npm - @paulduvall/claude-dev-toolkit - Versions diffs - 0.0.1-alpha.2 → 0.0.1-alpha.21 - Mend

@paulduvall/claude-dev-toolkit 0.0.1-alpha.2 → 0.0.1-alpha.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (143) hide show

package/LICENSE +21 -0
package/README.md +88 -37
package/bin/claude-commands +307 -65
package/commands/active/xarchitecture.md +393 -0
package/commands/active/xconfig.md +127 -0
package/commands/active/xcontinue.md +92 -0
package/commands/active/xdebug.md +130 -0
package/commands/active/xdocs.md +178 -0
package/commands/active/xexplore.md +94 -0
package/commands/active/xgit.md +149 -0
package/commands/active/xpipeline.md +152 -0
package/commands/active/xquality.md +96 -0
package/commands/active/xrefactor.md +198 -0
package/commands/active/xrelease.md +142 -0
package/commands/active/xsecurity.md +92 -0
package/commands/active/xspec.md +174 -0
package/commands/active/xtdd.md +151 -0
package/commands/active/xtest.md +89 -0
package/commands/active/xverify.md +80 -0
package/commands/experiments/xact.md +742 -0
package/commands/experiments/xanalytics.md +113 -0
package/commands/experiments/xanalyze.md +70 -0
package/commands/experiments/xapi.md +161 -0
package/commands/experiments/xatomic.md +112 -0
package/commands/experiments/xaws.md +85 -0
package/commands/experiments/xcicd.md +337 -0
package/commands/experiments/xcommit.md +122 -0
package/commands/experiments/xcompliance.md +182 -0
package/commands/experiments/xconstraints.md +89 -0
package/commands/experiments/xcoverage.md +90 -0
package/commands/experiments/xdb.md +102 -0
package/commands/experiments/xdesign.md +121 -0
package/commands/experiments/xdevcontainer.md +238 -0
package/commands/experiments/xevaluate.md +111 -0
package/commands/experiments/xfootnote.md +12 -0
package/commands/experiments/xgenerate.md +117 -0
package/commands/experiments/xgovernance.md +149 -0
package/commands/experiments/xgreen.md +66 -0
package/commands/experiments/xiac.md +118 -0
package/commands/experiments/xincident.md +137 -0
package/commands/experiments/xinfra.md +115 -0
package/commands/experiments/xknowledge.md +115 -0
package/commands/experiments/xmaturity.md +120 -0
package/commands/experiments/xmetrics.md +118 -0
package/commands/experiments/xmonitoring.md +128 -0
package/commands/experiments/xnew.md +903 -0
package/commands/experiments/xobservable.md +114 -0
package/commands/experiments/xoidc.md +165 -0
package/commands/experiments/xoptimize.md +115 -0
package/commands/experiments/xperformance.md +112 -0
package/commands/experiments/xplanning.md +131 -0
package/commands/experiments/xpolicy.md +115 -0
package/commands/experiments/xproduct.md +98 -0
package/commands/experiments/xreadiness.md +75 -0
package/commands/experiments/xred.md +55 -0
package/commands/experiments/xrisk.md +128 -0
package/commands/experiments/xrules.md +124 -0
package/commands/experiments/xsandbox.md +120 -0
package/commands/experiments/xscan.md +102 -0
package/commands/experiments/xsetup.md +123 -0
package/commands/experiments/xtemplate.md +116 -0
package/commands/experiments/xtrace.md +212 -0
package/commands/experiments/xux.md +171 -0
package/commands/experiments/xvalidate.md +104 -0
package/commands/experiments/xworkflow.md +113 -0
package/hooks/.smellrc.example.json +19 -0
package/hooks/README.md +263 -0
package/hooks/check-commit-signing.py +127 -0
package/hooks/check-complexity.py +38 -0
package/hooks/check-security.py +37 -0
package/hooks/claude-wrapper.sh +29 -0
package/hooks/config.py +110 -0
package/hooks/file-logger.sh +100 -0
package/hooks/lib/argument-parser.sh +427 -0
package/hooks/lib/config-constants.sh +230 -0
package/hooks/lib/context-manager.sh +560 -0
package/hooks/lib/error-handler.sh +423 -0
package/hooks/lib/execution-engine.sh +444 -0
package/hooks/lib/execution-results.sh +113 -0
package/hooks/lib/execution-simulation.sh +114 -0
package/hooks/lib/field-validators.sh +104 -0
package/hooks/lib/file-utils.sh +398 -0
package/hooks/lib/subagent-discovery.sh +468 -0
package/hooks/lib/subagent-validator.sh +407 -0
package/hooks/lib/validation-reporter.sh +134 -0
package/hooks/on-error-debug.sh +226 -0
package/hooks/pre-commit-quality.sh +204 -0
package/hooks/pre-commit-test-runner.sh +132 -0
package/hooks/pre-write-security.sh +115 -0
package/hooks/prevent-credential-exposure.sh +279 -0
package/hooks/security_bandit.py +177 -0
package/hooks/security_checks.py +97 -0
package/hooks/security_secrets.py +81 -0
package/hooks/security_trojan.py +61 -0
package/hooks/settings.example.json +52 -0
package/hooks/smell_checks.py +238 -0
package/hooks/smell_javascript.py +231 -0
package/hooks/smell_python.py +110 -0
package/hooks/smell_ruff.py +70 -0
package/hooks/smell_types.py +72 -0
package/hooks/subagent-trigger-simple.sh +202 -0
package/hooks/subagent-trigger.sh +253 -0
package/hooks/suppression.py +82 -0
package/hooks/tab-color.sh +70 -0
package/hooks/verify-before-edit.sh +135 -0
package/lib/backup-restore-command.js +140 -0
package/lib/base/base-command.js +252 -0
package/lib/base/command-result.js +184 -0
package/lib/config/constants.js +255 -0
package/lib/config.js +48 -6
package/lib/configure-command.js +428 -0
package/lib/dependency-validator.js +64 -5
package/lib/hook-installer-core.js +2 -2
package/lib/installation-instruction-generator.js +213 -495
package/lib/installer.js +134 -56
package/lib/oidc-command.js +740 -0
package/lib/services/backup-list-service.js +226 -0
package/lib/services/backup-service.js +230 -0
package/lib/services/command-installer-service.js +217 -0
package/lib/services/logger-service.js +201 -0
package/lib/services/package-manager-service.js +319 -0
package/lib/services/platform-instruction-service.js +294 -0
package/lib/services/recovery-instruction-service.js +348 -0
package/lib/services/restore-service.js +221 -0
package/lib/setup-command.js +359 -0
package/lib/setup-wizard.js +155 -262
package/lib/uninstall-command.js +100 -0
package/lib/utils/claude-path-config.js +184 -0
package/lib/utils/file-system-utils.js +152 -0
package/lib/utils.js +8 -4
package/lib/verify-command.js +430 -0
package/package.json +7 -3
package/scripts/postinstall.js +172 -157
package/subagents/debug-specialist.md +7 -0
package/templates/README.md +115 -0
package/templates/basic-settings.json +30 -0
package/templates/comprehensive-settings.json +57 -0
package/templates/global-claude.md +344 -0
package/templates/hybrid-hook-config.yaml +132 -0
package/templates/security-focused-settings.json +62 -0
package/templates/subagent-hooks.yaml +188 -0
package/lib/package-manager-service.js +0 -270
package/subagents/debug-context.md +0 -197

package/hooks/lib/field-validators.sh ADDED Viewed

@@ -0,0 +1,104 @@
+#!/usr/bin/env bash
+set -uo pipefail
+# Field Validators Module
+#
+# Provides validation functions for individual subagent metadata fields
+# (name, description, version, tools, tags).
+# Extracted from subagent-validator.sh.
+# Include guard
+[[ -n "${_FIELD_VALIDATORS_LOADED:-}" ]] && return 0
+_FIELD_VALIDATORS_LOADED=1
+# Source required modules
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+source "$SCRIPT_DIR/config-constants.sh"
+source "$SCRIPT_DIR/error-handler.sh"
+##################################
+# Field Validation Functions
+##################################
+validate_subagent_name_field() {
+    local name="$1"
+    if [[ -z "$name" ]]; then
+        log_error "Subagent name cannot be empty"
+        return $EXIT_VALIDATION_FAILED
+    fi
+    if [[ ${#name} -gt $MAX_SUBAGENT_NAME_LENGTH ]]; then
+        log_error "Subagent name too long: ${#name} chars (max: $MAX_SUBAGENT_NAME_LENGTH)"
+        return $EXIT_VALIDATION_FAILED
+    fi
+    if [[ ! "$name" =~ $SUBAGENT_NAME_PATTERN ]]; then
+        log_error "Invalid subagent name format: $name"
+        return $EXIT_VALIDATION_FAILED
+    fi
+    return $EXIT_SUCCESS
+}
+validate_description_field() {
+    local description="$1"
+    if [[ -z "$description" ]]; then
+        log_error "Description cannot be empty"
+        return $EXIT_VALIDATION_FAILED
+    fi
+    if [[ ${#description} -lt $MIN_DESCRIPTION_LENGTH ]]; then
+        log_error "Description too short: ${#description} chars (min: $MIN_DESCRIPTION_LENGTH)"
+        return $EXIT_VALIDATION_FAILED
+    fi
+    if [[ ${#description} -gt $MAX_DESCRIPTION_LENGTH ]]; then
+        log_error "Description too long: ${#description} chars (max: $MAX_DESCRIPTION_LENGTH)"
+        return $EXIT_VALIDATION_FAILED
+    fi
+    return $EXIT_SUCCESS
+}
+validate_version_field() {
+    local version="$1"
+    # Semantic versioning pattern
+    if [[ "$version" =~ ^[0-9]+\.[0-9]+\.[0-9]+(-[a-zA-Z0-9.-]+)?(\+[a-zA-Z0-9.-]+)?$ ]]; then
+        return $EXIT_SUCCESS
+    fi
+    # Simple versioning pattern
+    if [[ "$version" =~ ^[0-9]+(\.[0-9]+)*$ ]]; then
+        return $EXIT_SUCCESS
+    fi
+    log_error "Invalid version format: $version"
+    return $EXIT_VALIDATION_FAILED
+}
+validate_tools_field() {
+    local tools="$1"
+    # Tools can be comma-separated or a single word
+    if [[ "$tools" =~ ^[a-zA-Z][a-zA-Z0-9_]*([[:space:]]*,[[:space:]]*[a-zA-Z][a-zA-Z0-9_]*)*$ ]]; then
+        return $EXIT_SUCCESS
+    fi
+    log_error "Invalid tools format: $tools"
+    return $EXIT_VALIDATION_FAILED
+}
+validate_tags_field() {
+    local tags="$1"
+    # Tags can be array format or comma-separated
+    if [[ "$tags" =~ ^\[.*\]$ ]] || [[ "$tags" =~ ^[a-zA-Z][a-zA-Z0-9_,-\s]*$ ]]; then
+        return $EXIT_SUCCESS
+    fi
+    log_error "Invalid tags format: $tags"
+    return $EXIT_VALIDATION_FAILED
+}

package/hooks/lib/file-utils.sh ADDED Viewed

@@ -0,0 +1,398 @@
+#!/usr/bin/env bash
+set -uo pipefail
+# File Utilities Module for Subagent-Hook Integration
+#
+# This module provides standardized file operations with proper error handling,
+# security checks, and logging for the subagent-hook integration system.
+# Include guard
+[[ -n "${_FILE_UTILS_LOADED:-}" ]] && return 0
+_FILE_UTILS_LOADED=1
+# Source required modules
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+source "$SCRIPT_DIR/config-constants.sh"
+##################################
+# JSON Utilities
+##################################
+json_escape() {
+    local input="$1"
+    input="${input//\\/\\\\}"
+    input="${input//\"/\\\"}"
+    input="${input//$'\n'/\\n}"
+    input="${input//$'\r'/\\r}"
+    input="${input//$'\t'/\\t}"
+    printf '%s' "$input"
+}
+##################################
+# Directory Operations
+##################################
+ensure_directory_exists() {
+    local dir_path="$1"
+    local permissions="${2:-$SECURE_DIR_PERMISSIONS}"
+    if [[ -z "$dir_path" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    if [[ ! -d "$dir_path" ]]; then
+        if ! mkdir -p "$dir_path" 2>/dev/null; then
+            return $EXIT_GENERAL_ERROR
+        fi
+    fi
+    if ! chmod "$permissions" "$dir_path" 2>/dev/null; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    return $EXIT_SUCCESS
+}
+ensure_required_directories() {
+    ensure_directory_exists "$CLAUDE_BASE_DIR" "$SECURE_DIR_PERMISSIONS" || return $?
+    ensure_directory_exists "$SUBAGENTS_DIR" "$SECURE_DIR_PERMISSIONS" || return $?
+    ensure_directory_exists "$LOGS_DIR" "$SECURE_DIR_PERMISSIONS" || return $?
+    return $EXIT_SUCCESS
+}
+##################################
+# File Reading Operations
+##################################
+read_file_safely() {
+    local file_path="$1"
+    if [[ -z "$file_path" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    if [[ ! -f "$file_path" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    if [[ ! -r "$file_path" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Check if file is binary (avoid reading binary files)
+    if file "$file_path" 2>/dev/null | grep -q "binary"; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    cat "$file_path" 2>/dev/null
+    return $?
+}
+read_file_with_size_limit() {
+    local file_path="$1"
+    local max_size="${2:-$MAX_CONTEXT_FILE_SIZE}"
+    if [[ -z "$file_path" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Check file size
+    if [[ -f "$file_path" ]]; then
+        local file_size
+        file_size=$(stat -f%z "$file_path" 2>/dev/null || stat -c%s "$file_path" 2>/dev/null)
+        if [[ "$file_size" -gt "$max_size" ]]; then
+            return $EXIT_GENERAL_ERROR
+        fi
+    fi
+    read_file_safely "$file_path"
+    return $?
+}
+##################################
+# File Writing Operations
+##################################
+write_file_safely() {
+    local file_path="$1"
+    local content="$2"
+    local permissions="${3:-$SECURE_FILE_PERMISSIONS}"
+    if [[ -z "$file_path" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Ensure parent directory exists
+    local parent_dir
+    parent_dir="$(dirname "$file_path")"
+    if ! ensure_directory_exists "$parent_dir"; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Write content
+    if ! echo "$content" > "$file_path" 2>/dev/null; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Set permissions
+    if ! chmod "$permissions" "$file_path" 2>/dev/null; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    return $EXIT_SUCCESS
+}
+create_temp_file() {
+    local prefix="${1:-$CONTEXT_FILE_PREFIX}"
+    local _suffix="${2:-}"  # kept for API compat; mktemp adds randomness
+    # Use mktemp for unpredictable temp file names
+    local temp_file
+    temp_file=$(mktemp "${prefix}-XXXXXX") || return $EXIT_GENERAL_ERROR
+    if ! chmod "$SECURE_FILE_PERMISSIONS" "$temp_file" 2>/dev/null; then
+        rm -f "$temp_file" 2>/dev/null
+        return $EXIT_GENERAL_ERROR
+    fi
+    echo "$temp_file"
+    return $EXIT_SUCCESS
+}
+write_context_file() {
+    local context_data="$1"
+    local temp_file="$2"
+    if [[ -z "$context_data" ]] || [[ -z "$temp_file" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    write_file_safely "$temp_file" "$context_data" "$SECURE_FILE_PERMISSIONS"
+    return $?
+}
+##################################
+# File Validation Operations
+##################################
+file_exists_and_readable() {
+    local file_path="$1"
+    [[ -n "$file_path" ]] && [[ -f "$file_path" ]] && [[ -r "$file_path" ]]
+    return $?
+}
+file_has_extension() {
+    local file_path="$1"
+    local expected_extension="$2"
+    if [[ -z "$file_path" ]] || [[ -z "$expected_extension" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    [[ "$file_path" == *"$expected_extension" ]]
+    return $?
+}
+is_valid_subagent_file() {
+    local file_path="$1"
+    # Check file exists and is readable
+    if ! file_exists_and_readable "$file_path"; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Check file extension
+    if ! file_has_extension "$file_path" "$SUBAGENT_FILE_EXTENSION"; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Check file size
+    local file_content
+    if ! file_content=$(read_file_with_size_limit "$file_path"); then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Basic YAML frontmatter validation
+    if ! echo "$file_content" | head -1 | grep -q "$YAML_FRONTMATTER_START"; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    return $EXIT_SUCCESS
+}
+##################################
+# File Cleanup Operations
+##################################
+cleanup_temp_files() {
+    local pattern="${1:-$TEMP_FILE_PATTERN}"
+    local max_age_minutes="${2:-60}"
+    # Find and remove old temp files
+    find /tmp -name "$pattern" -type f -mmin +$max_age_minutes -delete 2>/dev/null || true
+    return $EXIT_SUCCESS
+}
+cleanup_specific_temp_file() {
+    local temp_file="$1"
+    if [[ -n "$temp_file" ]] && [[ -f "$temp_file" ]]; then
+        rm -f "$temp_file" 2>/dev/null || true
+    fi
+    return $EXIT_SUCCESS
+}
+##################################
+# File Path Operations
+##################################
+resolve_subagent_path() {
+    local subagent_name="$1"
+    if [[ -z "$subagent_name" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    local subagent_file="${subagent_name}${SUBAGENT_FILE_EXTENSION}"
+    # Check project-level subagents first (higher priority)
+    local project_path="${PROJECT_SUBAGENTS_DIR}/${subagent_file}"
+    if file_exists_and_readable "$project_path"; then
+        echo "$project_path"
+        return $EXIT_SUCCESS
+    fi
+    # Check user-level subagents
+    local user_path="${SUBAGENTS_DIR}/${subagent_file}"
+    if file_exists_and_readable "$user_path"; then
+        echo "$user_path"
+        return $EXIT_SUCCESS
+    fi
+    return $EXIT_SUBAGENT_NOT_FOUND
+}
+get_absolute_path() {
+    local path="$1"
+    if [[ -z "$path" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Convert to absolute path
+    if [[ "$path" = /* ]]; then
+        echo "$path"
+    else
+        echo "$(pwd)/$path"
+    fi
+    return $EXIT_SUCCESS
+}
+##################################
+# File Permission Operations
+##################################
+validate_file_permissions() {
+    local file_path="$1"
+    if [[ -z "$file_path" ]] || [[ ! -f "$file_path" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Check if file is world-writable (security risk)
+    local permissions
+    permissions=$(stat -f%A "$file_path" 2>/dev/null || stat -c%a "$file_path" 2>/dev/null)
+    if [[ -z "$permissions" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Check if world-writable (last digit should not be writable)
+    local world_perms=$((permissions % 10))
+    if [[ $((world_perms & 2)) -eq 2 ]]; then
+        return $EXIT_SECURITY_VIOLATION
+    fi
+    return $EXIT_SUCCESS
+}
+set_secure_permissions() {
+    local file_path="$1"
+    local permissions="${2:-$SECURE_FILE_PERMISSIONS}"
+    if [[ -z "$file_path" ]] || [[ ! -f "$file_path" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    chmod "$permissions" "$file_path" 2>/dev/null
+    return $?
+}
+##################################
+# Logging File Operations
+##################################
+ensure_log_files() {
+    # Create log files with secure permissions if they don't exist
+    if [[ ! -f "$LOG_FILE" ]]; then
+        write_file_safely "$LOG_FILE" "" "$SECURE_FILE_PERMISSIONS" || return $?
+    fi
+    if [[ ! -f "$VIOLATION_LOG" ]]; then
+        write_file_safely "$VIOLATION_LOG" "" "$SECURE_FILE_PERMISSIONS" || return $?
+    fi
+    return $EXIT_SUCCESS
+}
+##################################
+# Path Validation (Security)
+##################################
+validate_path_safety() {
+    local path="$1"
+    if [[ -z "$path" ]]; then
+        return $EXIT_GENERAL_ERROR
+    fi
+    # Resolve to canonical path to prevent traversal via symlinks/..
+    local resolved
+    resolved=$(realpath -m "$path" 2>/dev/null) || resolved="$path"
+    # Check for path traversal in the resolved path
+    if [[ "$resolved" == *".."* ]] || [[ "$resolved" == *"/./"* ]]; then
+        return $EXIT_SECURITY_VIOLATION
+    fi
+    # Check for absolute paths outside allowed directories
+    if [[ "$resolved" = /* ]]; then
+        # Allow paths within Claude base directory
+        if [[ "$resolved" == "$CLAUDE_BASE_DIR"* ]]; then
+            return $EXIT_SUCCESS
+        fi
+        # Allow paths within project directory
+        local cwd
+        cwd=$(pwd)
+        if [[ "$resolved" == "$cwd"* ]]; then
+            return $EXIT_SUCCESS
+        fi
+        # Allow temp files (TMPDIR-aware)
+        local tmpdir="${TMPDIR:-/tmp}"
+        if [[ "$resolved" == "${tmpdir}/claude-subagent"* ]]; then
+            return $EXIT_SUCCESS
+        fi
+        return $EXIT_SECURITY_VIOLATION
+    fi
+    return $EXIT_SUCCESS
+}