@malcomsonbrothers/claude-code-permission-hook 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 malcomsonbrothers
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,209 @@
+# Claude Code Permission Hook
+
+Intelligent auto-approval for Claude Code that reduces friction and maintains security.
+
+- Auto-approve safe dev operations (less clicking, more coding)
+- Block destructive commands automatically (no LLM needed)
+- Uses the new PermissionRequest hook type
+- Cache decisions to minimize API costs
+
+> **Cost**: Using GPT-4o-mini via OpenRouter, **$1 USD = ~5,000+ LLM decisions**. Most operations use fast allow/deny (no LLM), so $1 can last 6+ months of heavy use.
+
+---
+
+## Quick Start
+
+```bash
+npm install -g @malcomsonbrothers/claude-code-permission-hook
+cc-approve install
+cc-approve config
+```
+
+## Installation
+
+**Prerequisites**: Node.js 18+ and Claude Code installed
+
+```bash
+# Step 1: Install globally
+npm install -g @malcomsonbrothers/claude-code-permission-hook
+
+# Step 2: Run the install command to set up the hook
+cc-approve install
+
+# Step 3: Configure your API key
+cc-approve config
+```
+
+The `cc-approve install` command will:
+1. Locate your Claude Code settings
+2. Add the PermissionRequest hook automatically
+3. Verify the setup works
+
+### Manual Installation
+
+If you prefer to add the hook manually, add this to your Claude Code `settings.json`:
+
+```json
+{
+  "hooks": {
+    "PermissionRequest": [
+      {
+        "matcher": "*",
+        "hooks": [
+          {
+            "type": "command",
+            "command": "cc-approve permission"
+          }
+        ]
+      }
+    ]
+  }
+}
+```
+
+Settings file locations:
+- **User settings**: `~/.claude/settings.json`
+- **Project settings**: `.claude/settings.json`
+- **Project local**: `.claude/settings.local.json`
+
+## How It Works
+
+This hook uses Claude Code's PermissionRequest hook to intercept tool calls before execution:
+
+```
+Claude Code Tool Request → cc-approve → Decision → Execute/Block
+```
+
+### Three-Tier Decision System
+
+1. **Fast approval** for obviously safe operations (Read, Write, Glob, Edit)
+2. **Fast deny** for destructive patterns (rm -rf /, force push to protected branches)
+3. **LLM analysis** for complex operations with intelligent caching
+
+### Authentication Options
+
+- **OpenRouter** (recommended for latency/speed)
+- **OpenAI API** (direct or compatible endpoints)
+- **Anthropic API** (direct Claude access)
+
+## Configuration
+
+### Quick Setup
+
+```bash
+# Interactive configuration
+cc-approve config
+
+# Check current setup
+cc-approve doctor
+```
+
+### Manual Configuration
+
+Config is stored at `~/.cc-approve/config.json`:
+
+```json
+{
+  "llm": {
+    "provider": "openai",
+    "model": "gpt-4o-mini",
+    "apiKey": "sk-...",
+    "baseUrl": "https://openrouter.ai/api/v1"
+  },
+  "cache": {
+    "enabled": true,
+    "ttlHours": 168
+  },
+  "logging": {
+    "enabled": true,
+    "level": "info"
+  }
+}
+```
+
+### OpenRouter Setup (Recommended)
+
+```json
+{
+  "llm": {
+    "provider": "openai",
+    "model": "openai/gpt-4o-mini",
+    "apiKey": "sk-or-v1-your-key",
+    "baseUrl": "https://openrouter.ai/api/v1"
+  },
+  "cache": {
+    "enabled": true,
+    "ttlHours": 168
+  }
+}
+```
+
+### Environment Variables
+
+You can also use environment variables instead of config file:
+
+```bash
+export OPENAI_API_KEY=sk-your-key
+export OPENAI_BASE_URL=https://openrouter.ai/api/v1
+```
+
+## What Gets Auto-Approved?
+
+### Always Allowed (No LLM call)
+- **Read operations**: Read, Glob, Grep, LS, WebFetch, WebSearch
+- **Write operations**: Write, Edit, MultiEdit, NotebookEdit
+- **Interaction tools**: TodoWrite, Task, AskUserQuestion
+- **MCP tools**: All `mcp__*` prefixed tools
+
+### Always Blocked (No LLM call)
+- **System destruction**: `rm -rf /`, `rm -rf /usr`, `rm -rf ~`
+- **Protected git branches**: `git push --force origin main/master/production/staging/develop`
+- **Disk operations**: `mkfs`, `fdisk --delete`, `dd` to raw devices, `format C:`
+- **Windows destruction**: `rmdir /s /q C:\`, `del /f /s /q C:\`
+- **Malicious patterns**: Fork bombs, credential theft attempts
+
+### LLM Analysis Required
+- **Bash commands**: npm, git (non-force), docker, curl, etc.
+- **Unknown tools**: Any tool not in the allow/deny lists
+
+## CLI Commands
+
+```bash
+cc-approve permission     # Handle PermissionRequest hook (reads stdin)
+cc-approve install        # Add hook to Claude Code settings
+cc-approve uninstall      # Remove hook from settings
+cc-approve config         # Interactive configuration
+cc-approve doctor         # Diagnose configuration and connectivity
+cc-approve clear-cache    # Clear all cached decisions
+cc-approve status         # Show current configuration
+```
+
+## Caching Behavior
+
+- **Enabled by default** for optimal performance
+- **Working directory scoped** for safety across projects
+- **TTL expiration** (default 168 hours / 1 week)
+- **Caches only definitive decisions** (allow/deny from LLM)
+- **Instant responses** for repeated operations
+
+```bash
+# Clear cache if needed
+cc-approve clear-cache
+
+# Disable caching in config
+{
+  "cache": {
+    "enabled": false
+  }
+}
+```
+
+## License
+
+MIT License - see [LICENSE](LICENSE) file for details.
+
+---
+
+```bash
+npm install -g @malcomsonbrothers/claude-code-permission-hook && cc-approve install && cc-approve config
+```

package/bin/cc-approve.js

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+
+import('../dist/index.js');

package/dist/cache.d.ts

@@ -0,0 +1,13 @@
+import { CacheEntry } from "./types.js";
+export declare function getCachedDecision(toolName: string, toolInput: Record<string, unknown>, projectRoot?: string): CacheEntry | null;
+export declare function setCachedDecision(toolName: string, toolInput: Record<string, unknown>, decision: "allow" | "deny", reason: string, projectRoot?: string): void;
+export declare function clearCache(): number;
+export declare function clearCacheByDecision(decision: "allow" | "deny"): number;
+export declare function clearCacheByKey(hashKey: string): boolean;
+export declare function clearCacheByGrep(substring: string): number;
+export declare function listCacheEntries(projectRoot?: string): CacheEntry[];
+export declare function getCacheStats(): {
+    entries: number;
+    oldestTimestamp?: number;
+};
+//# sourceMappingURL=cache.d.ts.map

package/dist/cache.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cache.d.ts","sourceRoot":"","sources":["../src/cache.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,UAAU,EAA8B,MAAM,YAAY,CAAC;AA2CpE,wBAAgB,iBAAiB,CAC/B,QAAQ,EAAE,MAAM,EAChB,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAClC,WAAW,CAAC,EAAE,MAAM,GACnB,UAAU,GAAG,IAAI,CA0BnB;AAED,wBAAgB,iBAAiB,CAC/B,QAAQ,EAAE,MAAM,EAChB,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAClC,QAAQ,EAAE,OAAO,GAAG,MAAM,EAC1B,MAAM,EAAE,MAAM,EACd,WAAW,CAAC,EAAE,MAAM,GACnB,IAAI,CAqBN;AAED,wBAAgB,UAAU,IAAI,MAAM,CAKnC;AAED,wBAAgB,oBAAoB,CAAC,QAAQ,EAAE,OAAO,GAAG,MAAM,GAAG,MAAM,CAavE;AAED,wBAAgB,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAQxD;AAED,wBAAgB,gBAAgB,CAAC,SAAS,EAAE,MAAM,GAAG,MAAM,CAyB1D;AAED,wBAAgB,gBAAgB,CAAC,WAAW,CAAC,EAAE,MAAM,GAAG,UAAU,EAAE,CAYnE;AAED,wBAAgB,aAAa,IAAI;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B,CAcA"}

package/dist/cache.js

@@ -0,0 +1,153 @@
+import { createHash } from "crypto";
+import { existsSync, readFileSync, writeFileSync } from "fs";
+import { join } from "path";
+import { getConfigDir, loadConfig, ensureConfigDir } from "./config.js";
+import { CacheFileSchema } from "./types.js";
+const CACHE_FILE = "approval_cache.json";
+function getCachePath() {
+    return join(getConfigDir(), CACHE_FILE);
+}
+function generateCacheKey(toolName, toolInput, projectRoot) {
+    const data = JSON.stringify({
+        toolName,
+        toolInput,
+        projectRoot: projectRoot || "",
+    });
+    return createHash("sha256").update(data).digest("hex");
+}
+function loadCache() {
+    const cachePath = getCachePath();
+    if (!existsSync(cachePath)) {
+        return {};
+    }
+    try {
+        const raw = readFileSync(cachePath, "utf-8");
+        const parsed = JSON.parse(raw);
+        return CacheFileSchema.parse(parsed);
+    }
+    catch {
+        // Corrupted cache, return empty
+        return {};
+    }
+}
+function saveCache(cache) {
+    ensureConfigDir();
+    const cachePath = getCachePath();
+    writeFileSync(cachePath, JSON.stringify(cache, null, 2));
+}
+export function getCachedDecision(toolName, toolInput, projectRoot) {
+    const config = loadConfig();
+    if (!config.cache.enabled) {
+        return null;
+    }
+    const key = generateCacheKey(toolName, toolInput, projectRoot);
+    const cache = loadCache();
+    const entry = cache[key];
+    if (!entry) {
+        return null;
+    }
+    // Check TTL
+    const ttlMs = config.cache.ttlHours * 60 * 60 * 1000;
+    const age = Date.now() - entry.timestamp;
+    if (age > ttlMs) {
+        // Expired, remove it
+        delete cache[key];
+        saveCache(cache);
+        return null;
+    }
+    return entry;
+}
+export function setCachedDecision(toolName, toolInput, decision, reason, projectRoot) {
+    const config = loadConfig();
+    if (!config.cache.enabled) {
+        return;
+    }
+    const key = generateCacheKey(toolName, toolInput, projectRoot);
+    const cache = loadCache();
+    const entry = {
+        key,
+        decision,
+        reason,
+        timestamp: Date.now(),
+        toolName,
+        toolInput,
+        projectRoot,
+    };
+    cache[key] = entry;
+    saveCache(cache);
+}
+export function clearCache() {
+    const cache = loadCache();
+    const count = Object.keys(cache).length;
+    saveCache({});
+    return count;
+}
+export function clearCacheByDecision(decision) {
+    const cache = loadCache();
+    let removed = 0;
+    for (const [key, entry] of Object.entries(cache)) {
+        if (entry.decision === decision) {
+            delete cache[key];
+            removed++;
+        }
+    }
+    if (removed > 0) {
+        saveCache(cache);
+    }
+    return removed;
+}
+export function clearCacheByKey(hashKey) {
+    const cache = loadCache();
+    if (cache[hashKey]) {
+        delete cache[hashKey];
+        saveCache(cache);
+        return true;
+    }
+    return false;
+}
+export function clearCacheByGrep(substring) {
+    const cache = loadCache();
+    const lowerSub = substring.toLowerCase();
+    let removed = 0;
+    for (const [key, entry] of Object.entries(cache)) {
+        const searchable = [
+            entry.toolName,
+            entry.reason,
+            entry.projectRoot || "",
+            JSON.stringify(entry.toolInput || {}),
+        ]
+            .join(" ")
+            .toLowerCase();
+        if (searchable.includes(lowerSub)) {
+            delete cache[key];
+            removed++;
+        }
+    }
+    if (removed > 0) {
+        saveCache(cache);
+    }
+    return removed;
+}
+export function listCacheEntries(projectRoot) {
+    const cache = loadCache();
+    let entries = Object.values(cache);
+    if (projectRoot) {
+        entries = entries.filter((e) => e.projectRoot === projectRoot);
+    }
+    // Sort by timestamp descending (most recent first)
+    entries.sort((a, b) => b.timestamp - a.timestamp);
+    return entries;
+}
+export function getCacheStats() {
+    const cache = loadCache();
+    const entries = Object.values(cache);
+    if (entries.length === 0) {
+        return { entries: 0 };
+    }
+    const timestamps = entries.map((e) => e.timestamp);
+    return {
+        entries: entries.length,
+        oldestTimestamp: Math.min(...timestamps),
+    };
+}
+//# sourceMappingURL=cache.js.map

package/dist/cache.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cache.js","sourceRoot":"","sources":["../src/cache.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AACpC,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,IAAI,CAAC;AAC7D,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,EAAyB,eAAe,EAAE,MAAM,YAAY,CAAC;AAEpE,MAAM,UAAU,GAAG,qBAAqB,CAAC;AAEzC,SAAS,YAAY;IACnB,OAAO,IAAI,CAAC,YAAY,EAAE,EAAE,UAAU,CAAC,CAAC;AAC1C,CAAC;AAED,SAAS,gBAAgB,CACvB,QAAgB,EAChB,SAAkC,EAClC,WAAoB;IAEpB,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC;QAC1B,QAAQ;QACR,SAAS;QACT,WAAW,EAAE,WAAW,IAAI,EAAE;KAC/B,CAAC,CAAC;IACH,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AACzD,CAAC;AAED,SAAS,SAAS;IAChB,MAAM,SAAS,GAAG,YAAY,EAAE,CAAC;IACjC,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAC3B,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;QAC7C,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC/B,OAAO,eAAe,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACvC,CAAC;IAAC,MAAM,CAAC;QACP,gCAAgC;QAChC,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED,SAAS,SAAS,CAAC,KAAgB;IACjC,eAAe,EAAE,CAAC;IAClB,MAAM,SAAS,GAAG,YAAY,EAAE,CAAC;IACjC,aAAa,CAAC,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;AAC3D,CAAC;AAED,MAAM,UAAU,iBAAiB,CAC/B,QAAgB,EAChB,SAAkC,EAClC,WAAoB;IAEpB,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAC5B,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;QAC1B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,GAAG,GAAG,gBAAgB,CAAC,QAAQ,EAAE,SAAS,EAAE,WAAW,CAAC,CAAC;IAC/D,MAAM,KAAK,GAAG,SAAS,EAAE,CAAC;IAC1B,MAAM,KAAK,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC;IAEzB,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,IAAI,CAAC;IACd,CAAC;IAED,YAAY;IACZ,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,QAAQ,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;IACrD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC,SAAS,CAAC;IAEzC,IAAI,GAAG,GAAG,KAAK,EAAE,CAAC;QAChB,qBAAqB;QACrB,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC;QAClB,SAAS,CAAC,KAAK,CAAC,CAAC;QACjB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED,MAAM,UAAU,iBAAiB,CAC/B,QAAgB,EAChB,SAAkC,EAClC,QAA0B,EAC1B,MAAc,EACd,WAAoB;IAEpB,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAC5B,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;QAC1B,OAAO;IACT,CAAC;IAED,MAAM,GAAG,GAAG,gBAAgB,CAAC,QAAQ,EAAE,SAAS,EAAE,WAAW,CAAC,CAAC;IAC/D,MAAM,KAAK,GAAG,SAAS,EAAE,CAAC;IAE1B,MAAM,KAAK,GAAe;QACxB,GAAG;QACH,QAAQ;QACR,MAAM;QACN,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;QACrB,QAAQ;QACR,SAAS;QACT,WAAW;KACZ,CAAC;IAEF,KAAK,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;IACnB,SAAS,CAAC,KAAK,CAAC,CAAC;AACnB,CAAC;AAED,MAAM,UAAU,UAAU;IACxB,MAAM,KAAK,GAAG,SAAS,EAAE,CAAC;IAC1B,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC;IACxC,SAAS,CAAC,EAAE,CAAC,CAAC;IACd,OAAO,KAAK,CAAC;AACf,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,QAA0B;IAC7D,MAAM,KAAK,GAAG,SAAS,EAAE,CAAC;IAC1B,IAAI,OAAO,GAAG,CAAC,CAAC;IAChB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACjD,IAAI,KAAK,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;YAChC,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC;YAClB,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IACD,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;QAChB,SAAS,CAAC,KAAK,CAAC,CAAC;IACnB,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,OAAe;IAC7C,MAAM,KAAK,GAAG,SAAS,EAAE,CAAC;IAC1B,IAAI,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;QACnB,OAAO,KAAK,CAAC,OAAO,CAAC,CAAC;QACtB,SAAS,CAAC,KAAK,CAAC,CAAC;QACjB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,SAAiB;IAChD,MAAM,KAAK,GAAG,SAAS,EAAE,CAAC;IAC1B,MAAM,QAAQ,GAAG,SAAS,CAAC,WAAW,EAAE,CAAC;IACzC,IAAI,OAAO,GAAG,CAAC,CAAC;IAEhB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACjD,MAAM,UAAU,GAAG;YACjB,KAAK,CAAC,QAAQ;YACd,KAAK,CAAC,MAAM;YACZ,KAAK,CAAC,WAAW,IAAI,EAAE;YACvB,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,SAAS,IAAI,EAAE,CAAC;SACtC;aACE,IAAI,CAAC,GAAG,CAAC;aACT,WAAW,EAAE,CAAC;QAEjB,IAAI,UAAU,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;YAClC,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC;YAClB,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAED,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;QAChB,SAAS,CAAC,KAAK,CAAC,CAAC;IACnB,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,WAAoB;IACnD,MAAM,KAAK,GAAG,SAAS,EAAE,CAAC;IAC1B,IAAI,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAEnC,IAAI,WAAW,EAAE,CAAC;QAChB,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,KAAK,WAAW,CAAC,CAAC;IACjE,CAAC;IAED,mDAAmD;IACnD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,GAAG,CAAC,CAAC,SAAS,CAAC,CAAC;IAElD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,MAAM,UAAU,aAAa;IAI3B,MAAM,KAAK,GAAG,SAAS,EAAE,CAAC;IAC1B,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAErC,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,CAAC;IACxB,CAAC;IAED,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;IAEnD,OAAO;QACL,OAAO,EAAE,OAAO,CAAC,MAAM;QACvB,eAAe,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,UAAU,CAAC;KACzC,CAAC;AACJ,CAAC"}

package/dist/config.d.ts

@@ -0,0 +1,10 @@
+import { Config } from "./types.js";
+export declare function getConfigDir(): string;
+export declare function getConfigPath(): string;
+export declare function ensureConfigDir(): void;
+export declare function loadConfig(): Config;
+export declare function saveConfig(config: Config): void;
+export declare function updateConfig(updates: Partial<Config>): Config;
+export declare function clearConfigCache(): void;
+export declare function getApiKey(): string | undefined;
+//# sourceMappingURL=config.d.ts.map

package/dist/config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,MAAM,EAAgB,MAAM,YAAY,CAAC;AAOlD,wBAAgB,YAAY,IAAI,MAAM,CAErC;AAED,wBAAgB,aAAa,IAAI,MAAM,CAEtC;AAED,wBAAgB,eAAe,IAAI,IAAI,CAItC;AAED,wBAAgB,UAAU,IAAI,MAAM,CAyBnC;AAED,wBAAgB,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,CAI/C;AAED,wBAAgB,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,MAAM,CAAC,GAAG,MAAM,CAK7D;AAED,wBAAgB,gBAAgB,IAAI,IAAI,CAEvC;AAED,wBAAgB,SAAS,IAAI,MAAM,GAAG,SAAS,CAc9C"}

package/dist/config.js

@@ -0,0 +1,68 @@
+import { existsSync, mkdirSync, readFileSync, writeFileSync } from "fs";
+import { homedir } from "os";
+import { join } from "path";
+import { ConfigSchema } from "./types.js";
+const CONFIG_DIR = join(homedir(), ".cc-approve");
+const CONFIG_FILE = join(CONFIG_DIR, "config.json");
+let cachedConfig = null;
+export function getConfigDir() {
+    return CONFIG_DIR;
+}
+export function getConfigPath() {
+    return CONFIG_FILE;
+}
+export function ensureConfigDir() {
+    if (!existsSync(CONFIG_DIR)) {
+        mkdirSync(CONFIG_DIR, { recursive: true });
+    }
+}
+export function loadConfig() {
+    if (cachedConfig) {
+        return cachedConfig;
+    }
+    ensureConfigDir();
+    if (!existsSync(CONFIG_FILE)) {
+        const defaultConfig = ConfigSchema.parse({});
+        saveConfig(defaultConfig);
+        cachedConfig = defaultConfig;
+        return defaultConfig;
+    }
+    try {
+        const raw = readFileSync(CONFIG_FILE, "utf-8");
+        const parsed = JSON.parse(raw);
+        cachedConfig = ConfigSchema.parse(parsed);
+        return cachedConfig;
+    }
+    catch (error) {
+        // If config is corrupted, use defaults
+        const defaultConfig = ConfigSchema.parse({});
+        cachedConfig = defaultConfig;
+        return defaultConfig;
+    }
+}
+export function saveConfig(config) {
+    ensureConfigDir();
+    writeFileSync(CONFIG_FILE, JSON.stringify(config, null, 2));
+    cachedConfig = config;
+}
+export function updateConfig(updates) {
+    const current = loadConfig();
+    const updated = ConfigSchema.parse({ ...current, ...updates });
+    saveConfig(updated);
+    return updated;
+}
+export function clearConfigCache() {
+    cachedConfig = null;
+}
+export function getApiKey() {
+    const config = loadConfig();
+    // Check config first, then environment variables
+    if (config.llm.apiKey) {
+        return config.llm.apiKey;
+    }
+    // Check common environment variables
+    return (process.env.OPENAI_API_KEY ||
+        process.env.ANTHROPIC_API_KEY ||
+        process.env.LLM_API_KEY);
+}
+//# sourceMappingURL=config.js.map

package/dist/config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,IAAI,CAAC;AACxE,OAAO,EAAE,OAAO,EAAE,MAAM,IAAI,CAAC;AAC7B,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAU,YAAY,EAAE,MAAM,YAAY,CAAC;AAElD,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,EAAE,EAAE,aAAa,CAAC,CAAC;AAClD,MAAM,WAAW,GAAG,IAAI,CAAC,UAAU,EAAE,aAAa,CAAC,CAAC;AAEpD,IAAI,YAAY,GAAkB,IAAI,CAAC;AAEvC,MAAM,UAAU,YAAY;IAC1B,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,MAAM,UAAU,aAAa;IAC3B,OAAO,WAAW,CAAC;AACrB,CAAC;AAED,MAAM,UAAU,eAAe;IAC7B,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC5B,SAAS,CAAC,UAAU,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC;AAED,MAAM,UAAU,UAAU;IACxB,IAAI,YAAY,EAAE,CAAC;QACjB,OAAO,YAAY,CAAC;IACtB,CAAC;IAED,eAAe,EAAE,CAAC;IAElB,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;QAC7B,MAAM,aAAa,GAAG,YAAY,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAC7C,UAAU,CAAC,aAAa,CAAC,CAAC;QAC1B,YAAY,GAAG,aAAa,CAAC;QAC7B,OAAO,aAAa,CAAC;IACvB,CAAC;IAED,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,YAAY,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;QAC/C,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC/B,YAAY,GAAG,YAAY,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAC1C,OAAO,YAAY,CAAC;IACtB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,uCAAuC;QACvC,MAAM,aAAa,GAAG,YAAY,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAC7C,YAAY,GAAG,aAAa,CAAC;QAC7B,OAAO,aAAa,CAAC;IACvB,CAAC;AACH,CAAC;AAED,MAAM,UAAU,UAAU,CAAC,MAAc;IACvC,eAAe,EAAE,CAAC;IAClB,aAAa,CAAC,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAC5D,YAAY,GAAG,MAAM,CAAC;AACxB,CAAC;AAED,MAAM,UAAU,YAAY,CAAC,OAAwB;IACnD,MAAM,OAAO,GAAG,UAAU,EAAE,CAAC;IAC7B,MAAM,OAAO,GAAG,YAAY,CAAC,KAAK,CAAC,EAAE,GAAG,OAAO,EAAE,GAAG,OAAO,EAAE,CAAC,CAAC;IAC/D,UAAU,CAAC,OAAO,CAAC,CAAC;IACpB,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,MAAM,UAAU,gBAAgB;IAC9B,YAAY,GAAG,IAAI,CAAC;AACtB,CAAC;AAED,MAAM,UAAU,SAAS;IACvB,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAE5B,iDAAiD;IACjD,IAAI,MAAM,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC;QACtB,OAAO,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC;IAC3B,CAAC;IAED,qCAAqC;IACrC,OAAO,CACL,OAAO,CAAC,GAAG,CAAC,cAAc;QAC1B,OAAO,CAAC,GAAG,CAAC,iBAAiB;QAC7B,OAAO,CAAC,GAAG,CAAC,WAAW,CACxB,CAAC;AACJ,CAAC"}

package/dist/fast-decisions.d.ts

@@ -0,0 +1,6 @@
+export interface FastDecisionResult {
+    decision: "allow" | "deny" | "passthrough" | "llm";
+    reason?: string;
+}
+export declare function checkFastDecision(toolName: string, toolInput: Record<string, unknown>): FastDecisionResult;
+//# sourceMappingURL=fast-decisions.d.ts.map

package/dist/fast-decisions.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fast-decisions.d.ts","sourceRoot":"","sources":["../src/fast-decisions.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,kBAAkB;IACjC,QAAQ,EAAE,OAAO,GAAG,MAAM,GAAG,aAAa,GAAG,KAAK,CAAC;IACnD,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAmED,wBAAgB,iBAAiB,CAC/B,QAAQ,EAAE,MAAM,EAChB,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GACjC,kBAAkB,CAgFpB"}

package/dist/fast-decisions.js

@@ -0,0 +1,137 @@
+import { loadConfig } from "./config.js";
+// Tools that are always safe to auto-approve
+const INSTANT_ALLOW_TOOLS = new Set([
+    // Read-only tools
+    "Read",
+    "Glob",
+    "Grep",
+    "LS",
+    "WebFetch",
+    "WebSearch",
+    "NotebookRead",
+    "BashOutput",
+    // Safe write/interaction tools
+    "Write",
+    "Edit",
+    "MultiEdit",
+    "NotebookEdit",
+    "TodoWrite",
+    "Task",
+]);
+// Tools that should ALWAYS passthrough to native dialog (user must see and respond)
+const INSTANT_PASSTHROUGH_TOOLS = new Set([
+    "AskUserQuestion", // User MUST see questions and provide their answer
+]);
+// Patterns that should ALWAYS be denied - system destruction
+const INSTANT_DENY_BASH_PATTERNS = [
+    // Unix/Linux system root destruction
+    /^rm\s+(-[rf]+\s+)*\/$/,
+    /^rm\s+(-[rf]+\s+)*\/usr\b/,
+    /^rm\s+(-[rf]+\s+)*\/etc\b/,
+    /^rm\s+(-[rf]+\s+)*\/bin\b/,
+    /^rm\s+(-[rf]+\s+)*\/sbin\b/,
+    /^rm\s+(-[rf]+\s+)*\/boot\b/,
+    /^rm\s+(-[rf]+\s+)*\/var\b/,
+    /^rm\s+(-[rf]+\s+)*\/home\b/,
+    /^rm\s+(-[rf]+\s+)*~\/?$/,
+    /^rm\s+(-[rf]+\s+)*\$HOME\/?$/,
+    // Windows system destruction
+    /^(rmdir|rd)\s+\/s\s+\/q\s+[A-Z]:\\$/i,
+    /^del\s+(\/[fqs]\s+)+[A-Z]:\\$/i,
+    /^del\s+(\/[fqs]\s+)+[A-Z]:\\Windows/i,
+    /^del\s+(\/[fqs]\s+)+[A-Z]:\\System32/i,
+    // Disk formatting
+    /^mkfs\b/,
+    /^fdisk\s+.*--delete/,
+    /^dd\s+.*of=\/dev\/(sd[a-z]|nvme|hd[a-z])$/,
+    /^format\s+[A-Z]:/i,
+    // Protected git operations
+    /^git\s+push\s+(-f|--force)\s+(origin\s+)?(main|master|production|staging|develop)\b/i,
+    /^git\s+push\s+--force\s+(origin\s+)?(main|master|production|staging|develop)\b/i,
+    /^git\s+push\s+.*--force-with-lease\s+.*\b(main|master|production)\b/i,
+    // Fork bombs and malicious patterns
+    /:\(\)\{\s*:\|:&\s*\};:/,
+    /\bfork\s*\(\s*\)\s*while/i,
+    // Credential theft attempts
+    /curl.*\|.*sh.*password/i,
+    /wget.*-O.*-.*\|.*bash/,
+    /curl.*\/etc\/passwd/,
+    /curl.*\/etc\/shadow/,
+    // PowerShell destructive
+    /Remove-Item\s+.*-Recurse.*[A-Z]:\\$/i,
+    /Remove-Item\s+.*-Recurse.*\$env:SystemRoot/i,
+];
+export function checkFastDecision(toolName, toolInput) {
+    const config = loadConfig();
+    // Check custom deny patterns first
+    for (const pattern of config.customDenyPatterns) {
+        const regex = new RegExp(pattern);
+        if (regex.test(toolName) || regex.test(JSON.stringify(toolInput))) {
+            return {
+                decision: "deny",
+                reason: `Blocked by custom deny pattern: ${pattern}`,
+            };
+        }
+    }
+    // Check instant deny patterns for Bash commands
+    if (toolName === "Bash") {
+        const command = toolInput.command;
+        if (command) {
+            for (const pattern of INSTANT_DENY_BASH_PATTERNS) {
+                if (pattern.test(command)) {
+                    return {
+                        decision: "deny",
+                        reason: `Blocked destructive command pattern: ${pattern.source}`,
+                    };
+                }
+            }
+        }
+    }
+    // Check custom allow patterns
+    for (const pattern of config.customAllowPatterns) {
+        const regex = new RegExp(pattern);
+        if (regex.test(toolName)) {
+            return {
+                decision: "allow",
+                reason: `Allowed by custom pattern: ${pattern}`,
+            };
+        }
+    }
+    // Check custom passthrough patterns
+    for (const pattern of config.customPassthroughPatterns) {
+        const regex = new RegExp(pattern);
+        if (regex.test(toolName) || regex.test(JSON.stringify(toolInput))) {
+            return {
+                decision: "passthrough",
+                reason: `Passthrough by custom pattern: ${pattern}`,
+            };
+        }
+    }
+    // Check instant passthrough tools (user MUST see and respond to these)
+    if (INSTANT_PASSTHROUGH_TOOLS.has(toolName)) {
+        return {
+            decision: "passthrough",
+            reason: `Tool '${toolName}' requires user interaction - showing native dialog`,
+        };
+    }
+    // Check instant allow tools
+    if (INSTANT_ALLOW_TOOLS.has(toolName)) {
+        return {
+            decision: "allow",
+            reason: `Tool '${toolName}' is in instant-allow list`,
+        };
+    }
+    // Check MCP tools (generally safe)
+    if (toolName.startsWith("mcp__")) {
+        return {
+            decision: "allow",
+            reason: "MCP tools are auto-approved",
+        };
+    }
+    // Needs LLM analysis
+    return {
+        decision: "llm",
+        reason: "Requires LLM analysis",
+    };
+}
+//# sourceMappingURL=fast-decisions.js.map

package/dist/fast-decisions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"fast-decisions.js","sourceRoot":"","sources":["../src/fast-decisions.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAOzC,6CAA6C;AAC7C,MAAM,mBAAmB,GAAG,IAAI,GAAG,CAAC;IAClC,kBAAkB;IAClB,MAAM;IACN,MAAM;IACN,MAAM;IACN,IAAI;IACJ,UAAU;IACV,WAAW;IACX,cAAc;IACd,YAAY;IACZ,+BAA+B;IAC/B,OAAO;IACP,MAAM;IACN,WAAW;IACX,cAAc;IACd,WAAW;IACX,MAAM;CACP,CAAC,CAAC;AAEH,oFAAoF;AACpF,MAAM,yBAAyB,GAAG,IAAI,GAAG,CAAC;IACxC,iBAAiB,EAAE,mDAAmD;CACvE,CAAC,CAAC;AAEH,6DAA6D;AAC7D,MAAM,0BAA0B,GAAG;IACjC,qCAAqC;IACrC,uBAAuB;IACvB,2BAA2B;IAC3B,2BAA2B;IAC3B,2BAA2B;IAC3B,4BAA4B;IAC5B,4BAA4B;IAC5B,2BAA2B;IAC3B,4BAA4B;IAC5B,yBAAyB;IACzB,8BAA8B;IAC9B,6BAA6B;IAC7B,sCAAsC;IACtC,gCAAgC;IAChC,sCAAsC;IACtC,uCAAuC;IACvC,kBAAkB;IAClB,SAAS;IACT,qBAAqB;IACrB,2CAA2C;IAC3C,mBAAmB;IACnB,2BAA2B;IAC3B,sFAAsF;IACtF,iFAAiF;IACjF,sEAAsE;IACtE,oCAAoC;IACpC,wBAAwB;IACxB,2BAA2B;IAC3B,4BAA4B;IAC5B,yBAAyB;IACzB,uBAAuB;IACvB,qBAAqB;IACrB,qBAAqB;IACrB,yBAAyB;IACzB,sCAAsC;IACtC,6CAA6C;CAC9C,CAAC;AAEF,MAAM,UAAU,iBAAiB,CAC/B,QAAgB,EAChB,SAAkC;IAElC,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAE5B,mCAAmC;IACnC,KAAK,MAAM,OAAO,IAAI,MAAM,CAAC,kBAAkB,EAAE,CAAC;QAChD,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC;YAClE,OAAO;gBACL,QAAQ,EAAE,MAAM;gBAChB,MAAM,EAAE,mCAAmC,OAAO,EAAE;aACrD,CAAC;QACJ,CAAC;IACH,CAAC;IAED,gDAAgD;IAChD,IAAI,QAAQ,KAAK,MAAM,EAAE,CAAC;QACxB,MAAM,OAAO,GAAG,SAAS,CAAC,OAAiB,CAAC;QAC5C,IAAI,OAAO,EAAE,CAAC;YACZ,KAAK,MAAM,OAAO,IAAI,0BAA0B,EAAE,CAAC;gBACjD,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBAC1B,OAAO;wBACL,QAAQ,EAAE,MAAM;wBAChB,MAAM,EAAE,wCAAwC,OAAO,CAAC,MAAM,EAAE;qBACjE,CAAC;gBACJ,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,8BAA8B;IAC9B,KAAK,MAAM,OAAO,IAAI,MAAM,CAAC,mBAAmB,EAAE,CAAC;QACjD,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YACzB,OAAO;gBACL,QAAQ,EAAE,OAAO;gBACjB,MAAM,EAAE,8BAA8B,OAAO,EAAE;aAChD,CAAC;QACJ,CAAC;IACH,CAAC;IAED,oCAAoC;IACpC,KAAK,MAAM,OAAO,IAAI,MAAM,CAAC,yBAAyB,EAAE,CAAC;QACvD,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC;YAClE,OAAO;gBACL,QAAQ,EAAE,aAAa;gBACvB,MAAM,EAAE,kCAAkC,OAAO,EAAE;aACpD,CAAC;QACJ,CAAC;IACH,CAAC;IAED,uEAAuE;IACvE,IAAI,yBAAyB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5C,OAAO;YACL,QAAQ,EAAE,aAAa;YACvB,MAAM,EAAE,SAAS,QAAQ,qDAAqD;SAC/E,CAAC;IACJ,CAAC;IAED,4BAA4B;IAC5B,IAAI,mBAAmB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QACtC,OAAO;YACL,QAAQ,EAAE,OAAO;YACjB,MAAM,EAAE,SAAS,QAAQ,4BAA4B;SACtD,CAAC;IACJ,CAAC;IAED,mCAAmC;IACnC,IAAI,QAAQ,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QACjC,OAAO;YACL,QAAQ,EAAE,OAAO;YACjB,MAAM,EAAE,6BAA6B;SACtC,CAAC;IACJ,CAAC;IAED,qBAAqB;IACrB,OAAO;QACL,QAAQ,EAAE,KAAK;QACf,MAAM,EAAE,uBAAuB;KAChC,CAAC;AACJ,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":""}