@golproductions/check 1.2.3 → 1.3.1

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@golproductions/check",
-  "version": "1.2.3",
+  "version": "1.3.1",
   "description": "Pre-execution firewall hook for AI agents. Validates every command before it reaches the shell. 152 failed commands without Check. 1 with it. Supports Claude Code, Gemini CLI, Antigravity, Cursor, and VS Code.",
   "bin": {
     "check": "src/index.js"

package/src/index.js

@@ -2,11 +2,11 @@
 // Copyright (c) 2026 GOL Productions. All rights reserved. Proprietary and confidential.
 
 import { execFileSync } from "node:child_process";
-
 import { readFileSync, writeFileSync, mkdirSync, existsSync } from "node:fs";
 import { join } from "node:path";
 import { homedir } from "node:os";
 
+const VERSION = "1.3.0";
 const API = "https://triage.golproductions.com/preflight";
 const CLIENT_ID = process.env.GOL_CLIENT_ID || "";
 const TIMEOUT_MS = 5000;
@@ -97,6 +97,8 @@ if (process.argv.includes("--install")) { install(); }
 
 const SKIP = new Set(["cd", "ls", "dir", "pwd", "echo", "cat", "head", "tail", "wc", "mkdir", "test", "true", "false", "exit"]);
 const PREFIXES = new Set(["sudo", "nohup", "nice", "time", "timeout", "env"]);
+const PS_KEYWORDS = new Set(["try", "catch", "finally", "if", "else", "elseif", "foreach", "for", "while", "do", "switch", "throw", "return", "begin", "process", "end", "function", "class", "param", "trap", "break", "continue"]);
+const PS_VERB_PREFIXES = ["Get-", "Set-", "New-", "Remove-", "Invoke-", "Start-", "Stop-", "Write-", "Read-", "Out-", "Test-", "Add-", "Clear-", "Copy-", "Move-", "Select-", "Where-", "ForEach-", "Sort-", "Group-", "Measure-", "Compare-", "Join-", "Split-", "ConvertTo-", "ConvertFrom-", "Export-", "Import-", "Enable-", "Disable-", "Register-", "Unregister-", "Wait-", "Enter-", "Exit-", "Push-", "Pop-", "Rename-", "Resolve-", "Update-", "Find-", "Format-"];
 
 function detectPlatform(parsed) {
   if (typeof parsed.command === "string" && !parsed.tool_input) return "cursor";
@@ -179,6 +181,7 @@ async function main() {
   try {
     let input = "";
     for await (const chunk of process.stdin) input += chunk;
+    input = input.replace(/^/, "").trim();
 
     let parsed;
     try { parsed = JSON.parse(input); } catch { respond("claude", true); return; }
@@ -187,12 +190,17 @@ async function main() {
     const command = extractCommand(parsed, platform);
     if (!command) { respond(platform, true); return; }
 
-    const toolName = parsed.tool_name;
     const trimmed = command.trim();
     const first = trimmed.split(/\s+/)[0];
 
     if (SKIP.has(first)) { respond(platform, true); return; }
-    if (platform === "claude" && toolName === "PowerShell") { respond(platform, true); return; }
+
+    const toolName = parsed.tool_name;
+    if (toolName === "PowerShell") {
+      if (first.startsWith("$") || first.startsWith("(") || first.startsWith("[") || first.startsWith("@")) { respond(platform, true); return; }
+      if (PS_KEYWORDS.has(first)) { respond(platform, true); return; }
+      if (PS_VERB_PREFIXES.some(p => first.startsWith(p))) { respond(platform, true); return; }
+    }
 
     if (!CLIENT_ID) {
       process.stderr.write("check: GOL_CLIENT_ID not set. Get your key at https://www.golproductions.com/check.html\n");
@@ -219,7 +227,7 @@ async function main() {
       headers: {
         "Content-Type": "application/json",
         "X-GOL-CLIENT-ID": CLIENT_ID,
-        "User-Agent": "check/1.1.0",
+        "User-Agent": "check/" + VERSION,
       },
       body: JSON.stringify(payload),
       signal: controller.signal,