@hiro-c/agent-gate 1.0.0 → 1.1.0

package/README.md

@@ -1,204 +1,101 @@
 # agent-gate
 
 [![CI](https://github.com/Hiro-Chiba/agent-gate/actions/workflows/ci.yml/badge.svg)](https://github.com/Hiro-Chiba/agent-gate/actions/workflows/ci.yml)
+[![npm](https://img.shields.io/npm/v/@hiro-c/agent-gate)](https://www.npmjs.com/package/@hiro-c/agent-gate)
 
-One natural-language rule source, enforced at runtime across multiple AI coding tools.
+**Runtime rule enforcer for AI coding agents.** Reads your existing instruction files (`CLAUDE.md`, `AGENTS.md`, `.cursorrules`, ...) and enforces them at hook time in Claude Code and Cursor.
 
-agent-gate reads the instruction files you already have (`CLAUDE.md`, `AGENTS.md`, `.cursorrules`, `.cursor/rules/*.mdc`, `.clinerules`, `.windsurf/rules`, `.github/copilot-instructions.md`, `CONVENTIONS.md`) as a single combined rule set, then enforces them at hook time in Claude Code and Cursor. A deterministic safety baseline catches catastrophic operations before any AI call.
+## What it does
 
-## Why
+- **Stops catastrophic operations** before AI ever sees them: `rm -rf /`, writes to `.env` / `.ssh/*`, force-push to `main`, edits to `/etc`.
+- **Aggregates 8 instruction file formats** into one rule set the AI uses to decide on the remaining cases.
+- **Returns guidance, not denials**: block reasons describe the next correct step the agent should take.
+- **Audits your rule files** with `agent-gate lint` (detects vague rules and ambiguous modifiers like "適切に" / "where possible").
 
-The AI coding tool landscape in 2026 has fragmented into many tools, each with its own instruction file format. Existing tooling either syncs rule files across tools (rulesync, symlinks) or enforces a single rule format at runtime (probity, tdd-guard), but not both. agent-gate sits in the gap: it accepts whatever natural-language instruction files you already maintain and enforces them across multiple AI tools through a single hook.
+## Install
 
-Two pain points the project is built to address:
-
-- **Rule forgetting** in long agent sessions, where context compression drops the rules from the prompt and the agent quietly drifts off-spec.
-- **Destructive operations** like `rm -rf $HOME` or force-pushing main, which AI judgment is too unreliable to catch consistently.
-
-## Features
+```bash
+npm install -g @hiro-c/agent-gate
+agent-gate install
+```
 
-- Multi-source rule collection across 8 instruction file formats, surfaced to AI with per-source attribution.
-- Adapter pattern: same binary works in Claude Code (`--agent claude-code`, default) and Cursor 1.7 (`--agent cursor`).
-- Deterministic safety baseline with five built-in rules that fire before any AI call.
-- AI validation against the combined rule set when the safety baseline passes.
-- Per-rule disable and per-project customization via `.agent-gate.json` and `AGENT_GATE_DISABLED_RULES`.
-- Optional decision log (`AGENT_GATE_LOG=1`) and `agent-gate stats` for auditing.
-- Block reasons are guidance, not denials: the AI is instructed to describe the next correct step alongside the violated rule.
+`agent-gate install` registers the Claude Code PreToolUse hook in `~/.claude/settings.json`. Restart Claude Code to activate. Use `agent-gate uninstall` to remove.
 
-## Requirements
+For Cursor 1.7, point your hook config at `agent-gate --agent cursor`.
 
-- Node.js >= 22.0.0
-- Claude Code or Cursor 1.7
+## How it works
 
-## Installation
+Every `Edit` / `Write` / `Bash` call from the agent goes through:
 
-```bash
-git clone https://github.com/Hiro-Chiba/agent-gate.git
-cd agent-gate
-./install.sh
+```
+hook payload → adapter → deterministic rules → AI validation → verdict
+                            (5 built-ins)        (your rules)
 ```
 
-The install script handles dependency install, build, and Claude Code hook registration. Restart Claude Code to activate.
-
-To register against Cursor instead of Claude Code, run the binary with `--agent cursor` from your Cursor hook config. To remove the Claude Code hook, run `./uninstall.sh`.
-
-## Configuration
-
-### Environment variables
+If a deterministic rule fires, AI is skipped. Otherwise agent-gate reads all instruction files in the project tree and asks the AI to validate the operation against them.
 
-| Variable | Default | Description |
-|---|---|---|
-| `AGENT_GATE_MODEL` | `claude-sonnet-4-6` | Model used for AI validation |
-| `AGENT_GATE_API_KEY` | (none) | Anthropic API key. Uses the API directly when set; otherwise spawns the Claude CLI |
-| `AGENT_GATE_COOLDOWN` | `0` | Cooldown in seconds between AI validations (deterministic rules always fire) |
-| `AGENT_GATE_DISABLED` | `false` | Set to `true` to disable the whole tool |
-| `AGENT_GATE_DISABLED_RULES` | (none) | Comma-separated rule ids to disable, merged with the config file |
-| `AGENT_GATE_LOG` | (none) | Set to `1` to append decisions to `~/.agent-gate/log.jsonl` |
-| `AGENT_GATE_REASON_LANG` | `auto` | Language for AI-generated `reason` text. `auto` matches the instruction files (English fallback when mixed). Pass `en`, `ja`, `zh`, `ko`, etc. to force a specific language |
-| `USE_SYSTEM_CLAUDE` | `false` | `true` forces PATH `claude` (default: `~/.claude/local/claude` with PATH fallback) |
+## Built-in safety rules
 
-### Project config file
+Run by default, disable per-rule in `.agent-gate.json` if needed.
 
-agent-gate looks for either a TypeScript / JavaScript config or a legacy JSON config, walking upward from the cwd until it finds one. Precedence (highest wins): `.agent-gate.config.ts` > `.mts` > `.mjs` > `.cjs` > `.js` > `.agent-gate.json`.
+| Rule | Blocks |
+|---|---|
+| `prevent-rm-rf-root` | `rm -rf` on `/`, `$HOME`, `~`, `/etc`, `/usr`, `/var`, etc. (handles `sudo`, flag variants). |
+| `prevent-secret-file-write` | `Edit`/`Write` to `.env*`, `.ssh/*`, `.aws/credentials`, `*.pem`, `*.key`, `id_rsa`. |
+| `prevent-bash-secret-write` | Shell redirects to the same paths (`echo > .env`, `tee .ssh/id_rsa`). |
+| `prevent-force-push-main` | `git push --force` to `main`, `master`, `develop`, `release`, etc. Allows `--force-with-lease`. |
+| `prevent-system-path-write` | `Edit`/`Write` to `/etc`, `/usr`, `/System`, `/Library`. |
 
-#### TypeScript / JavaScript config
+## Config
 
-The full API including custom rules:
+Drop a `.agent-gate.config.ts` (or `.js` / `.json`) at the project root:
 
 ```ts
-// .agent-gate.config.ts
-import { defineConfig, forbidCommandPattern, forbidFilePathPattern } from 'agent-gate'
+import { defineConfig, forbidCommandPattern } from '@hiro-c/agent-gate'
 
 export default defineConfig({
   disabledRules: ['prevent-force-push-main'],
   protectedBranches: ['main', 'release'],
-  extraSecretPathPrefixes: ['vault/', 'secrets/'],
   customRules: [
     forbidCommandPattern({
       id: 'no-drop-table',
       match: /drop\s+table/i,
-      reason: 'DROP TABLE is forbidden. Use a migration instead.',
-    }),
-    forbidFilePathPattern({
-      id: 'no-prod-config',
-      match: /production\.ya?ml$/,
-      reason: 'Production config edits go through ops review.',
+      reason: 'DROP TABLE is forbidden. Use a migration.',
     }),
   ],
 })
 ```
 
-| Field | Effect |
-|---|---|
-| `disabledRules` | List of rule ids that will not run. Merged with `AGENT_GATE_DISABLED_RULES`. |
-| `protectedBranches` | Overrides the default list used by `prevent-force-push-main`. |
-| `extraSecretPathPrefixes` | Additional path substrings treated as secret targets by `prevent-secret-file-write`. |
-| `customRules` | User-defined `DeterministicRule[]` appended after the built-ins. Use the `forbidCommandPattern` / `forbidContentPattern` / `forbidFilePathPattern` factories or hand-write your own. |
-
-#### Legacy JSON config
-
-Still works for simple cases:
-
-```json
-{
-  "disabled_rules": ["prevent-force-push-main"],
-  "protected_branches": ["main", "release"],
-  "extra_secret_paths": ["vault/", "secrets/"]
-}
-```
-
-JSON cannot express custom rules. Migrate to the TS/JS form when you need them.
+Full options: see [docs/config.md](docs/config.md) (TODO) or `AgentGatePluginConfig` in the source.
 
-## How It Works
+## CLI
 
-1. The AI coding tool fires a pre-tool-use hook with its vendor-specific JSON payload.
-2. The selected adapter parses that payload into a normalized `Action`.
-3. Deterministic safety rules run first. Catastrophic patterns are blocked here without calling AI.
-4. If the safety baseline passes, agent-gate collects all 8 instruction file formats present in the project tree.
-5. The AI validates the operation against the combined rule set, with each source attributed by kind.
-6. The verdict (block + guidance, or allow) is returned through the adapter's response formatter.
-
-## Built-in Safety Rules
-
-| Rule | Blocks |
+| Command | What it does |
 |---|---|
-| `prevent-rm-rf-root` | Recursive `rm` on `/`, `$HOME`, `~`, `/etc`, `/usr`, `/var`, and other catastrophic paths. Handles `sudo` prefix and flag variants (`-rf`, `-fr`, `-Rf`). |
-| `prevent-secret-file-write` | `Edit`/`Write` on `.env*` (non-template), `.ssh/*`, `.aws/credentials`, `*.pem`, `*.key`, `id_rsa`, `.netrc`. |
-| `prevent-bash-secret-write` | Shell redirects to the same secret paths via `>`, `>>`, or `tee`. |
-| `prevent-force-push-main` | `git push --force` or `-f` to `main`, `master`, `develop`, `production`, `release`, `stable`. Allows `--force-with-lease`. |
-| `prevent-system-path-write` | `Edit`/`Write` to `/etc`, `/usr`, `/var`, `/System`, `/Library`, `/opt`, and other system-owned paths. |
-
-Each rule can be disabled individually through `.agent-gate.json` or the env var.
-
-## Supported Instruction File Formats
+| `agent-gate` | Run as hook (reads stdin, used internally) |
+| `agent-gate install` / `uninstall` | Register or remove the Claude Code hook |
+| `agent-gate lint` | Audit instruction files for ambiguity, emptiness, missing rules |
+| `agent-gate stats` | Summarize the decision log (after `AGENT_GATE_LOG=1`) |
+| `agent-gate daemon` | Long-lived server on a Unix socket (opt-in speedup, set `AGENT_GATE_DAEMON=1`) |
 
-agent-gate aggregates rules from any combination of:
+## Environment
 
-- `CLAUDE.md` (Claude Code)
-- `AGENTS.md` (cross-tool spec backed by the Linux Foundation Agentic AI Foundation)
-- `.cursorrules` (Cursor legacy)
-- `.cursor/rules/*.mdc` (Cursor current)
-- `.clinerules/*.md` (Cline)
-- `.windsurf/rules/*.md` (Windsurf)
-- `.github/copilot-instructions.md` (GitHub Copilot)
-- `CONVENTIONS.md` (Aider)
-
-You do not need to choose. Maintain whichever file your team already uses; agent-gate reads them all.
-
-## Supported AI Coding Tools
-
-agent-gate enforces in any tool that exposes a pre-tool-use hook. As of v1:
-
-- Claude Code (mature). `agent-gate --agent claude-code`, the default.
-- Cursor 1.7 (beta). `agent-gate --agent cursor`. Payload mapping is best-effort against public docs.
-
-Tools without a hook surface (Copilot, Cline, Aider, Codex web, Replit, Devin) can still benefit from agent-gate as a rule source linter or via downstream sync (rulesync, symlinks), but cannot be enforced at runtime.
-
-## CLAUDE.md Doctor
-
-Run `agent-gate lint` from a project root to audit your instruction files for AI-friendliness. The doctor walks the same 8 file formats the runtime reads, then surfaces:
-
-- **Empty files** that would make the AI think no rules exist.
-- **Files with no concrete rules** (no imperatives, no bullets, no numbered items).
-- **Ambiguous modifiers** like "where possible", "as needed", "適切に", "なるべく", "可能な限り", "必要に応じて". AI judgment cannot enforce these reliably; the doctor suggests replacing them with a concrete condition or threshold.
-
-```text
-$ agent-gate lint
-/p/CLAUDE.md
-  [warning] no-concrete-rules: No imperatives ...
-  [info] ambiguous-modifier (line 5): Ambiguous modifier "適切に" ...
-      > - エラーは適切に扱う
-
-1 finding.
-```
-
-Exit code is 1 if any finding has severity `error`, otherwise 0, so the command can run in CI.
-
-## Daemon mode
-
-Each hook invocation normally spawns a fresh Node process (cold start ~300ms). For users that fire hooks at high frequency, agent-gate can run as a long-lived daemon on a Unix socket and let hook invocations reuse the warm process.
-
-```bash
-# Terminal 1: start the daemon (foreground; manage with systemd / launchctl / tmux in production).
-agent-gate daemon
-
-# Terminal 2 (or in your hook config):
-AGENT_GATE_DAEMON=1 agent-gate
-```
-
-When `AGENT_GATE_DAEMON=1`, the hook tries the socket first and transparently falls back to direct mode if the daemon is unreachable. Set `AGENT_GATE_SOCKET_PATH` to override the default `$TMPDIR/agent-gate.sock`.
-
-The daemon is opt-in. Users not setting `AGENT_GATE_DAEMON=1` keep the existing one-shot behavior.
-
-## Observability
-
-Set `AGENT_GATE_LOG=1` to append every decision to `~/.agent-gate/log.jsonl`. Each line is a JSON object with timestamp, adapter, tool, decision, reason, source (`deterministic` / `ai`), and `ruleId` when a deterministic rule fired.
+| Var | Effect |
+|---|---|
+| `AGENT_GATE_DISABLED` | Skip all checks |
+| `AGENT_GATE_DISABLED_RULES` | Comma-separated rule ids to skip |
+| `AGENT_GATE_REASON_LANG` | AI reason language: `auto` (default) / `en` / `ja` / etc. |
+| `AGENT_GATE_LOG` | `1` writes decisions to `~/.agent-gate/log.jsonl` |
+| `AGENT_GATE_API_KEY` | Use Anthropic API directly instead of `claude` CLI |
+| `AGENT_GATE_USE_SDK` | `1` prefers the Anthropic agent SDK over API/CLI (no API key needed; works best with daemon mode) |
+| `AGENT_GATE_DAEMON` | `1` routes through the daemon if it is running |
 
-Run `agent-gate stats` for a summary: total decisions, block percentage, breakdown by source, adapter, tool, and rule id.
+## Supported AI tools
 
-## Network Access
+- **Claude Code** (mature, default).
+- **Cursor 1.7** (beta, `--agent cursor`; payload mapping is best-effort against public docs).
 
-agent-gate only communicates with Anthropic endpoints, either directly via the Anthropic API (when `AGENT_GATE_API_KEY` is set) or indirectly through the Claude CLI subprocess. It does not contact any other external services and does not send telemetry. Deterministic rules run entirely locally.
+Other tools (Copilot, Cline, Aider, Codex web, Replit, Devin) lack a hook surface and cannot be enforced at runtime.
 
 ## License
 

package/dist/config/Config.d.ts

@@ -12,6 +12,13 @@ export type ConfigOptions = {
      * - "en", "ja", "zh", "ko", etc.: write reasons in that language.
      */
     reasonLang?: string;
+    /**
+     * Prefer Anthropic's agent SDK (`@anthropic-ai/claude-agent-sdk`) as the
+     * first model client. Reuses the host process's Claude auth, removing
+     * the need for AGENT_GATE_API_KEY. The SDK has noticeable cold-start
+     * cost, so this is most useful when paired with `agent-gate daemon`.
+     */
+    useSdk?: boolean;
 };
 export declare class Config {
     readonly model: string;
@@ -20,6 +27,7 @@ export declare class Config {
     readonly disabled: boolean;
     readonly useSystemClaude: boolean;
     readonly reasonLang: string | undefined;
+    readonly useSdk: boolean;
     constructor(options?: ConfigOptions);
     get useApi(): boolean;
 }

package/dist/config/Config.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"Config.d.ts","sourceRoot":"","sources":["../../src/config/Config.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,aAAa,sBAAsB,CAAA;AAEhD,MAAM,MAAM,aAAa,GAAG;IAC1B,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,QAAQ,CAAC,EAAE,OAAO,CAAA;IAClB,eAAe,CAAC,EAAE,OAAO,CAAA;IACzB;;;;;OAKG;IACH,UAAU,CAAC,EAAE,MAAM,CAAA;CACpB,CAAA;AAED,qBAAa,MAAM;IACjB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAA;IACnC,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;IACzB,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAA;IAC1B,QAAQ,CAAC,eAAe,EAAE,OAAO,CAAA;IACjC,QAAQ,CAAC,UAAU,EAAE,MAAM,GAAG,SAAS,CAAA;gBAE3B,OAAO,CAAC,EAAE,aAAa;IAUnC,IAAI,MAAM,IAAI,OAAO,CAEpB;CACF"}
+{"version":3,"file":"Config.d.ts","sourceRoot":"","sources":["../../src/config/Config.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,aAAa,sBAAsB,CAAA;AAEhD,MAAM,MAAM,aAAa,GAAG;IAC1B,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,QAAQ,CAAC,EAAE,OAAO,CAAA;IAClB,eAAe,CAAC,EAAE,OAAO,CAAA;IACzB;;;;;OAKG;IACH,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB;;;;;OAKG;IACH,MAAM,CAAC,EAAE,OAAO,CAAA;CACjB,CAAA;AAED,qBAAa,MAAM;IACjB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAA;IACnC,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;IACzB,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAA;IAC1B,QAAQ,CAAC,eAAe,EAAE,OAAO,CAAA;IACjC,QAAQ,CAAC,UAAU,EAAE,MAAM,GAAG,SAAS,CAAA;IACvC,QAAQ,CAAC,MAAM,EAAE,OAAO,CAAA;gBAEZ,OAAO,CAAC,EAAE,aAAa;IAWnC,IAAI,MAAM,IAAI,OAAO,CAEpB;CACF"}

package/dist/config/Config.js

@@ -9,6 +9,7 @@ class Config {
     disabled;
     useSystemClaude;
     reasonLang;
+    useSdk;
     constructor(options) {
         this.model = options?.model ?? process.env.AGENT_GATE_MODEL ?? exports.DEFAULT_MODEL;
         this.apiKey = options?.apiKey ?? process.env.AGENT_GATE_API_KEY;
@@ -17,6 +18,7 @@ class Config {
         this.disabled = options?.disabled ?? process.env.AGENT_GATE_DISABLED === 'true';
         this.useSystemClaude = options?.useSystemClaude ?? process.env.USE_SYSTEM_CLAUDE === 'true';
         this.reasonLang = options?.reasonLang ?? process.env.AGENT_GATE_REASON_LANG;
+        this.useSdk = options?.useSdk ?? process.env.AGENT_GATE_USE_SDK === '1';
     }
     get useApi() {
         return this.apiKey !== undefined && this.apiKey !== '';

package/dist/hooks/processHookData.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"processHookData.d.ts","sourceRoot":"","sources":["../../src/hooks/processHookData.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,gBAAgB,EAAE,MAAM,qCAAqC,CAAA;AACtE,OAAO,EAAE,UAAU,EAAE,MAAM,+BAA+B,CAAA;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,gCAAgC,CAAA;AAE7D,OAAO,EAAE,SAAS,EAAE,MAAM,yBAAyB,CAAA;AACnD,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAA;AAIzC,OAAO,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAA;AAG1D,OAAO,EAAE,OAAO,EAAE,MAAM,qBAAqB,CAAA;AAE7C,OAAO,EACL,eAAe,EAEhB,MAAM,2BAA2B,CAAA;AAMlC,OAAO,EAAE,QAAQ,EAAE,MAAM,2BAA2B,CAAA;AAWpD,MAAM,WAAW,aAAa;IAC5B,WAAW,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAA;IAChC,WAAW,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI,CAAA;CAC7C;AA4BD,MAAM,WAAW,mBAAmB;IAClC,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,eAAe,CAAC,EAAE,eAAe,CAAA;IACjC,SAAS,CAAC,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,UAAU,EAAE,CAAA;IACzC,WAAW,CAAC,EAAE,OAAO,SAAS,CAAA;IAC9B,cAAc,CAAC,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK,YAAY,CAAA;IACjD,aAAa,CAAC,EAAE,aAAa,CAAA;IAC7B,GAAG,CAAC,EAAE,MAAM,CAAA;IACZ,kBAAkB,CAAC,EAAE,iBAAiB,EAAE,CAAA;IACxC,OAAO,CAAC,EAAE,OAAO,CAAA;IACjB;;;;OAIG;IACH,QAAQ,CAAC,EAAE,QAAQ,CAAA;IACnB,wEAAwE;IACxE,OAAO,CAAC,EAAE;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAA;KAAE,CAAA;CAC9C;AAaD,wBAAsB,eAAe,CACnC,KAAK,EAAE,MAAM,EACb,IAAI,CAAC,EAAE,mBAAmB,GACzB,OAAO,CAAC,gBAAgB,CAAC,CAoI3B"}
+{"version":3,"file":"processHookData.d.ts","sourceRoot":"","sources":["../../src/hooks/processHookData.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,gBAAgB,EAAE,MAAM,qCAAqC,CAAA;AACtE,OAAO,EAAE,UAAU,EAAE,MAAM,+BAA+B,CAAA;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,gCAAgC,CAAA;AAE7D,OAAO,EAAE,SAAS,EAAE,MAAM,yBAAyB,CAAA;AACnD,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAA;AAKzC,OAAO,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAA;AAG1D,OAAO,EAAE,OAAO,EAAE,MAAM,qBAAqB,CAAA;AAE7C,OAAO,EACL,eAAe,EAEhB,MAAM,2BAA2B,CAAA;AAMlC,OAAO,EAAE,QAAQ,EAAE,MAAM,2BAA2B,CAAA;AAWpD,MAAM,WAAW,aAAa;IAC5B,WAAW,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAA;IAChC,WAAW,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI,CAAA;CAC7C;AA4BD,MAAM,WAAW,mBAAmB;IAClC,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,eAAe,CAAC,EAAE,eAAe,CAAA;IACjC,SAAS,CAAC,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,UAAU,EAAE,CAAA;IACzC,WAAW,CAAC,EAAE,OAAO,SAAS,CAAA;IAC9B,cAAc,CAAC,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK,YAAY,CAAA;IACjD,aAAa,CAAC,EAAE,aAAa,CAAA;IAC7B,GAAG,CAAC,EAAE,MAAM,CAAA;IACZ,kBAAkB,CAAC,EAAE,iBAAiB,EAAE,CAAA;IACxC,OAAO,CAAC,EAAE,OAAO,CAAA;IACjB;;;;OAIG;IACH,QAAQ,CAAC,EAAE,QAAQ,CAAA;IACnB,wEAAwE;IACxE,OAAO,CAAC,EAAE;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAA;KAAE,CAAA;CAC9C;AAaD,wBAAsB,eAAe,CACnC,KAAK,EAAE,MAAM,EACb,IAAI,CAAC,EAAE,mBAAmB,GACzB,OAAO,CAAC,gBAAgB,CAAC,CAoI3B"}

package/dist/hooks/processHookData.js

@@ -11,6 +11,7 @@ const Config_1 = require("../config/Config");
 const ClaudeCli_1 = require("../validation/models/ClaudeCli");
 const AnthropicApi_1 = require("../validation/models/AnthropicApi");
 const CompositeModelClient_1 = require("../validation/models/CompositeModelClient");
+const AgentSdkClient_1 = require("../validation/models/AgentSdkClient");
 const engine_1 = require("../deterministic/engine");
 const defaultRules_1 = require("../deterministic/defaultRules");
 const adapter_1 = require("../adapters/claude-code/adapter");
@@ -165,11 +166,20 @@ async function processHookData(input, deps) {
     return result;
 }
 function createModelClient(config, cwd) {
-    // Build a fallback chain: the most-preferred client comes first, with
-    // ClaudeCli as a secondary path. The CompositeModelClient tries each in
-    // order; if the first fails, the next runs. The validator's outer
-    // try/catch fail-opens when every client has failed.
+    // Build a fallback chain: the most-preferred client comes first.
+    // The CompositeModelClient tries each in order; if one fails, the next
+    // runs. The validator's outer try/catch fail-opens if every client has
+    // failed.
+    //
+    // Order: AgentSdkClient (when AGENT_GATE_USE_SDK=1) -> AnthropicApi
+    // (when an API key is set) -> ClaudeCli (always available as a fallback).
+    // AgentSdkClient is preferred when enabled because it reuses the host
+    // agent's existing Claude authentication, removing the need for a
+    // separate API key.
     const clients = [];
+    if (config.useSdk) {
+        clients.push(new AgentSdkClient_1.AgentSdkClient({ config }));
+    }
     if (config.useApi) {
         clients.push(new AnthropicApi_1.AnthropicApi(config));
     }

package/dist/index.d.ts

@@ -20,6 +20,8 @@ export { cursorAdapter } from './adapters/cursor/adapter';
 export type { Adapter, ReadHistoryOptions } from './adapters/Adapter';
 export { CompositeModelClient } from './validation/models/CompositeModelClient';
 export type { CompositeModelClientOptions } from './validation/models/CompositeModelClient';
+export { AgentSdkClient } from './validation/models/AgentSdkClient';
+export type { AgentSdkClientOptions, AgentSdkQueryFn, } from './validation/models/AgentSdkClient';
 export { lintRuleSources } from './doctor/lintRuleSources';
 export { formatFindings } from './doctor/formatFindings';
 export type { Finding, FindingCode, Severity, } from './doctor/findings';

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,iBAAiB,CAAA;AACxC,YAAY,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAA;AACpD,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAA;AACpD,YAAY,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAA;AAClE,YAAY,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAA;AAC/D,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAA;AAC9D,OAAO,EAAE,gBAAgB,EAAE,MAAM,6BAA6B,CAAA;AAG9D,YAAY,EAAE,gBAAgB,EAAE,MAAM,oCAAoC,CAAA;AAC1E,YAAY,EAAE,QAAQ,EAAE,MAAM,4BAA4B,CAAA;AAC1D,YAAY,EAAE,YAAY,EAAE,MAAM,+BAA+B,CAAA;AACjE,YAAY,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAA;AAC9E,YAAY,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAA;AAClE,YAAY,EACV,cAAc,EACd,YAAY,GACb,MAAM,kCAAkC,CAAA;AAGzC,OAAO,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AAGnE,YAAY,EACV,iBAAiB,EACjB,WAAW,GACZ,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EACL,oBAAoB,EACpB,oBAAoB,EACpB,qBAAqB,GACtB,MAAM,2BAA2B,CAAA;AAClC,OAAO,EACL,yBAAyB,EACzB,8BAA8B,GAC/B,MAAM,8BAA8B,CAAA;AAGrC,OAAO,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAA;AAClE,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAA;AACzD,YAAY,EAAE,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA;AAGrE,OAAO,EAAE,oBAAoB,EAAE,MAAM,0CAA0C,CAAA;AAC/E,YAAY,EAAE,2BAA2B,EAAE,MAAM,0CAA0C,CAAA;AAG3F,OAAO,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAA;AAC1D,OAAO,EAAE,cAAc,EAAE,MAAM,yBAAyB,CAAA;AACxD,YAAY,EACV,OAAO,EACP,WAAW,EACX,QAAQ,GACT,MAAM,mBAAmB,CAAA;AAG1B,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAA;AAC9C,YAAY,EAAE,mBAAmB,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAA;AACzE,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAA;AAC9C,YAAY,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAA;AAC1D,OAAO,EACL,iBAAiB,IAAI,uBAAuB,GAC7C,MAAM,mBAAmB,CAAA;AAC1B,YAAY,EACV,aAAa,EACb,cAAc,EACd,mBAAmB,GACpB,MAAM,mBAAmB,CAAA;AAG1B,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAA;AACnD,OAAO,EAAE,aAAa,EAAE,MAAM,qCAAqC,CAAA;AACnE,YAAY,EACV,aAAa,EACb,cAAc,EACd,gBAAgB,EAChB,gBAAgB,EAChB,mBAAmB,EACnB,kBAAkB,EAClB,IAAI,GACL,MAAM,4BAA4B,CAAA;AAGnC,OAAO,EAAE,kBAAkB,EAAE,MAAM,gCAAgC,CAAA;AACnE,OAAO,EAAE,SAAS,EAAE,MAAM,wBAAwB,CAAA;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,iBAAiB,CAAA;AACxC,YAAY,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAA;AACpD,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAA;AACpD,YAAY,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAA;AAClE,YAAY,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAA;AAC/D,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAA;AAC9D,OAAO,EAAE,gBAAgB,EAAE,MAAM,6BAA6B,CAAA;AAG9D,YAAY,EAAE,gBAAgB,EAAE,MAAM,oCAAoC,CAAA;AAC1E,YAAY,EAAE,QAAQ,EAAE,MAAM,4BAA4B,CAAA;AAC1D,YAAY,EAAE,YAAY,EAAE,MAAM,+BAA+B,CAAA;AACjE,YAAY,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAA;AAC9E,YAAY,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAA;AAClE,YAAY,EACV,cAAc,EACd,YAAY,GACb,MAAM,kCAAkC,CAAA;AAGzC,OAAO,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AAGnE,YAAY,EACV,iBAAiB,EACjB,WAAW,GACZ,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EACL,oBAAoB,EACpB,oBAAoB,EACpB,qBAAqB,GACtB,MAAM,2BAA2B,CAAA;AAClC,OAAO,EACL,yBAAyB,EACzB,8BAA8B,GAC/B,MAAM,8BAA8B,CAAA;AAGrC,OAAO,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAA;AAClE,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAA;AACzD,YAAY,EAAE,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA;AAGrE,OAAO,EAAE,oBAAoB,EAAE,MAAM,0CAA0C,CAAA;AAC/E,YAAY,EAAE,2BAA2B,EAAE,MAAM,0CAA0C,CAAA;AAC3F,OAAO,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AACnE,YAAY,EACV,qBAAqB,EACrB,eAAe,GAChB,MAAM,oCAAoC,CAAA;AAG3C,OAAO,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAA;AAC1D,OAAO,EAAE,cAAc,EAAE,MAAM,yBAAyB,CAAA;AACxD,YAAY,EACV,OAAO,EACP,WAAW,EACX,QAAQ,GACT,MAAM,mBAAmB,CAAA;AAG1B,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAA;AAC9C,YAAY,EAAE,mBAAmB,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAA;AACzE,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAA;AAC9C,YAAY,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAA;AAC1D,OAAO,EACL,iBAAiB,IAAI,uBAAuB,GAC7C,MAAM,mBAAmB,CAAA;AAC1B,YAAY,EACV,aAAa,EACb,cAAc,EACd,mBAAmB,GACpB,MAAM,mBAAmB,CAAA;AAG1B,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAA;AACnD,OAAO,EAAE,aAAa,EAAE,MAAM,qCAAqC,CAAA;AACnE,YAAY,EACV,aAAa,EACb,cAAc,EACd,gBAAgB,EAChB,gBAAgB,EAChB,mBAAmB,EACnB,kBAAkB,EAClB,IAAI,GACL,MAAM,4BAA4B,CAAA;AAGnC,OAAO,EAAE,kBAAkB,EAAE,MAAM,gCAAgC,CAAA;AACnE,OAAO,EAAE,SAAS,EAAE,MAAM,wBAAwB,CAAA;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAA"}

package/dist/index.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.processHookData = exports.validator = exports.collectRuleSources = exports.JsonlFileSink = exports.EventBus = exports.defaultDaemonSocketPath = exports.sendToDaemon = exports.DaemonServer = exports.formatFindings = exports.lintRuleSources = exports.CompositeModelClient = exports.cursorAdapter = exports.claudeCodeAdapter = exports.buildDefaultDeterministicRules = exports.defaultDeterministicRules = exports.forbidFilePathPattern = exports.forbidContentPattern = exports.forbidCommandPattern = exports.HookDataSchema = exports.loadPluginConfig = exports.loadAgentGateConfig = exports.defineConfig = exports.Config = void 0;
+exports.processHookData = exports.validator = exports.collectRuleSources = exports.JsonlFileSink = exports.EventBus = exports.defaultDaemonSocketPath = exports.sendToDaemon = exports.DaemonServer = exports.formatFindings = exports.lintRuleSources = exports.AgentSdkClient = exports.CompositeModelClient = exports.cursorAdapter = exports.claudeCodeAdapter = exports.buildDefaultDeterministicRules = exports.defaultDeterministicRules = exports.forbidFilePathPattern = exports.forbidContentPattern = exports.forbidCommandPattern = exports.HookDataSchema = exports.loadPluginConfig = exports.loadAgentGateConfig = exports.defineConfig = exports.Config = void 0;
 // Config
 var Config_1 = require("./config/Config");
 Object.defineProperty(exports, "Config", { enumerable: true, get: function () { return Config_1.Config; } });
@@ -28,6 +28,8 @@ Object.defineProperty(exports, "cursorAdapter", { enumerable: true, get: functio
 // Model clients (for users wiring up custom AI fallback chains)
 var CompositeModelClient_1 = require("./validation/models/CompositeModelClient");
 Object.defineProperty(exports, "CompositeModelClient", { enumerable: true, get: function () { return CompositeModelClient_1.CompositeModelClient; } });
+var AgentSdkClient_1 = require("./validation/models/AgentSdkClient");
+Object.defineProperty(exports, "AgentSdkClient", { enumerable: true, get: function () { return AgentSdkClient_1.AgentSdkClient; } });
 // Doctor (CLAUDE.md linter)
 var lintRuleSources_1 = require("./doctor/lintRuleSources");
 Object.defineProperty(exports, "lintRuleSources", { enumerable: true, get: function () { return lintRuleSources_1.lintRuleSources; } });

package/dist/validation/models/AgentSdkClient.d.ts

@@ -0,0 +1,40 @@
+import { IModelClient } from '../../contracts/types/ModelClient';
+import { Config } from '../../config/Config';
+/**
+ * Shape of the `query` export from `@anthropic-ai/claude-agent-sdk`,
+ * as documented by Anthropic. The SDK returns an AsyncIterable of
+ * streamed messages and accepts a small set of options.
+ */
+export type AgentSdkQueryFn = (args: {
+    prompt: string;
+    options?: {
+        model?: string;
+        allowedTools?: string[];
+        permissionMode?: 'default' | 'bypassPermissions' | 'dontAsk';
+        maxTurns?: number;
+    };
+}) => AsyncIterable<unknown>;
+export interface AgentSdkClientOptions {
+    config: Config;
+    /**
+     * Override the SDK loader. Production builds default to a dynamic
+     * import of `@anthropic-ai/claude-agent-sdk`; tests inject a fake.
+     */
+    loadQuery?: () => Promise<AgentSdkQueryFn>;
+}
+/**
+ * IModelClient that runs validation through Anthropic's agent SDK
+ * (`@anthropic-ai/claude-agent-sdk`). Reuses the host process's
+ * existing Claude authentication so no separate API key is required.
+ *
+ * Tradeoff: the SDK has noticeable cold-start cost on each call.
+ * Recommended paired with `agent-gate daemon` so the SDK initialization
+ * is amortized across hook invocations.
+ */
+export declare class AgentSdkClient implements IModelClient {
+    private readonly config;
+    private readonly loadQuery;
+    constructor(opts: AgentSdkClientOptions);
+    ask(prompt: string): Promise<string>;
+}
+//# sourceMappingURL=AgentSdkClient.d.ts.map

package/dist/validation/models/AgentSdkClient.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"AgentSdkClient.d.ts","sourceRoot":"","sources":["../../../src/validation/models/AgentSdkClient.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,mCAAmC,CAAA;AAChE,OAAO,EAAE,MAAM,EAAE,MAAM,qBAAqB,CAAA;AAG5C;;;;GAIG;AACH,MAAM,MAAM,eAAe,GAAG,CAAC,IAAI,EAAE;IACnC,MAAM,EAAE,MAAM,CAAA;IACd,OAAO,CAAC,EAAE;QACR,KAAK,CAAC,EAAE,MAAM,CAAA;QACd,YAAY,CAAC,EAAE,MAAM,EAAE,CAAA;QACvB,cAAc,CAAC,EAAE,SAAS,GAAG,mBAAmB,GAAG,SAAS,CAAA;QAC5D,QAAQ,CAAC,EAAE,MAAM,CAAA;KAClB,CAAA;CACF,KAAK,aAAa,CAAC,OAAO,CAAC,CAAA;AAE5B,MAAM,WAAW,qBAAqB;IACpC,MAAM,EAAE,MAAM,CAAA;IACd;;;OAGG;IACH,SAAS,CAAC,EAAE,MAAM,OAAO,CAAC,eAAe,CAAC,CAAA;CAC3C;AAED;;;;;;;;GAQG;AACH,qBAAa,cAAe,YAAW,YAAY;IACjD,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAQ;IAC/B,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAgC;gBAE9C,IAAI,EAAE,qBAAqB;IAKjC,GAAG,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;CAgC3C"}

package/dist/validation/models/AgentSdkClient.js

@@ -0,0 +1,92 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AgentSdkClient = void 0;
+const system_prompt_1 = require("../prompts/system-prompt");
+/**
+ * IModelClient that runs validation through Anthropic's agent SDK
+ * (`@anthropic-ai/claude-agent-sdk`). Reuses the host process's
+ * existing Claude authentication so no separate API key is required.
+ *
+ * Tradeoff: the SDK has noticeable cold-start cost on each call.
+ * Recommended paired with `agent-gate daemon` so the SDK initialization
+ * is amortized across hook invocations.
+ */
+class AgentSdkClient {
+    config;
+    loadQuery;
+    constructor(opts) {
+        this.config = opts.config;
+        this.loadQuery = opts.loadQuery ?? defaultLoadQuery;
+    }
+    async ask(prompt) {
+        let query;
+        try {
+            query = await this.loadQuery();
+        }
+        catch (e) {
+            const msg = e instanceof Error ? e.message : String(e);
+            throw new Error(`Agent SDK loader failed; install @anthropic-ai/claude-agent-sdk or fall back to another client. Underlying: ${msg}`);
+        }
+        const fullPrompt = `${(0, system_prompt_1.getSystemPrompt)(this.config.reasonLang)}\n\n${prompt}`;
+        let lastText = '';
+        for await (const message of query({
+            prompt: fullPrompt,
+            options: {
+                model: this.config.model,
+                allowedTools: [],
+                permissionMode: 'bypassPermissions',
+                maxTurns: 1,
+            },
+        })) {
+            const t = extractText(message);
+            if (t)
+                lastText = t;
+        }
+        if (!lastText) {
+            throw new Error('No response from agent SDK stream');
+        }
+        return lastText;
+    }
+}
+exports.AgentSdkClient = AgentSdkClient;
+async function defaultLoadQuery() {
+    const mod = (await import('@anthropic-ai/claude-agent-sdk'));
+    if (typeof mod.query !== 'function') {
+        throw new Error('@anthropic-ai/claude-agent-sdk did not export query()');
+    }
+    return mod.query;
+}
+/**
+ * Pulls assistant text out of one streamed message. The SDK emits a
+ * mix of system / assistant / result envelopes; we cover the common
+ * shapes and ignore the rest.
+ */
+function extractText(message) {
+    if (typeof message !== 'object' || message === null)
+        return null;
+    const m = message;
+    if (typeof m.result === 'string' && m.result.length > 0)
+        return m.result;
+    const inner = m.message;
+    if (typeof inner === 'object' && inner !== null) {
+        const content = inner.content;
+        if (Array.isArray(content)) {
+            const text = content
+                .map((c) => {
+                if (typeof c === 'object' && c !== null) {
+                    const block = c;
+                    if (typeof block.text === 'string')
+                        return block.text;
+                }
+                return null;
+            })
+                .filter((s) => Boolean(s))
+                .join('\n');
+            if (text.length > 0)
+                return text;
+        }
+    }
+    if (typeof m.text === 'string' && m.text.length > 0)
+        return m.text;
+    return null;
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hiro-c/agent-gate",
-  "version": "1.0.0",
+  "version": "1.1.0",
   "description": "Runtime rule enforcer for AI coding agents. Reads CLAUDE.md / AGENTS.md / .cursorrules and enforces them via Claude Code and Cursor hooks, with a deterministic safety baseline.",
   "author": "Hiro-Chiba",
   "license": "MIT",
@@ -55,7 +55,7 @@
     "prepublishOnly": "npm run checks && npm run build"
   },
   "dependencies": {
-    "@anthropic-ai/sdk": "^0.90.0",
+    "@anthropic-ai/sdk": "^0.93.0",
     "jiti": "^2.7.0",
     "zod": "^4.3.6"
   },
@@ -63,5 +63,8 @@
     "@types/node": "^25.6.0",
     "typescript": "^6.0.3",
     "vitest": "^4.1.4"
+  },
+  "optionalDependencies": {
+    "@anthropic-ai/claude-agent-sdk": "^0.3.0"
   }
 }

package/dist/collector/collectClaudeMd.d.ts

@@ -1,3 +0,0 @@
-import { ClaudeMdFile } from '../contracts/types/ClaudeMdFile';
-export declare function collectClaudeMd(cwd: string): ClaudeMdFile[];
-//# sourceMappingURL=collectClaudeMd.d.ts.map

package/dist/collector/collectClaudeMd.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"collectClaudeMd.d.ts","sourceRoot":"","sources":["../../src/collector/collectClaudeMd.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAA;AAe9D,wBAAgB,eAAe,CAAC,GAAG,EAAE,MAAM,GAAG,YAAY,EAAE,CAY3D"}

package/dist/collector/collectClaudeMd.js

@@ -1,87 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.collectClaudeMd = collectClaudeMd;
-const fs_1 = require("fs");
-const path_1 = require("path");
-const EXCLUDED_DIRS = new Set([
-    'node_modules',
-    '.git',
-    'target',
-    '.venv',
-    'vendor',
-    '__pycache__',
-    'dist',
-    'build',
-]);
-const MAX_DEPTH = 3;
-function collectClaudeMd(cwd) {
-    const upward = collectUpward(cwd);
-    const downward = collectDownward(cwd);
-    // Deduplicate: upward already includes cwd/CLAUDE.md
-    const upwardPaths = new Set(upward.map((f) => f.path));
-    const combined = [
-        ...upward,
-        ...downward.filter((f) => !upwardPaths.has(f.path)),
-    ];
-    return combined;
-}
-function collectUpward(cwd) {
-    const files = [];
-    let dir = cwd;
-    while (true) {
-        const claudeMdPath = (0, path_1.join)(dir, 'CLAUDE.md');
-        const content = readFileSafe(claudeMdPath);
-        if (content !== null) {
-            files.push({ path: claudeMdPath, content });
-        }
-        const parent = (0, path_1.dirname)(dir);
-        if (parent === dir)
-            break;
-        dir = parent;
-    }
-    return files;
-}
-function collectDownward(cwd) {
-    const files = [];
-    walkDir(cwd, 0, files);
-    return files;
-}
-function walkDir(dir, depth, files) {
-    if (depth > MAX_DEPTH)
-        return;
-    let entries;
-    try {
-        entries = (0, fs_1.readdirSync)(dir);
-    }
-    catch {
-        return;
-    }
-    for (const entry of entries) {
-        if (EXCLUDED_DIRS.has(entry))
-            continue;
-        const fullPath = (0, path_1.join)(dir, entry);
-        if (entry === 'CLAUDE.md') {
-            const content = readFileSafe(fullPath);
-            if (content !== null) {
-                files.push({ path: fullPath, content });
-            }
-            continue;
-        }
-        try {
-            if ((0, fs_1.statSync)(fullPath).isDirectory()) {
-                walkDir(fullPath, depth + 1, files);
-            }
-        }
-        catch {
-            // Skip inaccessible entries
-        }
-    }
-}
-function readFileSafe(filePath) {
-    try {
-        return (0, fs_1.readFileSync)(filePath, 'utf-8');
-    }
-    catch {
-        return null;
-    }
-}

package/dist/contracts/types/ClaudeMdFile.d.ts

@@ -1,5 +0,0 @@
-export type ClaudeMdFile = {
-    path: string;
-    content: string;
-};
-//# sourceMappingURL=ClaudeMdFile.d.ts.map

package/dist/contracts/types/ClaudeMdFile.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"ClaudeMdFile.d.ts","sourceRoot":"","sources":["../../../src/contracts/types/ClaudeMdFile.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,YAAY,GAAG;IACzB,IAAI,EAAE,MAAM,CAAA;IACZ,OAAO,EAAE,MAAM,CAAA;CAChB,CAAA"}

package/dist/contracts/types/ClaudeMdFile.js

@@ -1,2 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });