Scope for `--install-hooks` (default: `user`) / `--remove-hooks` (default: `all`): `user`, `project`, `local`, or `all` (remove only) | - |
-| `--cwd <path>` | Working directory for `--scope project`/`local` (default: cwd). No effect with `--scope user`. | cwd |
-| `-h, --help` | Show help | - |
-
 ## Protect: Hook Policies
 
 AI agents can execute arbitrary shell commands. Without guardrails, Claude can accidentally `rm -rf /`, read your `.env` secrets, `sudo` install packages, force-push to main, or pipe a curl download to `sh`. Claudeye's hook policies sit in Claude Code's hook pipeline and block dangerous actions in real time — before they execute.
@@ -177,7 +110,7 @@ AI agents can execute arbitrary shell commands. Without guardrails, Claude can a
 # Install with interactive policy selector (Enter to toggle, S to submit)
 claudeye --install-hooks
 
-# Or install all 9 policies at once
+# Or install all 13 policies at once
 claudeye --install-hooks all
 
 # Install specific policies
@@ -206,10 +139,12 @@ claudeye --remove-hooks
 | `block-rm-rf` | Off | `rm -rf /`, `rm -rf ~`, `rm -rf /*` — catastrophic deletions |
 | `block-force-push` | Off | `git push --force`, `git push -f` |
 | `block-secrets-write` | Off | Writing to `.pem`, `.key`, `id_rsa`, `credentials` files |
-| `block-read-outside-cwd` | Off | Read/Glob/Grep/Bash read commands targeting files outside session CWD (`~/.claude/` is always allowed) |
+| `block-read-outside-cwd` | Off | Read/Glob/Grep/Bash read commands targeting files outside session CWD (`~/.claude/` allowed except `settings*.json` files) |
+| `block-work-on-main` | Off | `git commit`, `git merge`, `git rebase`, `git cherry-pick` when current branch is `main` or `master` |
+| `block-claudeye-commands` | On | Direct `claudeye` CLI invocations and `npm/bun/yarn/pnpm uninstall claudeye` |
 | `warn-repeated-tool-calls` | Off | Detects 3+ identical tool calls in session transcript; warns Claude to try a different approach |
 
-Selection is saved to `~/.claudeye/hooks-config.json`. In non-TTY environments (CI/piped), the 6 default policies are used automatically. Re-running `--install-hooks` re-opens the selector with your current choices pre-loaded.
+Selection is saved to `~/.claudeye/hooks-config.json`. In non-TTY environments (CI/piped), the 7 default policies are used automatically. Re-running `--install-hooks` re-opens the selector with your current choices pre-loaded.
 
 ### Scoped Installation
 
@@ -370,6 +305,83 @@ claudeye --evals ./my-evals.js --queue-interval 60
 claudeye --evals ./my-evals.js --queue-interval 30 --queue-concurrency 5
 ```
 
+## Enterprise
+
+The free tier ships 13 built-in policies with more added in every update. For teams that need deeper control, Claudeye Enterprise provides:
+
+- **Custom hook policies** — define organization-specific rules beyond the built-in set. Block access to internal endpoints, enforce branch naming conventions, restrict tool usage by project, or implement any policy your security team requires.
+- **Failure pattern knowledge base** — an intelligent agent that learns from your agents' past failures. It checks every session against a growing library of known failure patterns — broken tool call sequences, retry loops, permission escalations, misapplied fixes — and flags issues before they compound. The knowledge base improves continuously as your agents encounter new edge cases.
+
+[Contact us](https://discord.com/invite/zT92CAgvkj) to learn more.
+
+## Why Claudeye?
+
+| Feature | Claudeye | Langfuse | Dev-Agent-Lens | ccusage | Raw JSONL |
+|---------|:--------:|:--------:|:--------------:|:-------:|:---------:|
+| Local-first (no cloud) | **Yes** | Self-host option | Proxy required | Yes | Yes |
+| Session replay | **Yes** | Traces only | Traces only | No | Manual |
+| Custom evals | **Yes** | Limited | No | No | No |
+| Subagent expansion | **Yes** | No | No | No | No |
+| Zero config | **Yes** | Setup required | Proxy setup | Yes | N/A |
+| Visual dashboard | **Yes** | Yes | Yes (Phoenix) | CLI only | No |
+| Hook security policies | **Yes** | No | No | No | No |
+
+## Features
+
+### Uncover
+
+- **Projects & sessions browser** - filter by date range or keyword, paginated and sorted newest-first
+- **Full execution trace viewer** - every message, tool call, thinking block, and system event
+- **Nested subagent logs** - expand to see subagent executions inline, pre-loaded with the session
+- **Virtual scrolling** - handles sessions with thousands of entries without performance issues
+
+### Understand
+
+- **Session stats bar** - turns, tool calls, subagents, duration, and models at a glance
+- **Custom evals** - grade sessions with pass/fail results and 0-1 scores
+- **Per-eval recompute** - re-run a single eval without reprocessing all others
+- **Conditional evals** - gate evals globally or per-item, with session/subagent scope control
+- **Cache invalidation hook** - register a custom function via `app.cacheInvalidation()` to invalidate stale cached results based on age, score, or any custom logic
+
+### Utilize
+
+- **Hook security policies** - 13 built-in policies (free, with more every update) that block dangerous commands (`sudo`, `rm -rf /`, `.env` reads, `curl | sh`, force-pushes, commits on main, and more) in real time via Claude Code's hook system — before they execute
+- **Hook activity dashboard** - see every policy check at `/hooks`: what was allowed, what was blocked, with filters by decision, event type, and policy name
+- **Custom enrichments** - compute metadata (token counts, quality signals, labels) as key-value pairs
+- **Custom actions** - on-demand tasks triggered from the dashboard via `app.action()` — generate summaries, export metrics, or run side-effects with full access to eval and enrichment results
+- **Alerts** - register callbacks via `app.alert()` that fire after all evals and enrichments complete (Slack webhooks, CI notifications, logging)
+- **Dashboard views & filters** - organize filters into named views, each with focused filter tiles (boolean toggles, range sliders, multi-select dropdowns) and a filterable sessions table
+- **Dashboard aggregates** - define cross-session summary tables with `app.dashboard.aggregate()`, using `{ collect, reduce }` for full control over output
+- **Unified queue** - all evals and enrichments (session, subagent, UI, background) go through a single priority queue with bounded concurrency, live tracking at `/queue`
+- **JSONL export** - download raw session logs
+- **Auto-refresh** - monitor live sessions at 5s, 10s, or 30s intervals
+- **Light/dark theme** - with system preference detection
+
+## CLI Reference
+
+| Flag | Description | Default |
+|------|-------------|---------|
+| `--projects-path, -p <path>` | Path to Claude projects directory | `~/.claude/projects` |
+| `--port <number>` | Port to bind | `8020` |
+| `--host <address>` | Host to bind (`0.0.0.0` for LAN) | `localhost` |
+| `--evals <path>` | Path to evals/enrichments file | - |
+| `--auth-user <user:pass>` | Add an auth user (repeatable) | - |
+| `--cache-path <path>` | Custom cache directory | `~/.claudeye/cache` |
+| `--cache-clear` | Clear all cached results and exit | - |
+| `--no-open` | Don't auto-open the browser | - |
+| `--queue-interval <secs>` | Background scan interval in seconds | disabled |
+| `--queue-concurrency <num>` | Max parallel items per batch | `2` |
+| `--queue-history-ttl <secs>` | Seconds to keep completed items | `3600` |
+| `--max-queue-items <num>` | Max items to enqueue per scan (0=unlimited) | `500` |
+| `--logging <level>` | Log level: `info`, `warn`, `error` | `warn` |
+| `--disable-telemetry` | Disable anonymous usage analytics | enabled |
+| `--install-hooks [policies]` | Install hooks (interactive, or: `all`, `name1 name2 ...`) | - |
+| `--remove-hooks [policies]` | Remove hooks (all, or: `name1 name2 ...` to disable specific) | - |
+| `--list-hooks` | Show hook policies and installation status | - |
+| `--scope <scope>` | Scope for `--install-hooks` (default: `user`) / `--remove-hooks` (default: `all`): `user`, `project`, `local`, or `all` (remove only) | - |
+| `--cwd <path>` | Working directory for `--scope project`/`local` (default: cwd). No effect with `--scope user`. | cwd |
+| `-h, --help` | Show help | - |
+
 ## Custom Evals & Enrichments
 
 Define evals and enrichments in a single JS file and load with `--evals`:
@@ -570,8 +582,6 @@ app.cacheInvalidation((ctx) => {
 });
 ```
 
-See [API Reference](docs/api-reference.md#appcacheinvalidationfn) for full documentation.
-
 ---
 
 ### `app.eval(name, fn, options?)`
@@ -2365,7 +2375,7 @@ claudeye --disable-telemetry
 CLAUDEYE_TELEMETRY_DISABLED=1 claudeye
 ```
 
-When disabled, all telemetry code is zero-cost no-op (no network requests, no dynamic imports). See [API Reference — Telemetry](docs/api-reference.md#telemetry) for details.
+When disabled, all telemetry code is zero-cost no-op (no network requests, no dynamic imports).
 
 ---
 

package/assets/standalone/package.json

@@ -1,6 +1,6 @@
 {
   "name": "claudeye",
-  "version": "1.0.5-beta.4",
+  "version": "1.0.5",
   "description": "Watchtower for Claude Code & Agents SDK — replay sessions, run custom evals, debug agent traces locally",
   "bin": {
     "claudeye": "./bin/claudeye.mjs"

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@claudeye/linux-arm64",
-  "version": "1.0.5-beta.4",
+  "version": "1.0.5",
   "description": "Claudeye platform binary for Linux ARM64",
   "os": [
     "linux"