@rex_koh/subagent-budget-guard 0.1.6 → 0.1.8

package/.claude-plugin/plugin.json

@@ -2,7 +2,7 @@
   "name": "subagent-budget-guard",
   "displayName": "Subagent Budget Guard",
   "description": "Hard-deny subagent launches, record verified subagent usage, and enforce a session budget against Claude Code's 5-hour rate-limit percentage.",
-  "version": "0.1.6",
+  "version": "0.1.8",
   "author": {
     "name": "ClaudeSubAgentSuppressor"
   },

package/README.md

@@ -9,12 +9,12 @@ Recommended Claude Code install:
 ```text
 /plugin marketplace add rexkoh425/ClaudeSubAgentSuppressor
 /plugin install subagent-budget-guard@subagent-budget-tools
-/reload-plugins
 /subagent-budget-guard:setup
-/reload-plugins
 /subagent-budget-guard:verify
 ```
 
+After `/subagent-budget-guard:setup`, fully exit and reopen Claude Code before verification so the statusLine bridge from `settings.json` is active. Some Claude Code builds do not provide an in-session plugin reload command.
+
 Useful after install:
 
 ```text
@@ -57,4 +57,22 @@ enforcement_enabled=true
 
 For existing installs, setup also removes obsolete `max_subagents_per_session` and `max_agent_team_tasks_per_session` options from this plugin's Claude settings.
 
+The setup skill can also ask for custom values. For direct terminal setup, use:
+
+```bash
+subagent-budget-guard-setup --interactive
+```
+
+Or pass explicit values:
+
+```bash
+subagent-budget-guard-setup \
+  --config max_concurrent_subagents=2 \
+  --config max_subagent_tokens_per_session=250000 \
+  --config subagent_token_warning_threshold_percent=90 \
+  --config session_five_hour_budget_percent=15 \
+  --config absolute_five_hour_ceiling_percent=95 \
+  --config enforcement_enabled=true
+```
+
 `max_subagent_tokens_per_session` is enforced from verified `Agent.totalTokens` values after each completed subagent. `subagent_token_warning_threshold_percent` defaults to `95`; once verified subagent usage reaches that percentage, the plugin tells Claude to stop using subagents and blocks future subagent launches. Claude Code does not expose mid-run per-token subagent streaming to hooks, so a single running subagent can only be evaluated when it reports its final token total.

package/bin/setup.js

@@ -1,11 +1,107 @@
 #!/usr/bin/env node
-import { getDataDir, getHomeDir, getPluginRoot, installStatusLineBridge } from '../lib/guard.js';
+import { createInterface } from 'node:readline/promises';
+
+import {
+  CONFIG_KEYS,
+  SETUP_CONFIG,
+  buildSetupConfig,
+  getDataDir,
+  getHomeDir,
+  getPluginRoot,
+  installStatusLineBridge
+} from '../lib/guard.js';
+
+const CONFIG_KEY_SET = new Set(CONFIG_KEYS);
+
+function usage() {
+  return [
+    'Usage: subagent-budget-guard-setup [--interactive] [--config key=value ...]',
+    '',
+    'Config keys:',
+    ...CONFIG_KEYS.map((key) => `  ${key} (default ${SETUP_CONFIG[key]})`)
+  ].join('\n');
+}
+
+function parseConfigPair(pair) {
+  const index = pair.indexOf('=');
+  if (index <= 0) {
+    throw new Error(`Invalid --config value "${pair}". Expected key=value.`);
+  }
+
+  const key = pair.slice(0, index);
+  const value = pair.slice(index + 1);
+  if (!CONFIG_KEY_SET.has(key)) {
+    throw new Error(`Unknown config key "${key}". Valid keys: ${CONFIG_KEYS.join(', ')}`);
+  }
+  return [key, value];
+}
+
+function parseArgs(args) {
+  const options = {
+    interactive: false,
+    overrides: {}
+  };
+
+  for (let index = 0; index < args.length; index += 1) {
+    const arg = args[index];
+    if (arg === '--help' || arg === '-h') {
+      process.stdout.write(`${usage()}\n`);
+      process.exit(0);
+    }
+    if (arg === '--interactive') {
+      options.interactive = true;
+      continue;
+    }
+    if (arg === '--config') {
+      const pair = args[index + 1];
+      if (!pair) throw new Error('--config requires key=value');
+      const [key, value] = parseConfigPair(pair);
+      options.overrides[key] = value;
+      index += 1;
+      continue;
+    }
+    if (arg.startsWith('--config=')) {
+      const [key, value] = parseConfigPair(arg.slice('--config='.length));
+      options.overrides[key] = value;
+      continue;
+    }
+    throw new Error(`Unknown argument "${arg}".\n${usage()}`);
+  }
+
+  return options;
+}
+
+async function promptForConfig(defaults) {
+  const rl = createInterface({
+    input: process.stdin,
+    output: process.stderr
+  });
+  const answers = {};
+
+  try {
+    for (const key of CONFIG_KEYS) {
+      const answer = await rl.question(`${key} [${defaults[key]}]: `);
+      if (answer.trim()) {
+        answers[key] = answer.trim();
+      }
+    }
+  } finally {
+    rl.close();
+  }
+
+  return buildSetupConfig({ ...defaults, ...answers });
+}
 
 async function main() {
+  const options = parseArgs(process.argv.slice(2));
+  const setupConfig = options.interactive
+    ? await promptForConfig(buildSetupConfig(options.overrides))
+    : buildSetupConfig(options.overrides);
   const result = await installStatusLineBridge({
     homeDir: getHomeDir(process.env),
     pluginRoot: getPluginRoot(process.env),
-    pluginData: getDataDir(process.env)
+    pluginData: getDataDir(process.env),
+    setupConfig
   });
 
   process.stdout.write(

package/lib/guard.js

@@ -134,6 +134,12 @@ export function loadConfig(env = process.env) {
   return normalizeConfig(config);
 }
 
+export function buildSetupConfig(overrides = {}) {
+  const config = { ...SETUP_CONFIG };
+  applyConfigValues(config, (key) => overrides[key]);
+  return normalizeConfig(config);
+}
+
 export function getHomeDir(env = process.env) {
   return env.USERPROFILE || env.HOME || os.homedir();
 }
@@ -823,13 +829,14 @@ function applySetupPluginConfig(
     ? currentEntry.options
     : {};
   const nextOptions = { ...currentOptions };
+  const normalizedSetupConfig = buildSetupConfig(setupConfig);
 
   for (const key of REMOVED_CONFIG_KEYS) {
     delete nextOptions[key];
   }
 
   for (const key of CONFIG_KEYS) {
-    nextOptions[key] = setupConfig[key];
+    nextOptions[key] = normalizedSetupConfig[key];
   }
 
   settings.pluginConfigs[pluginId] = {
@@ -843,7 +850,8 @@ function applySetupPluginConfig(
 export async function installStatusLineBridge({
   homeDir = getHomeDir(),
   pluginRoot = getPluginRoot(),
-  pluginData = getDataDir()
+  pluginData = getDataDir(),
+  setupConfig = SETUP_CONFIG
 } = {}) {
   await mkdir(pluginData, { recursive: true });
   const { settingsPath, settings } = await ensureSettings(homeDir);
@@ -861,7 +869,7 @@ export async function installStatusLineBridge({
     padding: existing?.padding ?? previousStatusLine?.padding ?? 0,
     refreshInterval: existing?.refreshInterval ?? 5
   };
-  const pluginConfigOptions = applySetupPluginConfig(settings);
+  const pluginConfigOptions = applySetupPluginConfig(settings, { setupConfig });
 
   settings.statusLine = nextStatusLine;
   await writeJsonAtomic(settingsPath, settings);

package/lib/verifier.js

@@ -64,6 +64,27 @@ function assert(condition, message) {
   if (!condition) throw new Error(message);
 }
 
+async function withIsolatedPluginEnv(env, root, fn) {
+  const dataDir = await mkdtemp(path.join(os.tmpdir(), 'sbg-verify-data-'));
+  const homeDir = await mkdtemp(path.join(os.tmpdir(), 'sbg-verify-home-'));
+  const checkEnv = {
+    PATH: env.PATH,
+    Path: env.Path,
+    SystemRoot: env.SystemRoot,
+    USERPROFILE: homeDir,
+    HOME: homeDir,
+    CLAUDE_PLUGIN_DATA: dataDir,
+    CLAUDE_PLUGIN_ROOT: root
+  };
+
+  try {
+    return await fn(checkEnv, { dataDir, homeDir });
+  } finally {
+    await rm(dataDir, { recursive: true, force: true });
+    await rm(homeDir, { recursive: true, force: true });
+  }
+}
+
 export async function runOfflineVerification({
   repoRoot = process.cwd(),
   env = process.env
@@ -90,7 +111,7 @@ export async function runOfflineVerification({
         entry.source?.package === '@rex_koh/subagent-budget-guard',
         'marketplace npm package mismatch'
       );
-      assert(entry.source?.version === '0.1.6', 'marketplace npm version mismatch');
+      assert(entry.source?.version === '0.1.8', 'marketplace npm version mismatch');
       return marketplacePath;
     });
   } else {
@@ -164,13 +185,7 @@ export async function runOfflineVerification({
   });
 
   await withCheck(result, 'pretool-agent-denies-default', async () => {
-    const dataDir = await mkdtemp(path.join(os.tmpdir(), 'sbg-verify-'));
-    try {
-      const checkEnv = {
-        ...env,
-        CLAUDE_PLUGIN_DATA: dataDir,
-        CLAUDE_PLUGIN_ROOT: root
-      };
+    return withIsolatedPluginEnv(env, root, async (checkEnv) => {
       const output = await handlePreToolUseAgent(
         {
           session_id: 'offline-pretool',
@@ -185,19 +200,11 @@ export async function runOfflineVerification({
         'Agent launch was not denied by default'
       );
       return output.stdout.hookSpecificOutput.permissionDecisionReason;
-    } finally {
-      await rm(dataDir, { recursive: true, force: true });
-    }
+    });
   });
 
   await withCheck(result, 'posttool-agent-records-verified-tokens', async () => {
-    const dataDir = await mkdtemp(path.join(os.tmpdir(), 'sbg-verify-'));
-    try {
-      const checkEnv = {
-        ...env,
-        CLAUDE_PLUGIN_DATA: dataDir,
-        CLAUDE_PLUGIN_ROOT: root
-      };
+    return withIsolatedPluginEnv(env, root, async (checkEnv) => {
       await handlePostToolUseAgent(
         {
           session_id: 'offline-posttool',
@@ -217,18 +224,13 @@ export async function runOfflineVerification({
       const report = await buildReport('offline-posttool', checkEnv);
       assert(report.state.subagents.verifiedTokens === 101, 'verified token count mismatch');
       return report.summary.verifiedTokenLabel;
-    } finally {
-      await rm(dataDir, { recursive: true, force: true });
-    }
+    });
   });
 
   await withCheck(result, 'statusline-budget-blocks', async () => {
-    const dataDir = await mkdtemp(path.join(os.tmpdir(), 'sbg-verify-'));
-    try {
+    return withIsolatedPluginEnv(env, root, async (baseEnv) => {
       const checkEnv = {
-        ...env,
-        CLAUDE_PLUGIN_DATA: dataDir,
-        CLAUDE_PLUGIN_ROOT: root,
+        ...baseEnv,
         CLAUDE_PLUGIN_OPTION_session_five_hour_budget_percent: '3'
       };
       await updateRateLimitFromStatusLine(
@@ -255,9 +257,7 @@ export async function runOfflineVerification({
       );
       assert(output.stdout?.decision === 'block', 'prompt was not blocked');
       return output.stdout.reason;
-    } finally {
-      await rm(dataDir, { recursive: true, force: true });
-    }
+    });
   });
 
   await withCheck(result, 'statusline-setup-wraps-existing-command', async () => {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@rex_koh/subagent-budget-guard",
-  "version": "0.1.6",
+  "version": "0.1.8",
   "description": "Claude Code plugin that blocks subagents by default, records verified subagent usage, and enforces 5-hour usage budgets.",
   "license": "MIT",
   "author": "ClaudeSubAgentSuppressor",

package/skills/setup/SKILL.md

@@ -1,17 +1,16 @@
 ---
 description: Install or refresh the Subagent Budget Guard statusLine bridge and apply the recommended plugin config.
-disable-model-invocation: true
 ---
 
 # Setup Subagent Budget Guard
 
-Run this command:
+Ask the user whether to use the recommended defaults or customize the values. If they choose defaults, run:
 
 ```bash
 node "${CLAUDE_PLUGIN_ROOT}/bin/setup.js"
 ```
 
-This applies the recommended config in Claude settings:
+If they choose custom values, ask for each value below. The value in parentheses is the default; accept a blank answer as the default.
 
 ```text
 max_concurrent_subagents=1
@@ -22,7 +21,19 @@ absolute_five_hour_ceiling_percent=95
 enforcement_enabled=true
 ```
 
-Then tell the user to run `/reload-plugins`, interact with Claude Code once so the statusLine bridge receives fresh session JSON, and run:
+Then run setup with the chosen values:
+
+```bash
+node "${CLAUDE_PLUGIN_ROOT}/bin/setup.js" \
+  --config max_concurrent_subagents=<value> \
+  --config max_subagent_tokens_per_session=<value> \
+  --config subagent_token_warning_threshold_percent=<value> \
+  --config session_five_hour_budget_percent=<value> \
+  --config absolute_five_hour_ceiling_percent=<value> \
+  --config enforcement_enabled=<true-or-false>
+```
+
+Then tell the user to fully exit and reopen Claude Code, interact once so the statusLine bridge receives fresh session JSON, and run:
 
 ```bash
 node "${CLAUDE_PLUGIN_ROOT}/bin/verify.js" --live