npm - @jaguilar87/gaia - Versions diffs - 5.0.0-rc.2 - Mend

@jaguilar87/gaia 5.0.0-rc.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (621) hide show

package/.claude-plugin/marketplace.json +33 -0
package/.claude-plugin/plugin.json +26 -0
package/ARCHITECTURE.md +335 -0
package/CHANGELOG.md +1298 -0
package/CODE_OF_CONDUCT.md +11 -0
package/CONTRIBUTING.md +146 -0
package/INSTALL.md +436 -0
package/LICENSE +21 -0
package/README.md +222 -0
package/SECURITY.md +47 -0
package/agents/README.md +78 -0
package/agents/cloud-troubleshooter.md +73 -0
package/agents/developer.md +65 -0
package/agents/gaia-operator.md +64 -0
package/agents/gaia-orchestrator.md +111 -0
package/agents/gaia-planner.md +53 -0
package/agents/gaia-system.md +71 -0
package/agents/gitops-operator.md +61 -0
package/agents/terraform-architect.md +63 -0
package/bin/README.md +106 -0
package/bin/cli/__init__.py +1 -0
package/bin/cli/approvals.py +740 -0
package/bin/cli/cleanup.py +562 -0
package/bin/cli/context.py +283 -0
package/bin/cli/doctor.py +651 -0
package/bin/cli/history.py +305 -0
package/bin/cli/memory.py +483 -0
package/bin/cli/metrics.py +1068 -0
package/bin/cli/plans.py +515 -0
package/bin/cli/status.py +302 -0
package/bin/cli/update.py +382 -0
package/bin/gaia +112 -0
package/bin/gaia-cleanup.js +531 -0
package/bin/gaia-doctor.js +635 -0
package/bin/gaia-evidence +126 -0
package/bin/gaia-history.js +251 -0
package/bin/gaia-metrics.js +1278 -0
package/bin/gaia-review.js +269 -0
package/bin/gaia-scan +44 -0
package/bin/gaia-scan.py +589 -0
package/bin/gaia-skills-diagnose.js +929 -0
package/bin/gaia-status.js +278 -0
package/bin/gaia-uninstall.js +111 -0
package/bin/gaia-update.js +919 -0
package/bin/pre-publish-validate.js +610 -0
package/bin/python-detect.js +60 -0
package/bin/validate-sandbox.sh +601 -0
package/commands/README.md +64 -0
package/commands/gaia.md +37 -0
package/commands/scan-project.md +67 -0
package/config/README.md +71 -0
package/config/cloud/aws.json +134 -0
package/config/cloud/gcp.json +139 -0
package/config/context-contracts.json +158 -0
package/config/crons-schema.md +81 -0
package/config/git_standards.json +72 -0
package/config/surface-routing.json +417 -0
package/config/universal-rules.json +102 -0
package/dist/gaia-ops/.claude-plugin/plugin.json +24 -0
package/dist/gaia-ops/README.md +80 -0
package/dist/gaia-ops/agents/cloud-troubleshooter.md +73 -0
package/dist/gaia-ops/agents/developer.md +65 -0
package/dist/gaia-ops/agents/gaia-operator.md +64 -0
package/dist/gaia-ops/agents/gaia-orchestrator.md +111 -0
package/dist/gaia-ops/agents/gaia-planner.md +53 -0
package/dist/gaia-ops/agents/gaia-system.md +71 -0
package/dist/gaia-ops/agents/gitops-operator.md +61 -0
package/dist/gaia-ops/agents/terraform-architect.md +63 -0
package/dist/gaia-ops/commands/gaia.md +37 -0
package/dist/gaia-ops/config/README.md +71 -0
package/dist/gaia-ops/config/cloud/aws.json +134 -0
package/dist/gaia-ops/config/cloud/gcp.json +139 -0
package/dist/gaia-ops/config/context-contracts.json +158 -0
package/dist/gaia-ops/config/crons-schema.md +81 -0
package/dist/gaia-ops/config/git_standards.json +72 -0
package/dist/gaia-ops/config/surface-routing.json +417 -0
package/dist/gaia-ops/config/universal-rules.json +102 -0
package/dist/gaia-ops/hooks/adapters/__init__.py +52 -0
package/dist/gaia-ops/hooks/adapters/base.py +219 -0
package/dist/gaia-ops/hooks/adapters/channel.py +17 -0
package/dist/gaia-ops/hooks/adapters/claude_code.py +1890 -0
package/dist/gaia-ops/hooks/adapters/types.py +194 -0
package/dist/gaia-ops/hooks/adapters/utils.py +25 -0
package/dist/gaia-ops/hooks/hooks.json +192 -0
package/dist/gaia-ops/hooks/modules/__init__.py +15 -0
package/dist/gaia-ops/hooks/modules/agents/__init__.py +29 -0
package/dist/gaia-ops/hooks/modules/agents/contract_validator.py +647 -0
package/dist/gaia-ops/hooks/modules/agents/response_contract.py +496 -0
package/dist/gaia-ops/hooks/modules/agents/skill_injection_verifier.py +120 -0
package/dist/gaia-ops/hooks/modules/agents/state_tracker.py +267 -0
package/dist/gaia-ops/hooks/modules/agents/task_info_builder.py +74 -0
package/dist/gaia-ops/hooks/modules/agents/transcript_analyzer.py +458 -0
package/dist/gaia-ops/hooks/modules/agents/transcript_reader.py +152 -0
package/dist/gaia-ops/hooks/modules/audit/__init__.py +28 -0
package/dist/gaia-ops/hooks/modules/audit/event_detector.py +168 -0
package/dist/gaia-ops/hooks/modules/audit/logger.py +131 -0
package/dist/gaia-ops/hooks/modules/audit/metrics.py +134 -0
package/dist/gaia-ops/hooks/modules/audit/workflow_auditor.py +611 -0
package/dist/gaia-ops/hooks/modules/audit/workflow_recorder.py +296 -0
package/dist/gaia-ops/hooks/modules/context/__init__.py +11 -0
package/dist/gaia-ops/hooks/modules/context/agentic_loop_detector.py +165 -0
package/dist/gaia-ops/hooks/modules/context/anchor_tracker.py +317 -0
package/dist/gaia-ops/hooks/modules/context/compact_context_builder.py +218 -0
package/dist/gaia-ops/hooks/modules/context/context_freshness.py +145 -0
package/dist/gaia-ops/hooks/modules/context/context_injector.py +558 -0
package/dist/gaia-ops/hooks/modules/context/context_writer.py +530 -0
package/dist/gaia-ops/hooks/modules/context/contracts_loader.py +161 -0
package/dist/gaia-ops/hooks/modules/core/__init__.py +40 -0
package/dist/gaia-ops/hooks/modules/core/hook_entry.py +78 -0
package/dist/gaia-ops/hooks/modules/core/paths.py +160 -0
package/dist/gaia-ops/hooks/modules/core/plugin_mode.py +149 -0
package/dist/gaia-ops/hooks/modules/core/plugin_setup.py +577 -0
package/dist/gaia-ops/hooks/modules/core/state.py +179 -0
package/dist/gaia-ops/hooks/modules/core/stdin.py +24 -0
package/dist/gaia-ops/hooks/modules/events/__init__.py +1 -0
package/dist/gaia-ops/hooks/modules/events/event_writer.py +210 -0
package/dist/gaia-ops/hooks/modules/memory/__init__.py +8 -0
package/dist/gaia-ops/hooks/modules/memory/episode_writer.py +216 -0
package/dist/gaia-ops/hooks/modules/orchestrator/__init__.py +1 -0
package/dist/gaia-ops/hooks/modules/orchestrator/delegate_mode.py +122 -0
package/dist/gaia-ops/hooks/modules/scanning/__init__.py +8 -0
package/dist/gaia-ops/hooks/modules/scanning/scan_trigger.py +84 -0
package/dist/gaia-ops/hooks/modules/security/__init__.py +120 -0
package/dist/gaia-ops/hooks/modules/security/approval_cleanup.py +87 -0
package/dist/gaia-ops/hooks/modules/security/approval_constants.py +23 -0
package/dist/gaia-ops/hooks/modules/security/approval_grants.py +1638 -0
package/dist/gaia-ops/hooks/modules/security/approval_messages.py +71 -0
package/dist/gaia-ops/hooks/modules/security/approval_scopes.py +222 -0
package/dist/gaia-ops/hooks/modules/security/blocked_commands.py +595 -0
package/dist/gaia-ops/hooks/modules/security/blocked_message_formatter.py +87 -0
package/dist/gaia-ops/hooks/modules/security/command_semantics.py +181 -0
package/dist/gaia-ops/hooks/modules/security/composition_rules.py +547 -0
package/dist/gaia-ops/hooks/modules/security/flag_classifiers.py +873 -0
package/dist/gaia-ops/hooks/modules/security/gitops_validator.py +179 -0
package/dist/gaia-ops/hooks/modules/security/mutative_verbs.py +1131 -0
package/dist/gaia-ops/hooks/modules/security/network_hosts.py +481 -0
package/dist/gaia-ops/hooks/modules/security/prompt_validator.py +40 -0
package/dist/gaia-ops/hooks/modules/security/shell_unwrapper.py +165 -0
package/dist/gaia-ops/hooks/modules/security/tiers.py +196 -0
package/dist/gaia-ops/hooks/modules/session/__init__.py +10 -0
package/dist/gaia-ops/hooks/modules/session/pending_scanner.py +174 -0
package/dist/gaia-ops/hooks/modules/session/session_context_writer.py +100 -0
package/dist/gaia-ops/hooks/modules/session/session_event_injector.py +160 -0
package/dist/gaia-ops/hooks/modules/session/session_manager.py +31 -0
package/dist/gaia-ops/hooks/modules/session/session_registry.py +333 -0
package/dist/gaia-ops/hooks/modules/tools/__init__.py +29 -0
package/dist/gaia-ops/hooks/modules/tools/bash_validator.py +1008 -0
package/dist/gaia-ops/hooks/modules/tools/cloud_pipe_validator.py +231 -0
package/dist/gaia-ops/hooks/modules/tools/hook_response.py +55 -0
package/dist/gaia-ops/hooks/modules/tools/shell_parser.py +227 -0
package/dist/gaia-ops/hooks/modules/tools/stage_decomposer.py +315 -0
package/dist/gaia-ops/hooks/modules/tools/task_validator.py +294 -0
package/dist/gaia-ops/hooks/modules/validation/__init__.py +23 -0
package/dist/gaia-ops/hooks/modules/validation/commit_validator.py +380 -0
package/dist/gaia-ops/hooks/post_compact.py +43 -0
package/dist/gaia-ops/hooks/post_tool_use.py +54 -0
package/dist/gaia-ops/hooks/pre_compact.py +60 -0
package/dist/gaia-ops/hooks/pre_tool_use.py +413 -0
package/dist/gaia-ops/hooks/session_end_hook.py +77 -0
package/dist/gaia-ops/hooks/session_start.py +81 -0
package/dist/gaia-ops/hooks/stop_hook.py +70 -0
package/dist/gaia-ops/hooks/subagent_start.py +71 -0
package/dist/gaia-ops/hooks/subagent_stop.py +295 -0
package/dist/gaia-ops/hooks/task_completed.py +70 -0
package/dist/gaia-ops/hooks/user_prompt_submit.py +246 -0
package/dist/gaia-ops/settings.json +72 -0
package/dist/gaia-ops/skills/README.md +158 -0
package/dist/gaia-ops/skills/agent-creation/SKILL.md +87 -0
package/dist/gaia-ops/skills/agent-creation/examples.md +170 -0
package/dist/gaia-ops/skills/agent-creation/reference.md +191 -0
package/dist/gaia-ops/skills/agent-protocol/SKILL.md +93 -0
package/dist/gaia-ops/skills/agent-protocol/examples.md +223 -0
package/dist/gaia-ops/skills/agent-response/SKILL.md +69 -0
package/dist/gaia-ops/skills/agentic-loop/SKILL.md +80 -0
package/dist/gaia-ops/skills/agentic-loop/reference.md +378 -0
package/dist/gaia-ops/skills/blog-writing/SKILL.md +98 -0
package/dist/gaia-ops/skills/blog-writing/reference.md +130 -0
package/dist/gaia-ops/skills/brief-spec/SKILL.md +185 -0
package/dist/gaia-ops/skills/command-execution/SKILL.md +64 -0
package/dist/gaia-ops/skills/command-execution/reference.md +83 -0
package/dist/gaia-ops/skills/context-updater/SKILL.md +87 -0
package/dist/gaia-ops/skills/context-updater/examples.md +71 -0
package/dist/gaia-ops/skills/developer-patterns/SKILL.md +50 -0
package/dist/gaia-ops/skills/developer-patterns/reference.md +112 -0
package/dist/gaia-ops/skills/execution/SKILL.md +99 -0
package/dist/gaia-ops/skills/fast-queries/SKILL.md +43 -0
package/dist/gaia-ops/skills/gaia-compact/SKILL.md +74 -0
package/dist/gaia-ops/skills/gaia-patterns/SKILL.md +108 -0
package/dist/gaia-ops/skills/gaia-patterns/reference.md +395 -0
package/dist/gaia-ops/skills/gaia-planner/SKILL.md +37 -0
package/dist/gaia-ops/skills/gaia-planner/reference.md +107 -0
package/dist/gaia-ops/skills/gaia-release/SKILL.md +85 -0
package/dist/gaia-ops/skills/gaia-release/reference.md +92 -0
package/dist/gaia-ops/skills/gaia-self-check/SKILL.md +114 -0
package/dist/gaia-ops/skills/gaia-self-check/reference.md +453 -0
package/dist/gaia-ops/skills/gaia-verify/SKILL.md +77 -0
package/dist/gaia-ops/skills/gaia-verify/reference.md +80 -0
package/dist/gaia-ops/skills/git-conventions/SKILL.md +47 -0
package/dist/gaia-ops/skills/gitops-patterns/SKILL.md +60 -0
package/dist/gaia-ops/skills/gitops-patterns/reference.md +183 -0
package/dist/gaia-ops/skills/gmail-policy/SKILL.md +200 -0
package/dist/gaia-ops/skills/gmail-policy/reference.md +150 -0
package/dist/gaia-ops/skills/gmail-triage/SKILL.md +100 -0
package/dist/gaia-ops/skills/gws-setup/SKILL.md +99 -0
package/dist/gaia-ops/skills/gws-setup/reference.md +73 -0
package/dist/gaia-ops/skills/investigation/SKILL.md +100 -0
package/dist/gaia-ops/skills/memory-curation/SKILL.md +83 -0
package/dist/gaia-ops/skills/memory-search/SKILL.md +88 -0
package/dist/gaia-ops/skills/orchestrator-approval/SKILL.md +160 -0
package/dist/gaia-ops/skills/orchestrator-approval/reference.md +174 -0
package/dist/gaia-ops/skills/pending-approvals/SKILL.md +72 -0
package/dist/gaia-ops/skills/pending-approvals/reference.md +214 -0
package/dist/gaia-ops/skills/readme-writing/SKILL.md +71 -0
package/dist/gaia-ops/skills/readme-writing/reference.md +188 -0
package/dist/gaia-ops/skills/reference.md +135 -0
package/dist/gaia-ops/skills/request-approval/SKILL.md +140 -0
package/dist/gaia-ops/skills/request-approval/examples.md +140 -0
package/dist/gaia-ops/skills/request-approval/reference.md +57 -0
package/dist/gaia-ops/skills/schedule-task/SKILL.md +64 -0
package/dist/gaia-ops/skills/schedule-task/reference.md +233 -0
package/dist/gaia-ops/skills/security-tiers/SKILL.md +141 -0
package/dist/gaia-ops/skills/security-tiers/destructive-commands-reference.md +623 -0
package/dist/gaia-ops/skills/security-tiers/reference.md +39 -0
package/dist/gaia-ops/skills/session-reflection/SKILL.md +69 -0
package/dist/gaia-ops/skills/skill-creation/SKILL.md +92 -0
package/dist/gaia-ops/skills/skill-creation/reference.md +29 -0
package/dist/gaia-ops/skills/terraform-patterns/SKILL.md +89 -0
package/dist/gaia-ops/skills/terraform-patterns/reference.md +93 -0
package/dist/gaia-ops/tools/__init__.py +9 -0
package/dist/gaia-ops/tools/agentic-loop/decide-status.py +210 -0
package/dist/gaia-ops/tools/agentic-loop/parse-metric.py +106 -0
package/dist/gaia-ops/tools/agentic-loop/record-iteration.py +221 -0
package/dist/gaia-ops/tools/context/README.md +132 -0
package/dist/gaia-ops/tools/context/__init__.py +42 -0
package/dist/gaia-ops/tools/context/_paths.py +20 -0
package/dist/gaia-ops/tools/context/context_provider.py +721 -0
package/dist/gaia-ops/tools/context/context_section_reader.py +342 -0
package/dist/gaia-ops/tools/context/deep_merge.py +159 -0
package/dist/gaia-ops/tools/context/pending_updates.py +760 -0
package/dist/gaia-ops/tools/context/surface_router.py +278 -0
package/dist/gaia-ops/tools/fast-queries/README.md +65 -0
package/dist/gaia-ops/tools/fast-queries/__init__.py +30 -0
package/dist/gaia-ops/tools/fast-queries/appservices/quicktriage_devops_developer.sh +75 -0
package/dist/gaia-ops/tools/fast-queries/cloud/aws/quicktriage_aws_troubleshooter.sh +32 -0
package/dist/gaia-ops/tools/fast-queries/cloud/gcp/quicktriage_gcp_troubleshooter.sh +88 -0
package/dist/gaia-ops/tools/fast-queries/gitops/quicktriage_gitops_operator.sh +48 -0
package/dist/gaia-ops/tools/fast-queries/run_triage.sh +59 -0
package/dist/gaia-ops/tools/fast-queries/terraform/quicktriage_terraform_architect.sh +80 -0
package/dist/gaia-ops/tools/gaia_simulator/__init__.py +33 -0
package/dist/gaia-ops/tools/gaia_simulator/cli.py +354 -0
package/dist/gaia-ops/tools/gaia_simulator/extractor.py +457 -0
package/dist/gaia-ops/tools/gaia_simulator/reporter.py +258 -0
package/dist/gaia-ops/tools/gaia_simulator/routing_simulator.py +334 -0
package/dist/gaia-ops/tools/gaia_simulator/runner.py +539 -0
package/dist/gaia-ops/tools/gaia_simulator/skills_mapper.py +264 -0
package/dist/gaia-ops/tools/memory/README.md +0 -0
package/dist/gaia-ops/tools/memory/__init__.py +20 -0
package/dist/gaia-ops/tools/memory/backfill_fts5.py +107 -0
package/dist/gaia-ops/tools/memory/conflict_detector.py +295 -0
package/dist/gaia-ops/tools/memory/episodic.py +1210 -0
package/dist/gaia-ops/tools/memory/git_invalidator.py +262 -0
package/dist/gaia-ops/tools/memory/paths.py +102 -0
package/dist/gaia-ops/tools/memory/scoring.py +193 -0
package/dist/gaia-ops/tools/memory/search_store.py +375 -0
package/dist/gaia-ops/tools/persist_transcript_analysis.py +85 -0
package/dist/gaia-ops/tools/review/__init__.py +1 -0
package/dist/gaia-ops/tools/review/review_engine.py +157 -0
package/dist/gaia-ops/tools/scan/__init__.py +35 -0
package/dist/gaia-ops/tools/scan/config.py +247 -0
package/dist/gaia-ops/tools/scan/merge.py +212 -0
package/dist/gaia-ops/tools/scan/orchestrator.py +549 -0
package/dist/gaia-ops/tools/scan/registry.py +127 -0
package/dist/gaia-ops/tools/scan/scanners/__init__.py +18 -0
package/dist/gaia-ops/tools/scan/scanners/base.py +137 -0
package/dist/gaia-ops/tools/scan/scanners/environment.py +349 -0
package/dist/gaia-ops/tools/scan/scanners/git.py +570 -0
package/dist/gaia-ops/tools/scan/scanners/infrastructure.py +875 -0
package/dist/gaia-ops/tools/scan/scanners/orchestration.py +600 -0
package/dist/gaia-ops/tools/scan/scanners/stack.py +1085 -0
package/dist/gaia-ops/tools/scan/scanners/tools.py +260 -0
package/dist/gaia-ops/tools/scan/setup.py +686 -0
package/dist/gaia-ops/tools/scan/tests/__init__.py +1 -0
package/dist/gaia-ops/tools/scan/tests/conftest.py +796 -0
package/dist/gaia-ops/tools/scan/tests/test_environment.py +323 -0
package/dist/gaia-ops/tools/scan/tests/test_git.py +419 -0
package/dist/gaia-ops/tools/scan/tests/test_infrastructure.py +382 -0
package/dist/gaia-ops/tools/scan/tests/test_integration.py +920 -0
package/dist/gaia-ops/tools/scan/tests/test_merge.py +269 -0
package/dist/gaia-ops/tools/scan/tests/test_orchestration.py +304 -0
package/dist/gaia-ops/tools/scan/tests/test_stack.py +604 -0
package/dist/gaia-ops/tools/scan/tests/test_tools.py +349 -0
package/dist/gaia-ops/tools/scan/ui.py +624 -0
package/dist/gaia-ops/tools/scan/verify.py +270 -0
package/dist/gaia-ops/tools/scan/walk.py +118 -0
package/dist/gaia-ops/tools/scan/workspace.py +85 -0
package/dist/gaia-ops/tools/validation/README.md +244 -0
package/dist/gaia-ops/tools/validation/__init__.py +17 -0
package/dist/gaia-ops/tools/validation/approval_gate.py +321 -0
package/dist/gaia-ops/tools/validation/validate_skills.py +189 -0
package/dist/gaia-security/.claude-plugin/plugin.json +24 -0
package/dist/gaia-security/README.md +90 -0
package/dist/gaia-security/config/universal-rules.json +102 -0
package/dist/gaia-security/hooks/adapters/__init__.py +52 -0
package/dist/gaia-security/hooks/adapters/base.py +219 -0
package/dist/gaia-security/hooks/adapters/channel.py +17 -0
package/dist/gaia-security/hooks/adapters/claude_code.py +1890 -0
package/dist/gaia-security/hooks/adapters/types.py +194 -0
package/dist/gaia-security/hooks/adapters/utils.py +25 -0
package/dist/gaia-security/hooks/hooks.json +113 -0
package/dist/gaia-security/hooks/modules/__init__.py +15 -0
package/dist/gaia-security/hooks/modules/agents/__init__.py +29 -0
package/dist/gaia-security/hooks/modules/agents/contract_validator.py +647 -0
package/dist/gaia-security/hooks/modules/agents/response_contract.py +496 -0
package/dist/gaia-security/hooks/modules/agents/skill_injection_verifier.py +120 -0
package/dist/gaia-security/hooks/modules/agents/state_tracker.py +267 -0
package/dist/gaia-security/hooks/modules/agents/task_info_builder.py +74 -0
package/dist/gaia-security/hooks/modules/agents/transcript_analyzer.py +458 -0
package/dist/gaia-security/hooks/modules/agents/transcript_reader.py +152 -0
package/dist/gaia-security/hooks/modules/audit/__init__.py +28 -0
package/dist/gaia-security/hooks/modules/audit/event_detector.py +168 -0
package/dist/gaia-security/hooks/modules/audit/logger.py +131 -0
package/dist/gaia-security/hooks/modules/audit/metrics.py +134 -0
package/dist/gaia-security/hooks/modules/audit/workflow_auditor.py +611 -0
package/dist/gaia-security/hooks/modules/audit/workflow_recorder.py +296 -0
package/dist/gaia-security/hooks/modules/context/__init__.py +11 -0
package/dist/gaia-security/hooks/modules/context/agentic_loop_detector.py +165 -0
package/dist/gaia-security/hooks/modules/context/anchor_tracker.py +317 -0
package/dist/gaia-security/hooks/modules/context/compact_context_builder.py +218 -0
package/dist/gaia-security/hooks/modules/context/context_freshness.py +145 -0
package/dist/gaia-security/hooks/modules/context/context_injector.py +558 -0
package/dist/gaia-security/hooks/modules/context/context_writer.py +530 -0
package/dist/gaia-security/hooks/modules/context/contracts_loader.py +161 -0
package/dist/gaia-security/hooks/modules/core/__init__.py +40 -0
package/dist/gaia-security/hooks/modules/core/hook_entry.py +78 -0
package/dist/gaia-security/hooks/modules/core/paths.py +160 -0
package/dist/gaia-security/hooks/modules/core/plugin_mode.py +149 -0
package/dist/gaia-security/hooks/modules/core/plugin_setup.py +577 -0
package/dist/gaia-security/hooks/modules/core/state.py +179 -0
package/dist/gaia-security/hooks/modules/core/stdin.py +24 -0
package/dist/gaia-security/hooks/modules/events/__init__.py +1 -0
package/dist/gaia-security/hooks/modules/events/event_writer.py +210 -0
package/dist/gaia-security/hooks/modules/memory/__init__.py +8 -0
package/dist/gaia-security/hooks/modules/memory/episode_writer.py +216 -0
package/dist/gaia-security/hooks/modules/orchestrator/__init__.py +1 -0
package/dist/gaia-security/hooks/modules/orchestrator/delegate_mode.py +122 -0
package/dist/gaia-security/hooks/modules/scanning/__init__.py +8 -0
package/dist/gaia-security/hooks/modules/scanning/scan_trigger.py +84 -0
package/dist/gaia-security/hooks/modules/security/__init__.py +120 -0
package/dist/gaia-security/hooks/modules/security/approval_cleanup.py +87 -0
package/dist/gaia-security/hooks/modules/security/approval_constants.py +23 -0
package/dist/gaia-security/hooks/modules/security/approval_grants.py +1638 -0
package/dist/gaia-security/hooks/modules/security/approval_messages.py +71 -0
package/dist/gaia-security/hooks/modules/security/approval_scopes.py +222 -0
package/dist/gaia-security/hooks/modules/security/blocked_commands.py +595 -0
package/dist/gaia-security/hooks/modules/security/blocked_message_formatter.py +87 -0
package/dist/gaia-security/hooks/modules/security/command_semantics.py +181 -0
package/dist/gaia-security/hooks/modules/security/composition_rules.py +547 -0
package/dist/gaia-security/hooks/modules/security/flag_classifiers.py +873 -0
package/dist/gaia-security/hooks/modules/security/gitops_validator.py +179 -0
package/dist/gaia-security/hooks/modules/security/mutative_verbs.py +1131 -0
package/dist/gaia-security/hooks/modules/security/network_hosts.py +481 -0
package/dist/gaia-security/hooks/modules/security/prompt_validator.py +40 -0
package/dist/gaia-security/hooks/modules/security/shell_unwrapper.py +165 -0
package/dist/gaia-security/hooks/modules/security/tiers.py +196 -0
package/dist/gaia-security/hooks/modules/session/__init__.py +10 -0
package/dist/gaia-security/hooks/modules/session/pending_scanner.py +174 -0
package/dist/gaia-security/hooks/modules/session/session_context_writer.py +100 -0
package/dist/gaia-security/hooks/modules/session/session_event_injector.py +160 -0
package/dist/gaia-security/hooks/modules/session/session_manager.py +31 -0
package/dist/gaia-security/hooks/modules/session/session_registry.py +333 -0
package/dist/gaia-security/hooks/modules/tools/__init__.py +29 -0
package/dist/gaia-security/hooks/modules/tools/bash_validator.py +1008 -0
package/dist/gaia-security/hooks/modules/tools/cloud_pipe_validator.py +231 -0
package/dist/gaia-security/hooks/modules/tools/hook_response.py +55 -0
package/dist/gaia-security/hooks/modules/tools/shell_parser.py +227 -0
package/dist/gaia-security/hooks/modules/tools/stage_decomposer.py +315 -0
package/dist/gaia-security/hooks/modules/tools/task_validator.py +294 -0
package/dist/gaia-security/hooks/modules/validation/__init__.py +23 -0
package/dist/gaia-security/hooks/modules/validation/commit_validator.py +380 -0
package/dist/gaia-security/hooks/post_tool_use.py +54 -0
package/dist/gaia-security/hooks/pre_tool_use.py +413 -0
package/dist/gaia-security/hooks/session_end_hook.py +77 -0
package/dist/gaia-security/hooks/session_start.py +81 -0
package/dist/gaia-security/hooks/stop_hook.py +70 -0
package/dist/gaia-security/hooks/user_prompt_submit.py +246 -0
package/dist/gaia-security/settings.json +58 -0
package/git-hooks/commit-msg +41 -0
package/hooks/README.md +100 -0
package/hooks/adapters/__init__.py +52 -0
package/hooks/adapters/base.py +219 -0
package/hooks/adapters/channel.py +17 -0
package/hooks/adapters/claude_code.py +1890 -0
package/hooks/adapters/types.py +194 -0
package/hooks/adapters/utils.py +25 -0
package/hooks/elicitation_result.py +179 -0
package/hooks/hooks.json +84 -0
package/hooks/modules/README.md +189 -0
package/hooks/modules/__init__.py +15 -0
package/hooks/modules/agents/__init__.py +29 -0
package/hooks/modules/agents/contract_validator.py +647 -0
package/hooks/modules/agents/response_contract.py +496 -0
package/hooks/modules/agents/skill_injection_verifier.py +120 -0
package/hooks/modules/agents/state_tracker.py +267 -0
package/hooks/modules/agents/task_info_builder.py +74 -0
package/hooks/modules/agents/transcript_analyzer.py +458 -0
package/hooks/modules/agents/transcript_reader.py +152 -0
package/hooks/modules/audit/__init__.py +28 -0
package/hooks/modules/audit/event_detector.py +168 -0
package/hooks/modules/audit/logger.py +131 -0
package/hooks/modules/audit/metrics.py +134 -0
package/hooks/modules/audit/workflow_auditor.py +611 -0
package/hooks/modules/audit/workflow_recorder.py +296 -0
package/hooks/modules/context/__init__.py +11 -0
package/hooks/modules/context/agentic_loop_detector.py +165 -0
package/hooks/modules/context/anchor_tracker.py +317 -0
package/hooks/modules/context/compact_context_builder.py +218 -0
package/hooks/modules/context/context_freshness.py +145 -0
package/hooks/modules/context/context_injector.py +558 -0
package/hooks/modules/context/context_writer.py +530 -0
package/hooks/modules/context/contracts_loader.py +161 -0
package/hooks/modules/core/__init__.py +40 -0
package/hooks/modules/core/hook_entry.py +78 -0
package/hooks/modules/core/paths.py +160 -0
package/hooks/modules/core/plugin_mode.py +149 -0
package/hooks/modules/core/plugin_setup.py +577 -0
package/hooks/modules/core/state.py +179 -0
package/hooks/modules/core/stdin.py +24 -0
package/hooks/modules/events/__init__.py +1 -0
package/hooks/modules/events/event_writer.py +210 -0
package/hooks/modules/evidence/__init__.py +34 -0
package/hooks/modules/evidence/assertions.py +137 -0
package/hooks/modules/evidence/index_writer.py +57 -0
package/hooks/modules/evidence/loader.py +126 -0
package/hooks/modules/evidence/runner.py +241 -0
package/hooks/modules/memory/__init__.py +8 -0
package/hooks/modules/memory/episode_writer.py +216 -0
package/hooks/modules/orchestrator/__init__.py +1 -0
package/hooks/modules/orchestrator/delegate_mode.py +122 -0
package/hooks/modules/scanning/__init__.py +8 -0
package/hooks/modules/scanning/scan_trigger.py +84 -0
package/hooks/modules/security/__init__.py +120 -0
package/hooks/modules/security/approval_cleanup.py +87 -0
package/hooks/modules/security/approval_constants.py +23 -0
package/hooks/modules/security/approval_grants.py +1638 -0
package/hooks/modules/security/approval_messages.py +71 -0
package/hooks/modules/security/approval_scopes.py +222 -0
package/hooks/modules/security/blocked_commands.py +595 -0
package/hooks/modules/security/blocked_message_formatter.py +87 -0
package/hooks/modules/security/command_semantics.py +181 -0
package/hooks/modules/security/composition_rules.py +547 -0
package/hooks/modules/security/flag_classifiers.py +873 -0
package/hooks/modules/security/gitops_validator.py +179 -0
package/hooks/modules/security/mutative_verbs.py +1131 -0
package/hooks/modules/security/network_hosts.py +481 -0
package/hooks/modules/security/prompt_validator.py +40 -0
package/hooks/modules/security/shell_unwrapper.py +165 -0
package/hooks/modules/security/tiers.py +196 -0
package/hooks/modules/session/__init__.py +10 -0
package/hooks/modules/session/pending_scanner.py +174 -0
package/hooks/modules/session/session_context_writer.py +100 -0
package/hooks/modules/session/session_event_injector.py +160 -0
package/hooks/modules/session/session_manager.py +31 -0
package/hooks/modules/session/session_registry.py +333 -0
package/hooks/modules/tools/__init__.py +29 -0
package/hooks/modules/tools/bash_validator.py +1008 -0
package/hooks/modules/tools/cloud_pipe_validator.py +231 -0
package/hooks/modules/tools/hook_response.py +55 -0
package/hooks/modules/tools/shell_parser.py +227 -0
package/hooks/modules/tools/stage_decomposer.py +315 -0
package/hooks/modules/tools/task_validator.py +294 -0
package/hooks/modules/validation/__init__.py +23 -0
package/hooks/modules/validation/commit_validator.py +380 -0
package/hooks/post_compact.py +43 -0
package/hooks/post_tool_use.py +54 -0
package/hooks/pre_compact.py +60 -0
package/hooks/pre_tool_use.py +413 -0
package/hooks/session_end_hook.py +77 -0
package/hooks/session_start.py +81 -0
package/hooks/stop_hook.py +70 -0
package/hooks/subagent_start.py +71 -0
package/hooks/subagent_stop.py +295 -0
package/hooks/task_completed.py +70 -0
package/hooks/user_prompt_submit.py +246 -0
package/index.js +83 -0
package/package.json +103 -0
package/pyproject.toml +32 -0
package/skills/README.md +158 -0
package/skills/agent-creation/SKILL.md +87 -0
package/skills/agent-creation/examples.md +170 -0
package/skills/agent-creation/reference.md +191 -0
package/skills/agent-protocol/SKILL.md +93 -0
package/skills/agent-protocol/examples.md +223 -0
package/skills/agent-response/SKILL.md +69 -0
package/skills/agentic-loop/SKILL.md +80 -0
package/skills/agentic-loop/reference.md +378 -0
package/skills/blog-writing/SKILL.md +98 -0
package/skills/blog-writing/reference.md +130 -0
package/skills/brief-spec/SKILL.md +185 -0
package/skills/command-execution/SKILL.md +64 -0
package/skills/command-execution/reference.md +83 -0
package/skills/context-updater/SKILL.md +87 -0
package/skills/context-updater/examples.md +71 -0
package/skills/developer-patterns/SKILL.md +50 -0
package/skills/developer-patterns/reference.md +112 -0
package/skills/execution/SKILL.md +99 -0
package/skills/fast-queries/SKILL.md +43 -0
package/skills/gaia-compact/SKILL.md +74 -0
package/skills/gaia-patterns/SKILL.md +108 -0
package/skills/gaia-patterns/reference.md +395 -0
package/skills/gaia-planner/SKILL.md +37 -0
package/skills/gaia-planner/reference.md +107 -0
package/skills/gaia-release/SKILL.md +85 -0
package/skills/gaia-release/reference.md +92 -0
package/skills/gaia-self-check/SKILL.md +114 -0
package/skills/gaia-self-check/reference.md +453 -0
package/skills/gaia-verify/SKILL.md +77 -0
package/skills/gaia-verify/reference.md +80 -0
package/skills/git-conventions/SKILL.md +47 -0
package/skills/gitops-patterns/SKILL.md +60 -0
package/skills/gitops-patterns/reference.md +183 -0
package/skills/gmail-policy/SKILL.md +200 -0
package/skills/gmail-policy/reference.md +150 -0
package/skills/gmail-triage/SKILL.md +100 -0
package/skills/gws-setup/SKILL.md +99 -0
package/skills/gws-setup/reference.md +73 -0
package/skills/investigation/SKILL.md +100 -0
package/skills/memory-curation/SKILL.md +83 -0
package/skills/memory-search/SKILL.md +88 -0
package/skills/orchestrator-approval/SKILL.md +160 -0
package/skills/orchestrator-approval/reference.md +174 -0
package/skills/pending-approvals/SKILL.md +72 -0
package/skills/pending-approvals/reference.md +214 -0
package/skills/readme-writing/SKILL.md +71 -0
package/skills/readme-writing/reference.md +188 -0
package/skills/reference.md +135 -0
package/skills/request-approval/SKILL.md +140 -0
package/skills/request-approval/examples.md +140 -0
package/skills/request-approval/reference.md +57 -0
package/skills/schedule-task/SKILL.md +64 -0
package/skills/schedule-task/reference.md +233 -0
package/skills/security-tiers/SKILL.md +141 -0
package/skills/security-tiers/destructive-commands-reference.md +623 -0
package/skills/security-tiers/reference.md +39 -0
package/skills/session-reflection/SKILL.md +69 -0
package/skills/skill-creation/SKILL.md +92 -0
package/skills/skill-creation/reference.md +29 -0
package/skills/terraform-patterns/SKILL.md +89 -0
package/skills/terraform-patterns/reference.md +93 -0
package/templates/README.md +69 -0
package/templates/managed-settings.template.json +43 -0
package/tools/__init__.py +9 -0
package/tools/agentic-loop/decide-status.py +210 -0
package/tools/agentic-loop/parse-metric.py +106 -0
package/tools/agentic-loop/record-iteration.py +221 -0
package/tools/context/README.md +132 -0
package/tools/context/__init__.py +42 -0
package/tools/context/_paths.py +20 -0
package/tools/context/context_provider.py +721 -0
package/tools/context/context_section_reader.py +342 -0
package/tools/context/deep_merge.py +159 -0
package/tools/context/pending_updates.py +760 -0
package/tools/context/surface_router.py +278 -0
package/tools/fast-queries/README.md +65 -0
package/tools/fast-queries/__init__.py +30 -0
package/tools/fast-queries/appservices/quicktriage_devops_developer.sh +75 -0
package/tools/fast-queries/cloud/aws/quicktriage_aws_troubleshooter.sh +32 -0
package/tools/fast-queries/cloud/gcp/quicktriage_gcp_troubleshooter.sh +88 -0
package/tools/fast-queries/gitops/quicktriage_gitops_operator.sh +48 -0
package/tools/fast-queries/run_triage.sh +59 -0
package/tools/fast-queries/terraform/quicktriage_terraform_architect.sh +80 -0
package/tools/gaia_simulator/__init__.py +33 -0
package/tools/gaia_simulator/cli.py +354 -0
package/tools/gaia_simulator/extractor.py +457 -0
package/tools/gaia_simulator/reporter.py +258 -0
package/tools/gaia_simulator/routing_simulator.py +334 -0
package/tools/gaia_simulator/runner.py +539 -0
package/tools/gaia_simulator/skills_mapper.py +264 -0
package/tools/memory/README.md +0 -0
package/tools/memory/__init__.py +20 -0
package/tools/memory/backfill_fts5.py +107 -0
package/tools/memory/conflict_detector.py +295 -0
package/tools/memory/episodic.py +1210 -0
package/tools/memory/git_invalidator.py +262 -0
package/tools/memory/paths.py +102 -0
package/tools/memory/scoring.py +193 -0
package/tools/memory/search_store.py +375 -0
package/tools/persist_transcript_analysis.py +85 -0
package/tools/review/__init__.py +1 -0
package/tools/review/review_engine.py +157 -0
package/tools/scan/__init__.py +35 -0
package/tools/scan/config.py +247 -0
package/tools/scan/merge.py +212 -0
package/tools/scan/orchestrator.py +549 -0
package/tools/scan/registry.py +127 -0
package/tools/scan/scanners/__init__.py +18 -0
package/tools/scan/scanners/base.py +137 -0
package/tools/scan/scanners/environment.py +349 -0
package/tools/scan/scanners/git.py +570 -0
package/tools/scan/scanners/infrastructure.py +875 -0
package/tools/scan/scanners/orchestration.py +600 -0
package/tools/scan/scanners/stack.py +1085 -0
package/tools/scan/scanners/tools.py +260 -0
package/tools/scan/setup.py +686 -0
package/tools/scan/tests/__init__.py +1 -0
package/tools/scan/tests/conftest.py +796 -0
package/tools/scan/tests/test_environment.py +323 -0
package/tools/scan/tests/test_git.py +419 -0
package/tools/scan/tests/test_infrastructure.py +382 -0
package/tools/scan/tests/test_integration.py +920 -0
package/tools/scan/tests/test_merge.py +269 -0
package/tools/scan/tests/test_orchestration.py +304 -0
package/tools/scan/tests/test_stack.py +604 -0
package/tools/scan/tests/test_tools.py +349 -0
package/tools/scan/ui.py +624 -0
package/tools/scan/verify.py +270 -0
package/tools/scan/walk.py +118 -0
package/tools/scan/workspace.py +85 -0
package/tools/validation/README.md +244 -0
package/tools/validation/__init__.py +17 -0
package/tools/validation/approval_gate.py +321 -0
package/tools/validation/validate_skills.py +189 -0

package/dist/gaia-ops/hooks/modules/core/plugin_setup.py ADDED Viewed

@@ -0,0 +1,577 @@
+"""First-time plugin setup for SessionStart hook.
+Detects first run via marker file in CLAUDE_PLUGIN_DATA.
+On first run, merges gaia permissions into .claude/settings.local.json.
+"""
+from __future__ import annotations
+import json
+import logging
+from datetime import datetime
+from pathlib import Path
+from .paths import get_plugin_data_dir
+from .plugin_mode import get_plugin_mode
+logger = logging.getLogger(__name__)
+MARKER_FILE = ".plugin-initialized"
+# ---------------------------------------------------------------------------
+# Deny list — shared across all modes.  Aligned with blocked_commands.py
+# (hook-level enforcement) for dual-barrier security.  These rules are
+# merged into settings.local.json so Claude Code's native permission system
+# blocks the commands BEFORE they even reach the hook layer.
+# ---------------------------------------------------------------------------
+_DENY_RULES = [
+    # AWS — networking / data infrastructure (irreversible)
+    "Bash(aws ec2 delete-vpc:*)",
+    "Bash(aws ec2 delete-subnet:*)",
+    "Bash(aws ec2 delete-internet-gateway:*)",
+    "Bash(aws ec2 delete-route-table:*)",
+    "Bash(aws ec2 delete-route:*)",
+    "Bash(aws ec2 terminate-instances:*)",
+    "Bash(aws rds delete-db-instance:*)",
+    "Bash(aws rds delete-db-cluster:*)",
+    "Bash(aws dynamodb delete-table:*)",
+    "Bash(aws s3 rb:*)",
+    "Bash(aws s3api delete-bucket:*)",
+    "Bash(aws elasticache delete-cache-cluster:*)",
+    "Bash(aws elasticache delete-replication-group:*)",
+    "Bash(aws eks delete-cluster:*)",
+    # AWS — KMS / Organizations / Route53
+    "Bash(aws kms schedule-key-deletion:*)",
+    "Bash(aws organizations delete-organization:*)",
+    "Bash(aws route53 delete-hosted-zone:*)",
+    # AWS — IAM (mutative but denied at settings level too)
+    "Bash(aws iam delete-user:*)",
+    "Bash(aws iam delete-role:*)",
+    "Bash(aws iam delete-access-key:*)",
+    "Bash(aws iam delete-group:*)",
+    "Bash(aws iam delete-instance-profile:*)",
+    "Bash(aws iam delete-policy:*)",
+    "Bash(aws iam delete-role-policy:*)",
+    "Bash(aws iam delete-user-policy:*)",
+    "Bash(aws iam delete-group-policy:*)",
+    "Bash(aws iam detach-user-policy:*)",
+    "Bash(aws iam detach-role-policy:*)",
+    "Bash(aws iam detach-group-policy:*)",
+    "Bash(aws iam remove-user-from-group:*)",
+    # AWS — other destructive
+    "Bash(aws backup delete:*::*)",
+    "Bash(aws cloudformation delete-stack:*)",
+    "Bash(aws dynamodb delete-item:*)",
+    "Bash(aws ec2 delete-key-pair:*)",
+    "Bash(aws ec2 delete-snapshot:*)",
+    "Bash(aws ec2 delete-volume:*)",
+    "Bash(aws ec2 delete-security-group:*)",
+    "Bash(aws ec2 delete-network-interface:*)",
+    "Bash(aws lambda delete-function:*)",
+    "Bash(aws rds delete-db-cluster-parameter-group:*)",
+    "Bash(aws rds delete-db-parameter-group:*)",
+    "Bash(aws s3api delete-objects:*)",
+    "Bash(aws sns delete-topic:*)",
+    "Bash(aws sqs delete-queue:*)",
+    "Bash(aws eks delete-nodegroup:*)",
+    "Bash(aws eks delete-addon:*)",
+    # Azure — resource group / networking / data (irreversible)
+    "Bash(az group delete:*)",
+    "Bash(az network vnet delete:*)",
+    "Bash(az network vnet subnet delete:*)",
+    "Bash(az network nsg delete:*)",
+    "Bash(az network public-ip delete:*)",
+    "Bash(az network application-gateway delete:*)",
+    "Bash(az network lb delete:*)",
+    "Bash(az network dns zone delete:*)",
+    "Bash(az network private-dns zone delete:*)",
+    "Bash(az vm delete:*)",
+    "Bash(az vmss delete:*)",
+    "Bash(az disk delete:*)",
+    "Bash(az snapshot delete:*)",
+    "Bash(az image delete:*)",
+    # Azure — databases / storage
+    "Bash(az sql server delete:*)",
+    "Bash(az sql db delete:*)",
+    "Bash(az cosmosdb delete:*)",
+    "Bash(az redis delete:*)",
+    "Bash(az storage account delete:*)",
+    "Bash(az storage container delete:*)",
+    "Bash(az storage blob delete-batch:*)",
+    # Azure — AKS / container
+    "Bash(az aks delete:*)",
+    "Bash(az aks nodepool delete:*)",
+    "Bash(az acr delete:*)",
+    # Azure — IAM / key vault / functions
+    "Bash(az role assignment delete:*)",
+    "Bash(az role definition delete:*)",
+    "Bash(az ad app delete:*)",
+    "Bash(az ad sp delete:*)",
+    "Bash(az keyvault delete:*)",
+    "Bash(az keyvault key delete:*)",
+    "Bash(az keyvault secret delete:*)",
+    "Bash(az functionapp delete:*)",
+    "Bash(az webapp delete:*)",
+    # Azure — messaging / monitoring
+    "Bash(az servicebus namespace delete:*)",
+    "Bash(az servicebus queue delete:*)",
+    "Bash(az servicebus topic delete:*)",
+    "Bash(az eventhubs namespace delete:*)",
+    "Bash(az eventhubs eventhub delete:*)",
+    "Bash(az monitor action-group delete:*)",
+    # GCP — project / cluster / database (irreversible)
+    "Bash(gcloud projects delete:*)",
+    "Bash(gcloud container clusters delete:*)",
+    "Bash(gcloud container node-pools delete:*)",
+    "Bash(gcloud sql instances delete:*)",
+    "Bash(gcloud sql databases delete:*)",
+    "Bash(gcloud services disable:*)",
+    "Bash(gsutil rb:*)",
+    "Bash(gsutil rm -r:*)",
+    # GCP — compute / IAM / storage
+    "Bash(gcloud compute firewall-rules delete:*)",
+    "Bash(gcloud compute instances delete:*)",
+    "Bash(gcloud compute networks delete:*)",
+    "Bash(gcloud compute disks delete:*)",
+    "Bash(gcloud compute images delete:*)",
+    "Bash(gcloud compute snapshots delete:*)",
+    "Bash(gcloud iam roles delete:*)",
+    "Bash(gcloud storage rm:*)",
+    # Kubernetes — critical cluster operations
+    "Bash(kubectl delete namespace:*)",
+    "Bash(kubectl delete node:*)",
+    "Bash(kubectl delete cluster:*)",
+    "Bash(kubectl delete pv:*)",
+    "Bash(kubectl delete persistentvolume:*)",
+    "Bash(kubectl delete pvc:*)",
+    "Bash(kubectl delete persistentvolumeclaim:*)",
+    "Bash(kubectl delete crd:*)",
+    "Bash(kubectl delete customresourcedefinition:*)",
+    "Bash(kubectl delete mutatingwebhookconfiguration:*)",
+    "Bash(kubectl delete validatingwebhookconfiguration:*)",
+    "Bash(kubectl delete clusterrole:*)",
+    "Bash(kubectl delete clusterrolebinding:*)",
+    "Bash(kubectl drain:*)",
+    # Flux
+    "Bash(flux delete:*)",
+    # Git — force push (history rewrite)
+    "Bash(git push --force:*)",
+    "Bash(git push -f:*)",
+    "Bash(git push origin --force:*)",
+    "Bash(git push origin -f:*)",
+    # Disk / filesystem destruction
+    "Bash(dd:*)",
+    "Bash(fdisk:*)",
+    "Bash(mkfs:*)",
+    "Bash(mkfs.ext4:*)",
+    "Bash(mkfs.ext3:*)",
+    "Bash(mkfs.fat:*)",
+    "Bash(mkfs.ntfs:*)",
+    # -------------------------------------------------------------------
+    # Generic wildcard rules — catch ALL present and future services.
+    # These complement the granular rules above; if a new cloud service
+    # is added, these patterns block its delete operations automatically.
+    # -------------------------------------------------------------------
+    # AWS — any "delete-*" subcommand across all services
+    "Bash(aws * delete-*:*)",
+    "Bash(aws * terminate-*:*)",
+    # Azure — any "delete" subcommand across all services
+    "Bash(az * delete:*)",
+    # GCP — any "delete" subcommand across all services
+    "Bash(gcloud * delete:*)",
+    "Bash(gsutil rb:*)",
+    "Bash(gsutil rm:*)",
+    "Bash(gcloud storage rm:*)",
+    # Kubernetes — all delete and drain operations
+    "Bash(kubectl delete:*)",
+    "Bash(kubectl drain:*)",
+    # Terraform / Terragrunt — destroy
+    "Bash(terraform destroy:*)",
+    "Bash(terragrunt destroy:*)",
+    "Bash(terragrunt run-all destroy:*)",
+    # Helm — uninstall
+    "Bash(helm uninstall:*)",
+    "Bash(helm delete:*)",
+    # Flux — uninstall
+    "Bash(flux uninstall:*)",
+    # Docker — bulk prune
+    "Bash(docker system prune:*)",
+    "Bash(docker volume prune:*)",
+    # Git — destructive history operations
+    "Bash(git reset --hard:*)",
+    # Repo deletion
+    "Bash(gh repo delete:*)",
+    "Bash(glab project delete:*)",
+]
+# Base permissions for security-only mode
+SECURITY_PERMISSIONS = {
+    "permissions": {
+        "allow": [
+            "Bash(*)",
+            "Read",
+            "Glob",
+            "Grep",
+            "BashOutput",
+            "ExitPlanMode",
+            "KillShell",
+            "Skill",
+            "SlashCommand",
+            "TodoWrite",
+            "WebFetch",
+            "WebSearch",
+            "NotebookEdit",
+        ],
+        "deny": _DENY_RULES,
+        "ask": [],
+    }
+}
+# Extended permissions for ops mode (adds agent dispatch tools)
+OPS_PERMISSIONS = {
+    "permissions": {
+        "allow": [
+            "Bash(*)",
+            "Read",
+            "Glob",
+            "Grep",
+            "BashOutput",
+            "ExitPlanMode",
+            "KillShell",
+            "Skill",
+            "SlashCommand",
+            "Task",
+            "Agent",
+            "SendMessage",
+            "AskUserQuestion",
+            "TodoWrite",
+            "WebFetch",
+            "WebSearch",
+            "NotebookEdit",
+            "Edit",
+            "Write",
+        ],
+        "deny": _DENY_RULES,
+        "ask": [],
+    }
+}
+def is_first_run() -> bool:
+    """Check if this is the first time the plugin runs."""
+    marker = get_plugin_data_dir() / MARKER_FILE
+    return not marker.exists()
+def mark_initialized() -> None:
+    """Mark the plugin as initialized."""
+    marker = get_plugin_data_dir() / MARKER_FILE
+    marker.write_text(json.dumps({
+        "initialized_at": datetime.now().isoformat(),
+        "mode": get_plugin_mode(),
+    }))
+    logger.info("Plugin marked as initialized: %s", marker)
+def _tool_name(entry: str) -> str:
+    """Extract the base tool name from a permission entry.
+    Examples:
+        "Edit"          -> "Edit"
+        "Edit(/tmp/*)"  -> "Edit"
+        "Bash(*)"       -> "Bash"
+        "Bash(aws ec2 delete-vpc:*)" -> "Bash"
+    """
+    paren = entry.find("(")
+    return entry[:paren] if paren != -1 else entry
+def _authoritative_merge(current: set[str], ours: set[str]) -> list[str]:
+    """Merge permissions so Gaia's entries are authoritative.
+    For every base tool name that Gaia defines, ALL existing entries for
+    that tool are replaced with Gaia's current values.  User-added entries
+    for tool names Gaia does NOT manage are preserved.
+    This prevents stale scoped entries (e.g. ``Edit(/tmp/*)`` lingering
+    after Gaia changes to ``Edit``) while keeping user customizations
+    for tools outside Gaia's scope.
+    """
+    gaia_tool_names = {_tool_name(e) for e in ours}
+    # Keep only user entries whose tool name Gaia doesn't manage
+    user_entries = {e for e in current if _tool_name(e) not in gaia_tool_names}
+    return sorted(user_entries | ours)
+def setup_project_permissions() -> bool:
+    """Merge gaia permissions into .claude/settings.local.json.
+    Uses settings.local.json (highest project-level precedence) so that
+    /reload-plugins picks up changes mid-session without restart.
+    Preserves enabledPlugins and any existing user configuration.
+    Returns True if settings were modified (reload needed).
+    """
+    claude_dir = Path.cwd() / ".claude"
+    settings_path = claude_dir / "settings.local.json"
+    mode = get_plugin_mode()
+    our_perms = OPS_PERMISSIONS if mode == "ops" else SECURITY_PERMISSIONS
+    our_allow = set(our_perms["permissions"]["allow"])
+    our_deny = set(our_perms["permissions"].get("deny", []))
+    # Load existing settings.local.json (has enabledPlugins from install)
+    existing = {}
+    if settings_path.exists():
+        try:
+            existing = json.loads(settings_path.read_text())
+        except (json.JSONDecodeError, OSError):
+            pass
+    # Authoritative merge: Gaia's entries replace any existing entries for the
+    # same base tool name (removes stale scoped variants like Edit(/tmp/*) when
+    # Gaia now says Edit).  User entries for tools Gaia doesn't manage survive.
+    perms = existing.get("permissions", {})
+    current_allow = set(perms.get("allow", []))
+    current_deny = set(perms.get("deny", []))
+    merged_allow = _authoritative_merge(current_allow, our_allow)
+    merged_deny = _authoritative_merge(current_deny, our_deny)
+    if current_allow == set(merged_allow) and current_deny == set(merged_deny):
+        logger.info("Project permissions already include gaia rules, skipping")
+        return False
+    # Update only permissions, preserve everything else (enabledPlugins, etc.)
+    existing.setdefault("permissions", {})
+    existing["permissions"]["allow"] = merged_allow
+    existing["permissions"]["deny"] = merged_deny
+    existing["permissions"].setdefault("ask", [])
+    # Add env vars (smart merge: add if not present, don't overwrite)
+    env = existing.setdefault("env", {})
+    if "CLAUDE_CODE_EXPERIMENTAL_AGENT_TEAMS" not in env:
+        env["CLAUDE_CODE_EXPERIMENTAL_AGENT_TEAMS"] = "1"
+    claude_dir.mkdir(parents=True, exist_ok=True)
+    settings_path.write_text(json.dumps(existing, indent=2) + "\n")
+    logger.info("Merged gaia %s permissions and env into %s", mode, settings_path)
+    return True
+def ensure_plugin_registry() -> None:
+    """Create plugin-registry.json if missing.
+    Detection strategies (in order):
+    1. CLAUDE_PLUGIN_ROOT env var (plugin marketplace mode):
+       Path looks like .../cache/marketplace/gaia-ops/4.4.0-rc.2
+    2. NPM package detection: resolve package name and version from
+       node_modules path and package.json
+    """
+    import os
+    data_dir = get_plugin_data_dir()
+    registry_path = data_dir / "plugin-registry.json"
+    if registry_path.exists():
+        return
+    plugin_name = None
+    plugin_version = None
+    source = None
+    # Strategy 1: CLAUDE_PLUGIN_ROOT (plugin marketplace or --plugin-dir)
+    plugin_root = os.environ.get("CLAUDE_PLUGIN_ROOT", "")
+    if plugin_root:
+        root_path = Path(plugin_root)
+        # First, try to read .claude-plugin/plugin.json (most reliable)
+        plugin_json = root_path / ".claude-plugin" / "plugin.json"
+        if plugin_json.exists():
+            try:
+                pdata = json.loads(plugin_json.read_text())
+                plugin_name = pdata.get("name")
+                plugin_version = pdata.get("version")
+                source = "plugin-mode"
+            except (json.JSONDecodeError, OSError):
+                pass
+        # Fallback: parse path (marketplace layout: .../name/version)
+        if not plugin_name:
+            parts = root_path.parts
+            if len(parts) >= 2:
+                plugin_name = parts[-2]
+                plugin_version = parts[-1]
+                source = "plugin-mode"
+    # Strategy 2: NPM package detection
+    if not plugin_name:
+        npm_info = _detect_npm_package_info()
+        if npm_info:
+            plugin_name, plugin_version = npm_info
+            source = "npm-mode"
+    if not plugin_name:
+        return
+    registry = {
+        "installed": [{"name": plugin_name, "version": plugin_version or "unknown"}],
+        "source": source,
+    }
+    data_dir.mkdir(parents=True, exist_ok=True)
+    registry_path.write_text(json.dumps(registry, indent=2) + "\n")
+    logger.info("Created plugin-registry.json: %s@%s (source: %s)", plugin_name, plugin_version, source)
+def _detect_npm_package_info() -> tuple[str, str | None] | None:
+    """Detect plugin name and version from NPM package path.
+    When installed via npm, this module lives at:
+      .../node_modules/@jaguilar87/gaia/hooks/modules/core/plugin_setup.py
+    Returns (plugin_name, version) or None.
+    """
+    module_path = Path(__file__).resolve()
+    parts = module_path.parts
+    # Find node_modules in path and extract package name
+    pkg_name = None
+    pkg_root = None
+    for i, part in enumerate(parts):
+        if part == "node_modules" and i + 1 < len(parts):
+            next_part = parts[i + 1]
+            if next_part.startswith("@") and i + 2 < len(parts):
+                # Scoped package: @scope/name
+                pkg_name = parts[i + 2]
+                pkg_root = Path(*parts[:i + 3])
+            else:
+                pkg_name = next_part
+                pkg_root = Path(*parts[:i + 2])
+            break
+    if not pkg_name or pkg_name not in ("gaia-ops", "gaia-security"):
+        return None
+    # Try to read version from package.json
+    version = None
+    if pkg_root:
+        pkg_json = Path("/") / pkg_root / "package.json"
+        try:
+            if pkg_json.exists():
+                data = json.loads(pkg_json.read_text())
+                version = data.get("version")
+        except Exception:
+            pass
+    return (pkg_name, version)
+def setup_project_hooks() -> bool:
+    """Merge hooks from hooks.json into .claude/settings.local.json.
+    In npm mode, Claude Code reads hooks from settings files, not hooks.json.
+    This resolves hook script paths to absolute paths (via .claude/hooks symlink)
+    so hooks work regardless of CWD at execution time.
+    Returns True if settings were modified.
+    """
+    import re
+    claude_dir = Path.cwd() / ".claude"
+    settings_path = claude_dir / "settings.local.json"
+    # Find hooks.json — try package root (npm) or plugin root
+    hooks_json_path = None
+    # Strategy 1: relative to this module (npm layout)
+    module_dir = Path(__file__).resolve().parent.parent.parent
+    candidate = module_dir / "hooks.json"
+    if candidate.is_file():
+        hooks_json_path = candidate
+    else:
+        # Strategy 2: .claude/hooks/hooks.json (symlinked)
+        candidate2 = claude_dir / "hooks" / "hooks.json"
+        if candidate2.is_file():
+            hooks_json_path = candidate2
+    if not hooks_json_path:
+        logger.info("hooks.json not found, skipping hooks merge")
+        return False
+    try:
+        hooks_data = json.loads(hooks_json_path.read_text())
+    except (json.JSONDecodeError, OSError):
+        logger.warning("hooks.json is invalid, skipping hooks merge")
+        return False
+    # Unwrap outer "hooks" key if present
+    source_hooks = hooks_data.get("hooks", hooks_data)
+    # Resolve absolute path to hooks directory so hooks work regardless of
+    # CWD at execution time (Stop/PostCompact hooks may run from unknown CWD)
+    hooks_dir = claude_dir / "hooks"
+    if hooks_dir.exists():
+        hooks_abs = str(hooks_dir.resolve())
+    else:
+        # Fallback: use relative .claude/hooks/ if symlink not yet created
+        hooks_abs = str(claude_dir / "hooks")
+    def convert_command(cmd: str) -> str:
+        return re.sub(r'\$\{CLAUDE_PLUGIN_ROOT\}/hooks/', f'{hooks_abs}/', cmd)
+    converted_hooks: dict = {}
+    for event, entries in source_hooks.items():
+        converted_hooks[event] = []
+        for entry in entries:
+            new_entry = dict(entry)
+            if "hooks" in new_entry:
+                new_entry["hooks"] = [
+                    {**h, "command": convert_command(h["command"])} if "command" in h else h
+                    for h in new_entry["hooks"]
+                ]
+            converted_hooks[event].append(new_entry)
+    # Load existing settings.local.json
+    existing: dict = {}
+    if settings_path.exists():
+        try:
+            existing = json.loads(settings_path.read_text())
+        except (json.JSONDecodeError, OSError):
+            existing = {}
+    # Replace hooks entirely — gaia is the sole author of hook entries.
+    # Previous merge-append logic caused duplicates when setup ran twice
+    # per session (session_start + user_prompt_submit).
+    existing_hooks = existing.get("hooks", {})
+    if existing_hooks == converted_hooks:
+        logger.info("settings.local.json hooks already up to date")
+        return False
+    existing["hooks"] = converted_hooks
+    claude_dir.mkdir(parents=True, exist_ok=True)
+    settings_path.write_text(json.dumps(existing, indent=2) + "\n")
+    logger.info("Merged hooks into %s", settings_path)
+    return True
+def run_first_time_setup(mark_done: bool = True) -> str | None:
+    """Run setup. Returns a reload message if permissions were written.
+    Args:
+        mark_done: If True, mark the plugin as initialized after setup.
+                   Set to False when the caller wants to defer marking
+                   (e.g., UserPromptSubmit marks after showing the welcome).
+    """
+    # Always ensure registry, permissions, and hooks exist (even on subsequent runs)
+    ensure_plugin_registry()
+    reload_needed = setup_project_permissions()
+    hooks_changed = setup_project_hooks()
+    reload_needed = reload_needed or hooks_changed
+    if not is_first_run():
+        if reload_needed:
+            return "Permissions updated. Run /reload-plugins to activate."
+        return None
+    if mark_done:
+        mark_initialized()
+    if reload_needed:
+        mode = get_plugin_mode()
+        return f"GAIA {mode} setup complete. Run /reload-plugins to activate permissions."
+    return None