@hegemonart/get-design-done 1.14.1 → 1.14.2

package/.claude-plugin/marketplace.json

@@ -5,14 +5,14 @@
   },
   "metadata": {
     "description": "Get Design Done — 5-stage agent-orchestrated design pipeline with 9 connections, handoff-first workflow, bidirectional Figma write-back, 22+ specialized agents, queryable knowledge layer (intel store, dependency analysis, learnings extraction), and a self-improvement loop (reflector, frontmatter + budget feedback, global-skills layer). Ships with a full CI/CD pipeline (Node 22/24 × Linux/macOS/Windows) and release automation (auto-tag + GitHub Release + release-time smoke test).",
-    "version": "1.14.1"
+    "version": "1.14.2"
   },
   "plugins": [
     {
       "name": "get-design-done",
       "source": "./",
       "description": "Agent-orchestrated 5-stage design pipeline: Brief → Explore → Plan → Design → Verify. 22+ specialized agents, 9 connections (Figma, Refero, Preview, Storybook, Chromatic, Figma Writer, Graphify, Pinterest, Claude Design), Claude Design handoff, bidirectional Figma write-back, and a queryable intel store (.design/intel/) for dependency and learnings queries. Standalone commands: style, darkmode, compare, figma-write, graphify, handoff, analyze-dependencies, skill-manifest, extract-learnings. Embeds NNG heuristics, WCAG thresholds, typographic systems, motion framework, and anti-pattern catalog. Ships with a full CI/CD pipeline (Node 22/24 × Linux/macOS/Windows) and release automation. Optimization layer (v1.0.4.1, retroactive): gdd-router + gdd-cache-manager skills, PreToolUse budget-enforcer hook, tier-aware agent frontmatter, lazy checker gates, streaming synthesizer, /gdd:warm-cache + /gdd:optimize commands, and cost telemetry at .design/telemetry/costs.jsonl — targeting 50-70% per-task token-cost reduction with no quality-floor regression.",
-      "version": "1.14.1",
+      "version": "1.14.2",
       "author": {
         "name": "hegemonart"
       },

package/.claude-plugin/plugin.json

@@ -1,7 +1,7 @@
 {
   "name": "get-design-done",
   "short_name": "gdd",
-  "version": "1.14.1",
+  "version": "1.14.2",
   "description": "Agent-orchestrated 5-stage design pipeline: Brief → Explore → Plan → Design → Verify. 22+ specialized agents, 9 connections (Figma, Refero, Preview, Storybook, Chromatic, Figma Writer, Graphify, Pinterest, Claude Design), handoff-first workflow via Claude Design bundles, bidirectional Figma write-back (annotations, Code Connect), queryable intel store (`.design/intel/`) for O(1) design surface lookups, and self-improvement loop (reflector agent, frontmatter + budget feedback, global-skills layer at `~/.claude/gdd/global-skills/`). Standalone commands: style, darkmode, compare, figma-write, graphify, handoff, analyze-dependencies, skill-manifest, extract-learnings, reflect, apply-reflections. Embeds NNG heuristics, WCAG thresholds, typographic systems, motion framework, and anti-pattern catalog. Ships with a full CI/CD pipeline (Node 22/24 × Linux/macOS/Windows, lint + schema + frontmatter + stale-ref + shellcheck + gitleaks + injection-scan + blocking size-budget) and release automation (auto-tag + GitHub Release + release-time smoke test). Optimization layer (v1.0.4.1, retroactive): gdd-router + gdd-cache-manager skills, PreToolUse budget-enforcer hook, tier-aware agent frontmatter, lazy checker gates, streaming synthesizer, /gdd:warm-cache + /gdd:optimize commands, and cost telemetry at .design/telemetry/costs.jsonl — targeting 50-70% per-task token-cost reduction with no quality-floor regression.",
   "author": {
     "name": "hegemonart",

package/CHANGELOG.md

@@ -4,6 +4,20 @@ All notable changes to get-design-done are documented here. Versions follow [sem
 
 ---
 
+## [1.14.2] — 2026-04-20
+
+### Added — Multi-format Claude Design handoff ingestion
+
+- **URL entry point**: detect `https://api.anthropic.com/v1/design/h/<hash>` in agent prompt (native "Send to local coding agent" flow); `WebFetch` with `Content-Type` routing — HTML parsed directly, ZIP downloaded and extracted
+- **ZIP bundle**: extract to `.design/handoff/`, find primary HTML + readme, parse normally, clean up after
+- **PDF format**: `pdftotext` text extraction; grep for token values; all decisions tagged `(tentative — text-only)` since no CSS is present
+- **PPTX format**: slide XML text extraction (`ppt/slides/*.xml`); same tentative-only tagging as PDF
+- Updated synthesizer parsing algorithm step 1 with format dispatch before parsing
+- Updated probe pattern: URL detection takes priority over file path lookup
+- New `handoff_source` values: `claude-design-url`, `claude-design-zip`, `claude-design-pdf`, `claude-design-pptx`
+
+---
+
 ## [1.14.1] — 2026-04-19
 
 ### Fixed — Security hardening (full codebase review)

package/agents/design-research-synthesizer.md

@@ -99,10 +99,29 @@ Read .design/STATE.md
 
 ### Parsing algorithm (handoff mode)
 
-1. **Read bundle path** from STATE.md `handoff_path` field (or resolve from `handoff_source` if `handoff_path` is missing).
+1. **Resolve the bundle** from STATE.md fields in priority order:
 
-2. **Parse HTML export** (primary):
-   - Read the HTML file with the Read tool
+   ```
+   handoff_url present   → fetch URL with WebFetch tool
+                           check Content-Type:
+                             text/html               → use response body as html_content (goto step 2)
+                             application/zip         → save to .design/handoff/bundle.zip, goto ZIP branch
+                             other                   → warn user, abort handoff mode
+   handoff_path present  → check extension:
+                             .html                   → read file, goto step 2
+                             .zip                    → goto ZIP branch
+                             .pdf                    → goto PDF branch
+                             .pptx / .pptx           → goto PPTX branch
+   neither present       → warn "no handoff_path or handoff_url in STATE.md", abort handoff mode
+   ```
+
+   **ZIP branch:** Extract `.design/handoff/bundle.zip` to `.design/handoff/extracted/`. Find primary HTML (`index.html`, `design.html`, or first `.html` at root). Find spec file (`readme.md`, `spec.md`, or first `.md` at root). Set html_content + spec_content. Delete `.design/handoff/extracted/` after parsing.
+
+   **PDF branch:** Extract all text content (Bash: `pdftotext <file> -` or python `pdfminer`). Set text_content. Skip to step 3b.
+
+   **PPTX branch:** Extract slide text (Bash: unzip `.pptx`, parse `ppt/slides/*.xml` for `<a:t>` text nodes). Set text_content. Skip to step 3b.
+
+2. **Parse HTML export** (primary — html_content available):
    - Extract all CSS custom properties from `<style>` blocks: grep for `--[a-z]+-[a-z-]+:\s*[^;]+`
    - Categorize by prefix:
      - `--color-*` → `[Color]` decisions
@@ -114,15 +133,23 @@ Read .design/STATE.md
    - Extract component names from `class="component-*"` or `data-component="*"` patterns → `[Component]` decisions
    - Detect layout patterns: `display: grid`, `display: flex` in component-level sections → `[Layout]` decisions
 
-3. **Parse spec markdown** (secondary, if present):
-   - Look for `.md` or `.json` files in the same directory as the HTML export
+3. **Parse spec text** (secondary):
+
+   3a. **Spec markdown / JSON** (if html_content path had a `.md` sibling, or ZIP contained spec):
    - Grep for `Decision:`, `Rationale:`, `Token:`, `Component:` prefixes
    - Treat found lines as pre-formed D-XX entries
 
+   3b. **PDF / PPTX text** (text_content only, no HTML):
+   - Grep text_content for same prefixes as 3a
+   - Also grep for hex colors (`#[0-9a-fA-F]{3,6}`), rem/px values (`[\d.]+rem|[\d]+px`), font names
+   - Tag ALL entries `(tentative — text-only, no CSS confirmation)`
+   - Note in STATE.md: `handoff_format: pdf` or `handoff_format: pptx` with caveat that token values need user confirmation
+
 4. **Translate to D-XX decisions**:
    - CSS custom property: `D-NN: [Category] Token name: value (source: claude-design-handoff) (tentative — confirm with user)`
    - Explicit spec markdown decision: `D-NN: [Category] decision text (source: claude-design-handoff) (locked — from handoff spec)`
    - Inferred component/layout: `D-NN: [Category] inferred text (source: claude-design-handoff) (tentative — inferred)`
+   - PDF/PPTX text value: `D-NN: [Category] extracted text (source: claude-design-pdf/pptx) (tentative — text-only, no CSS confirmation)`
 
 5. **Append to STATE.md `<decisions>` block** under `### Handoff-sourced decisions` subsection header.
 

package/connections/claude-design.md

@@ -6,20 +6,94 @@ This file is the connection specification for Claude Design (https://claude.ai/d
 
 ## What Is a Claude Design Handoff Bundle?
 
-Claude Design produces AI-generated designs that can be exported as **handoff bundles**. A bundle contains:
+Claude Design produces AI-generated designs that can be exported in several formats or sent directly to Claude Code via a hosted URL. The pipeline supports all of them.
 
-| Artifact | Format | Contains |
-|----------|--------|---------|
-| Standalone HTML export | `.html` | Rendered component tree, inline CSS (design tokens as CSS custom properties), component structure, color/spacing/typography values |
-| Design spec (optional) | `.md` or `.json` | Design decisions as structured text, token tables, component annotations |
-| Assets (optional) | `assets/` dir | Icons, images referenced by the HTML export |
+### Entry Points
 
-**Bundle entry point:** The primary parseable artifact is the HTML export. It contains inline `<style>` blocks with CSS custom properties (e.g., `--color-primary: #3B82F6`) and class-level token usage.
+| Source | How it arrives | handoff_source value |
+|--------|---------------|----------------------|
+| **"Send to local coding agent"** | Anthropic-hosted URL in the agent prompt | `claude-design-url` |
+| **"Download zip"** | `.zip` bundle dropped into project | `claude-design-zip` |
+| **"Save as standalone HTML"** | `.html` file dropped into project | `claude-design-html` |
+| **"Save as PDF"** | `.pdf` file (spec text extraction only) | `claude-design-pdf` |
+| **"Save as PPTX"** | `.pptx` file (spec text extraction only) | `claude-design-pptx` |
+| **Bundle directory** | Unzipped directory with HTML + spec + assets | `claude-design-bundle` |
 
-**Bundle discovery:** The pipeline looks for the bundle in:
-1. The path passed via `--from-handoff <path>` flag or `handoff <path>` sub-command
-2. The value of `handoff_source` in `.design/STATE.md` (if a prior session already set it)
-3. A `claude-design-handoff.html` file in the project root (convention — not required)
+### Bundle contents by format
+
+| Format | Primary artifact | Design tokens | Spec text | Images |
+|--------|-----------------|---------------|-----------|--------|
+| URL (hosted) | Fetched HTML | ✅ CSS custom props | ✅ if readme present | ✅ |
+| ZIP | Unzipped HTML | ✅ CSS custom props | ✅ `readme.md` inside | ✅ |
+| Standalone HTML | `.html` file | ✅ CSS custom props | ✅ if `.md` alongside | ✅ inline |
+| PDF | `.pdf` text | ❌ (no CSS) | ✅ extracted text | ❌ |
+| PPTX | `.pptx` slides | ❌ (no CSS) | ✅ slide text only | ❌ |
+
+**Bundle entry point:** The primary parseable artifact is always the HTML — it contains inline `<style>` blocks with CSS custom properties (e.g., `--color-primary: #3B82F6`) and class-level token usage. PDF and PPTX are text-extraction fallbacks when no HTML is available.
+
+**Bundle discovery:** The pipeline looks for the bundle in this priority order:
+1. A `https://api.anthropic.com/v1/design/h/` URL in the agent invocation arguments
+2. The path passed via `--from-handoff <path>` flag or `handoff <path>` sub-command
+3. The value of `handoff_source` in `.design/STATE.md` (if a prior session already set it)
+4. A `claude-design-handoff.{html,zip,pdf,pptx}` file in the project root (convention — not required)
+
+---
+
+## Format-Specific Ingestion
+
+### URL format — `https://api.anthropic.com/v1/design/h/<hash>`
+
+This is the native entry point when the user clicks **"Send to local coding agent"** in Claude Design. The agent prompt arrives as:
+
+```
+Fetch this design file, read its readme, and implement the relevant aspects of the design. https://api.anthropic.com/v1/design/h/<hash>
+Implement: <user description>
+```
+
+**Detection:** grep the raw arguments/prompt for the pattern `https://api\.anthropic\.com/v1/design/h/[A-Za-z0-9_-]+`.
+
+**Fetch sequence:**
+1. `WebFetch` the URL — the response is either an HTML bundle or a redirect to a ZIP download
+2. If `Content-Type: text/html` → treat as standalone HTML, parse normally
+3. If `Content-Type: application/zip` or redirect to `.zip` → download to `.design/handoff/claude-design-handoff.zip`, then follow ZIP ingestion below
+4. Check the response for an embedded `readme.md` link (often served alongside) — fetch it separately if present
+5. Set `handoff_source: claude-design-url` and `handoff_url: <url>` in STATE.md
+
+**Implement description:** The text after `Implement:` in the agent prompt is the user's implementation scope — capture it as a project note, not a D-XX decision.
+
+### ZIP format
+
+**Detection:** input path ends in `.zip` OR fetched from URL as zip.
+
+**Ingestion sequence:**
+1. Extract to `.design/handoff/` (temp directory, not committed)
+2. Find the primary HTML: `index.html`, `design.html`, or any `.html` at root
+3. Find spec: `readme.md`, `spec.md`, `design.md`, or any `.md` at root
+4. Parse HTML + spec using the standard field catalogue below
+5. Clean up `.design/handoff/` after parsing (keep only extracted decisions in STATE.md)
+
+### PDF format
+
+**Detection:** input path ends in `.pdf`.
+
+**Ingestion:** PDF yields no CSS custom properties — token extraction is not possible. Instead:
+1. Extract all text content (pdftotext or equivalent)
+2. Grep for `Decision:`, `Rationale:`, `Token:`, `Color:`, `Typography:`, `Spacing:` prefixes
+3. Treat matched lines as spec text → translate to D-XX entries tagged `(source: claude-design-pdf)` + `(tentative — text-only, no CSS confirmation)`
+4. Note in STATE.md: `handoff_format: pdf` + caveat that token values were extracted from text, not CSS
+
+**Limitation:** PDF handoffs cannot produce `(locked)` token decisions — all are `(tentative)`. Surface this explicitly to the user in the discussant step.
+
+### PPTX format
+
+**Detection:** input path ends in `.pptx`.
+
+**Ingestion:** Same as PDF — text extraction only, no CSS tokens.
+1. Extract slide text (python-pptx or unzip `.pptx` and parse `ppt/slides/*.xml`)
+2. Same grep patterns as PDF
+3. Tag all entries `(source: claude-design-pptx)` + `(tentative — text-only)`
+
+**Limitation:** Same as PDF — all decisions are tentative. PPTX format is the weakest source; prefer HTML or ZIP if available.
 
 ---
 
@@ -114,13 +188,15 @@ Claude Design is not an MCP server — it has no tools to probe via ToolSearch.
 
 ```
 At scan stage entry:
-  1. Check STATE.md <position> for handoff_source field
+  1. Check invocation arguments/prompt for https://api.anthropic.com/v1/design/h/ URL
   2. Check $ARGUMENTS for --from-handoff <path> flag
-  3. Check project root for claude-design-handoff.html
+  3. Check STATE.md <position> for handoff_source / handoff_url / handoff_path field
+  4. Check project root for claude-design-handoff.{html,zip,pdf,pptx}
 
-  → Bundle path found AND file exists           → claude_design: available
-  → Bundle path provided but file missing/bad   → claude_design: unavailable
-  → No bundle path, no file                      → claude_design: not_configured
+  → URL detected (step 1)                        → claude_design: available (fetch at ingest time)
+  → File path found AND file exists              → claude_design: available
+  → Path/URL provided but unreachable/bad        → claude_design: unavailable
+  → None of the above                            → claude_design: not_configured
 ```
 
 Write result to STATE.md `<connections>` at scan entry.
@@ -168,17 +244,25 @@ skipped_stages: scan, discover, plan
 
 **`handoff_source` values:**
 
-| Value | Meaning |
-|-------|---------|
-| `claude-design-html` | Bundle is a standalone HTML export from Claude Design |
-| `claude-design-bundle` | Bundle is a directory with HTML + spec markdown + assets |
-| `manual` | User manually initialized STATE.md with design decisions (no bundle file) |
+| Value | Meaning | Token quality |
+|-------|---------|---------------|
+| `claude-design-url` | Fetched from Anthropic-hosted URL (Send to local coding agent) | High — HTML |
+| `claude-design-zip` | ZIP bundle dropped into project | High — HTML inside |
+| `claude-design-html` | Standalone HTML export | High — CSS custom props |
+| `claude-design-bundle` | Directory with HTML + spec markdown + assets | High — CSS custom props |
+| `claude-design-pdf` | PDF export (text extraction only) | Low — text only, all tentative |
+| `claude-design-pptx` | PPTX export (text extraction only) | Low — text only, all tentative |
+| `manual` | User manually initialized STATE.md with design decisions (no bundle file) | N/A |
 
 ---
 
 ## Caveats and Pitfalls
 
-1. **Handoff bundle format is undocumented by Anthropic.** The Claude Design handoff bundle format is inferred from the product announcement and common HTML export patterns. The pipeline uses defensive parsing: grep for CSS custom properties in `<style>` tags, extract component class names from `class="component-*"` patterns, and fall back to the spec markdown/JSON if CSS parsing yields no results. If the format changes in a future Claude Design release, update this spec and the synthesizer's parsing patterns.
+1. **Handoff bundle format is undocumented by Anthropic.** The Claude Design handoff bundle format is inferred from the product UI and common HTML export patterns. The pipeline uses defensive parsing: grep for CSS custom properties in `<style>` tags, extract component class names from `class="component-*"` patterns, and fall back to the spec markdown/JSON if CSS parsing yields no results. If the format changes in a future Claude Design release, update this spec and the synthesizer's parsing patterns. The URL endpoint (`/v1/design/h/<hash>`) may return different content types — always check `Content-Type` before deciding whether to parse as HTML or unzip.
+
+6. **PDF and PPTX handoffs produce only tentative decisions.** These formats contain no CSS — all token values must be inferred from prose. Never promote PDF/PPTX-sourced decisions to `(locked)` without explicit user confirmation. If the user provides both a PDF and an HTML export, always prefer the HTML.
+
+7. **ZIP extraction is ephemeral.** Extracted ZIP contents go to `.design/handoff/` and are deleted after parsing. Only the extracted D-XX decisions are persisted to STATE.md. Never commit the raw extracted files.
 
 2. **`(tentative)` decisions MUST be confirmed by the user.** The discussant `--from-handoff` mode surfaces all tentative decisions for confirmation before proceeding to verify. Do NOT skip this step — implementing against unconfirmed inferred values is the primary failure mode of handoff-sourced workflows.
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hegemonart/get-design-done",
-  "version": "1.14.1",
+  "version": "1.14.2",
   "description": "A Claude Code plugin for systematic design improvement",
   "author": "Hegemon",
   "homepage": "https://github.com/hegemonart/get-design-done",
@@ -25,6 +25,9 @@
     "CHANGELOG.md",
     "LICENSE"
   ],
+  "bin": {
+    "get-design-done": "./scripts/install.cjs"
+  },
   "publishConfig": {
     "access": "public",
     "provenance": true

package/reference/BRANCH-PROTECTION.md

@@ -1,65 +0,0 @@
-# Branch Protection — Two-Phase Rollout
-
-Per D-16 / D-17: branch protection on `main` is rolled out in two phases. The
-repo admin applies each phase manually via `scripts/apply-branch-protection.sh`
-(no CI automation — avoids leaking repo admin credentials).
-
-## Phase A — Advisory (initial state)
-
-Status checks **run** on every push, but they are **not required to merge**.
-This is the default posture while CI stabilizes and baselines are established.
-
-Apply:
-
-```bash
-bash scripts/apply-branch-protection.sh --advisory
-```
-
-Effects:
-
-- Required status checks: **none** (checks run but don't block)
-- `main` accepts direct pushes (the solo maintainer's existing workflow)
-- Force-push: allowed by admins
-
-## Phase B — Enforcing (after first clean release)
-
-After the first full release cycle ships clean (plan 13-06 / 13-07 smoke test
-passes on a real tag + GitHub Release), tighten to enforcing.
-
-Apply:
-
-```bash
-bash scripts/apply-branch-protection.sh --enforcing
-```
-
-Effects:
-
-- Required status checks (all must pass to merge):
-  - `Lint (markdown + frontmatter + stale-refs)`
-  - `Validate (schemas + plugin + shellcheck)`
-  - `Test (Node 22 / ubuntu-latest)`
-  - `Test (Node 22 / macos-latest)`
-  - `Test (Node 22 / windows-latest)`
-  - `Test (Node 24 / ubuntu-latest)`
-  - `Test (Node 24 / macos-latest)`
-  - `Test (Node 24 / windows-latest)`
-  - `Security (secrets + injection scan)`
-  - `Size budget (blocking)`
-- Require linear history (no merge commits)
-- Disallow force-push
-- Admins still bypass for emergency fixes (logged)
-
-## When to promote Phase A → Phase B
-
-- [ ] Wave A + B of Phase 13 merged to main
-- [ ] `release.yml` (plan 13-06) merged and triggered at least once successfully
-- [ ] Release smoke test (plan 13-07) passed on a real tag
-- [ ] Baseline lock (plan 13-08) committed
-
-When all four are true, run `apply-branch-protection.sh --enforcing`.
-
-## Rollback
-
-To revert either phase: `apply-branch-protection.sh --disable` removes all
-protection rules. Use only if a protection misconfiguration is blocking a
-legitimate merge.

package/scripts/apply-branch-protection.sh

@@ -1,75 +0,0 @@
-#!/usr/bin/env bash
-# apply-branch-protection.sh — manually apply branch protection to `main`.
-# Per D-16: this script is run by the repo admin locally, NOT from CI.
-# Usage:
-#   bash scripts/apply-branch-protection.sh --advisory
-#   bash scripts/apply-branch-protection.sh --enforcing
-#   bash scripts/apply-branch-protection.sh --disable
-
-set -euo pipefail
-
-MODE="${1:-}"
-REPO="${GITHUB_REPOSITORY:-hegemonart/get-design-done}"
-
-if ! command -v gh >/dev/null 2>&1; then
-  echo "ERROR: gh CLI not found. Install from https://cli.github.com/"
-  exit 1
-fi
-
-case "$MODE" in
-  --advisory)
-    echo "Applying ADVISORY branch protection to $REPO main..."
-    gh api -X PUT "repos/${REPO}/branches/main/protection" \
-      -H "Accept: application/vnd.github+json" \
-      -f "required_status_checks=null" \
-      -F "enforce_admins=false" \
-      -f "required_pull_request_reviews=null" \
-      -F "restrictions=null" \
-      -F "required_linear_history=false" \
-      -F "allow_force_pushes=true" \
-      -F "allow_deletions=false"
-    echo "Advisory mode applied. CI checks will run but not block merges."
-    ;;
-  --enforcing)
-    echo "Applying ENFORCING branch protection to $REPO main..."
-    # Status check names must match the `name:` field of each job exactly.
-    # See reference/BRANCH-PROTECTION.md §Phase B for the authoritative list.
-    gh api -X PUT "repos/${REPO}/branches/main/protection" \
-      -H "Accept: application/vnd.github+json" \
-      --input - <<'JSON'
-{
-  "required_status_checks": {
-    "strict": true,
-    "contexts": [
-      "Lint (markdown + frontmatter + stale-refs)",
-      "Validate (schemas + plugin + shellcheck)",
-      "Test (Node 22 / ubuntu-latest)",
-      "Test (Node 22 / macos-latest)",
-      "Test (Node 22 / windows-latest)",
-      "Test (Node 24 / ubuntu-latest)",
-      "Test (Node 24 / macos-latest)",
-      "Test (Node 24 / windows-latest)",
-      "Security (secrets + injection scan)",
-      "Size budget (blocking)"
-    ]
-  },
-  "enforce_admins": false,
-  "required_pull_request_reviews": null,
-  "restrictions": null,
-  "required_linear_history": true,
-  "allow_force_pushes": false,
-  "allow_deletions": false
-}
-JSON
-    echo "Enforcing mode applied. CI must pass before merge; linear history required."
-    ;;
-  --disable)
-    echo "Removing branch protection from $REPO main..."
-    gh api -X DELETE "repos/${REPO}/branches/main/protection" || true
-    echo "Protection removed."
-    ;;
-  *)
-    echo "Usage: $0 --advisory | --enforcing | --disable"
-    exit 1
-    ;;
-esac