@takuma-hirai/hirai-method 0.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/.claude/.stale-harness-state/last-check +0 -0
- package/.claude/CommonRules.md +121 -0
- package/.claude/agents/01-core-development/api-designer.md +237 -0
- package/.claude/agents/01-core-development/backend-developer.md +222 -0
- package/.claude/agents/01-core-development/design-bridge.md +127 -0
- package/.claude/agents/01-core-development/electron-pro.md +240 -0
- package/.claude/agents/01-core-development/frontend-developer.md +133 -0
- package/.claude/agents/01-core-development/fullstack-developer.md +235 -0
- package/.claude/agents/01-core-development/graphql-architect.md +238 -0
- package/.claude/agents/01-core-development/microservices-architect.md +239 -0
- package/.claude/agents/01-core-development/mobile-developer.md +283 -0
- package/.claude/agents/01-core-development/ui-designer.md +174 -0
- package/.claude/agents/01-core-development/websocket-engineer.md +150 -0
- package/.claude/agents/03-infrastructure/azure-infra-engineer.md +53 -0
- package/.claude/agents/03-infrastructure/cloud-architect.md +277 -0
- package/.claude/agents/03-infrastructure/database-administrator.md +287 -0
- package/.claude/agents/03-infrastructure/deployment-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/devops-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/devops-incident-responder.md +287 -0
- package/.claude/agents/03-infrastructure/docker-expert.md +278 -0
- package/.claude/agents/03-infrastructure/incident-responder.md +287 -0
- package/.claude/agents/03-infrastructure/kubernetes-specialist.md +287 -0
- package/.claude/agents/03-infrastructure/network-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/platform-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/security-engineer.md +277 -0
- package/.claude/agents/03-infrastructure/sre-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/terraform-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/terragrunt-expert.md +307 -0
- package/.claude/agents/03-infrastructure/windows-infra-admin.md +52 -0
- package/.claude/agents/04-quality-security/accessibility-tester.md +277 -0
- package/.claude/agents/04-quality-security/ad-security-reviewer.md +56 -0
- package/.claude/agents/04-quality-security/ai-writing-auditor.md +77 -0
- package/.claude/agents/04-quality-security/architect-reviewer.md +287 -0
- package/.claude/agents/04-quality-security/chaos-engineer.md +277 -0
- package/.claude/agents/04-quality-security/code-reviewer.md +287 -0
- package/.claude/agents/04-quality-security/compliance-auditor.md +277 -0
- package/.claude/agents/04-quality-security/debugger.md +287 -0
- package/.claude/agents/04-quality-security/error-detective.md +287 -0
- package/.claude/agents/04-quality-security/penetration-tester.md +287 -0
- package/.claude/agents/04-quality-security/performance-engineer.md +287 -0
- package/.claude/agents/04-quality-security/powershell-security-hardening.md +54 -0
- package/.claude/agents/04-quality-security/qa-expert.md +287 -0
- package/.claude/agents/04-quality-security/security-auditor.md +287 -0
- package/.claude/agents/04-quality-security/test-automator.md +287 -0
- package/.claude/agents/04-quality-security/ui-ux-tester.md +234 -0
- package/.claude/agents/06-developer-experience/build-engineer.md +286 -0
- package/.claude/agents/06-developer-experience/cli-developer.md +286 -0
- package/.claude/agents/06-developer-experience/dependency-manager.md +286 -0
- package/.claude/agents/06-developer-experience/documentation-engineer.md +276 -0
- package/.claude/agents/06-developer-experience/dx-optimizer.md +286 -0
- package/.claude/agents/06-developer-experience/git-workflow-manager.md +286 -0
- package/.claude/agents/06-developer-experience/legacy-modernizer.md +286 -0
- package/.claude/agents/06-developer-experience/mcp-developer.md +275 -0
- package/.claude/agents/06-developer-experience/powershell-module-architect.md +58 -0
- package/.claude/agents/06-developer-experience/powershell-ui-architect.md +135 -0
- package/.claude/agents/06-developer-experience/readme-generator.md +238 -0
- package/.claude/agents/06-developer-experience/refactoring-specialist.md +286 -0
- package/.claude/agents/06-developer-experience/slack-expert.md +232 -0
- package/.claude/agents/06-developer-experience/tooling-engineer.md +286 -0
- package/.claude/agents/09-meta-orchestration/agent-installer.md +97 -0
- package/.claude/agents/09-meta-orchestration/agent-organizer.md +287 -0
- package/.claude/agents/09-meta-orchestration/codebase-orchestrator.md +249 -0
- package/.claude/agents/09-meta-orchestration/context-manager.md +287 -0
- package/.claude/agents/09-meta-orchestration/error-coordinator.md +287 -0
- package/.claude/agents/09-meta-orchestration/it-ops-orchestrator.md +60 -0
- package/.claude/agents/09-meta-orchestration/knowledge-synthesizer.md +287 -0
- package/.claude/agents/09-meta-orchestration/multi-agent-coordinator.md +287 -0
- package/.claude/agents/09-meta-orchestration/performance-monitor.md +287 -0
- package/.claude/agents/09-meta-orchestration/task-distributor.md +287 -0
- package/.claude/agents/09-meta-orchestration/workflow-orchestrator.md +287 -0
- package/.claude/agents/10-research-analysis/competitive-analyst.md +287 -0
- package/.claude/agents/10-research-analysis/data-researcher.md +287 -0
- package/.claude/agents/10-research-analysis/market-researcher.md +287 -0
- package/.claude/agents/10-research-analysis/project-idea-validator.md +269 -0
- package/.claude/agents/10-research-analysis/research-analyst.md +287 -0
- package/.claude/agents/10-research-analysis/scientific-literature-researcher.md +151 -0
- package/.claude/agents/10-research-analysis/search-specialist.md +287 -0
- package/.claude/agents/10-research-analysis/trend-analyst.md +287 -0
- package/.claude/archive/README.md +47 -0
- package/.claude/archive/agents/02-language-specialists/angular-architect.md +287 -0
- package/.claude/archive/agents/02-language-specialists/cpp-pro.md +277 -0
- package/.claude/archive/agents/02-language-specialists/csharp-developer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/django-developer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/dotnet-core-expert.md +287 -0
- package/.claude/archive/agents/02-language-specialists/dotnet-framework-4.8-expert.md +306 -0
- package/.claude/archive/agents/02-language-specialists/elixir-expert.md +311 -0
- package/.claude/archive/agents/02-language-specialists/expo-react-native-expert.md +268 -0
- package/.claude/archive/agents/02-language-specialists/fastapi-developer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/flutter-expert.md +287 -0
- package/.claude/archive/agents/02-language-specialists/golang-pro.md +277 -0
- package/.claude/archive/agents/02-language-specialists/java-architect.md +287 -0
- package/.claude/archive/agents/02-language-specialists/javascript-pro.md +277 -0
- package/.claude/archive/agents/02-language-specialists/kotlin-specialist.md +287 -0
- package/.claude/archive/agents/02-language-specialists/laravel-specialist.md +287 -0
- package/.claude/archive/agents/02-language-specialists/nextjs-developer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/node-specialist.md +124 -0
- package/.claude/archive/agents/02-language-specialists/php-pro.md +287 -0
- package/.claude/archive/agents/02-language-specialists/powershell-5.1-expert.md +59 -0
- package/.claude/archive/agents/02-language-specialists/powershell-7-expert.md +57 -0
- package/.claude/archive/agents/02-language-specialists/python-pro.md +277 -0
- package/.claude/archive/agents/02-language-specialists/rails-expert.md +358 -0
- package/.claude/archive/agents/02-language-specialists/react-specialist.md +287 -0
- package/.claude/archive/agents/02-language-specialists/rust-engineer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/spring-boot-engineer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/sql-pro.md +287 -0
- package/.claude/archive/agents/02-language-specialists/swift-expert.md +287 -0
- package/.claude/archive/agents/02-language-specialists/symfony-specialist.md +354 -0
- package/.claude/archive/agents/02-language-specialists/typescript-pro.md +277 -0
- package/.claude/archive/agents/02-language-specialists/vue-expert.md +287 -0
- package/.claude/archive/agents/05-data-ai/ai-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/data-analyst.md +277 -0
- package/.claude/archive/agents/05-data-ai/data-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/data-scientist.md +287 -0
- package/.claude/archive/agents/05-data-ai/database-optimizer.md +287 -0
- package/.claude/archive/agents/05-data-ai/llm-architect.md +287 -0
- package/.claude/archive/agents/05-data-ai/machine-learning-engineer.md +277 -0
- package/.claude/archive/agents/05-data-ai/ml-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/mlops-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/nlp-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/postgres-pro.md +287 -0
- package/.claude/archive/agents/05-data-ai/prompt-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/reinforcement-learning-engineer.md +277 -0
- package/.claude/archive/agents/07-specialized-domains/api-documenter.md +277 -0
- package/.claude/archive/agents/07-specialized-domains/blockchain-developer.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/embedded-systems.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/fintech-engineer.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/game-developer.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/healthcare-admin.md +199 -0
- package/.claude/archive/agents/07-specialized-domains/iot-engineer.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/m365-admin.md +48 -0
- package/.claude/archive/agents/07-specialized-domains/mobile-app-developer.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/payment-integration.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/quant-analyst.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/risk-manager.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/seo-specialist.md +184 -0
- package/.claude/archive/agents/08-business-product/business-analyst.md +287 -0
- package/.claude/archive/agents/08-business-product/content-marketer.md +287 -0
- package/.claude/archive/agents/08-business-product/customer-success-manager.md +287 -0
- package/.claude/archive/agents/08-business-product/legal-advisor.md +287 -0
- package/.claude/archive/agents/08-business-product/license-engineer.md +295 -0
- package/.claude/archive/agents/08-business-product/product-manager.md +287 -0
- package/.claude/archive/agents/08-business-product/project-manager.md +287 -0
- package/.claude/archive/agents/08-business-product/sales-engineer.md +287 -0
- package/.claude/archive/agents/08-business-product/scrum-master.md +287 -0
- package/.claude/archive/agents/08-business-product/technical-writer.md +287 -0
- package/.claude/archive/agents/08-business-product/ux-researcher.md +287 -0
- package/.claude/archive/agents/08-business-product/wordpress-master.md +316 -0
- package/.claude/archive/skills/competitive-ads-extractor/SKILL.md +293 -0
- package/.claude/archive/skills/developer-growth-analysis/SKILL.md +322 -0
- package/.claude/archive/skills/document-docx/LICENSE.txt +30 -0
- package/.claude/archive/skills/document-docx/SKILL.md +197 -0
- package/.claude/archive/skills/document-docx/docx-js.md +350 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-chart.xsd +1499 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-chartDrawing.xsd +146 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-diagram.xsd +1085 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-lockedCanvas.xsd +11 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-main.xsd +3081 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-picture.xsd +23 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-spreadsheetDrawing.xsd +185 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-wordprocessingDrawing.xsd +287 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/pml.xsd +1676 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-additionalCharacteristics.xsd +28 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-bibliography.xsd +144 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-commonSimpleTypes.xsd +174 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-customXmlDataProperties.xsd +25 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-customXmlSchemaProperties.xsd +18 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesCustom.xsd +59 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesExtended.xsd +56 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesVariantTypes.xsd +195 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-math.xsd +582 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-relationshipReference.xsd +25 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/sml.xsd +4439 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/vml-main.xsd +570 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/vml-officeDrawing.xsd +509 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/vml-presentationDrawing.xsd +12 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/vml-spreadsheetDrawing.xsd +108 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/vml-wordprocessingDrawing.xsd +96 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/wml.xsd +3646 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/xml.xsd +116 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ecma/fouth-edition/opc-contentTypes.xsd +42 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ecma/fouth-edition/opc-coreProperties.xsd +50 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ecma/fouth-edition/opc-digSig.xsd +49 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ecma/fouth-edition/opc-relationships.xsd +33 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/mce/mc.xsd +75 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-2010.xsd +560 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-2012.xsd +67 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-2018.xsd +14 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-cex-2018.xsd +20 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-cid-2016.xsd +13 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-sdtdatahash-2020.xsd +4 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-symex-2015.xsd +8 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/pack.py +159 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/unpack.py +29 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validate.py +69 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validation/__init__.py +15 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validation/base.py +951 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validation/docx.py +274 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validation/pptx.py +315 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validation/redlining.py +279 -0
- package/.claude/archive/skills/document-docx/ooxml.md +610 -0
- package/.claude/archive/skills/document-docx/scripts/__init__.py +1 -0
- package/.claude/archive/skills/document-docx/scripts/document.py +1276 -0
- package/.claude/archive/skills/document-docx/scripts/templates/comments.xml +3 -0
- package/.claude/archive/skills/document-docx/scripts/templates/commentsExtended.xml +3 -0
- package/.claude/archive/skills/document-docx/scripts/templates/commentsExtensible.xml +3 -0
- package/.claude/archive/skills/document-docx/scripts/templates/commentsIds.xml +3 -0
- package/.claude/archive/skills/document-docx/scripts/templates/people.xml +3 -0
- package/.claude/archive/skills/document-docx/scripts/utilities.py +374 -0
- package/.claude/archive/skills/document-pdf/LICENSE.txt +30 -0
- package/.claude/archive/skills/document-pdf/SKILL.md +294 -0
- package/.claude/archive/skills/document-pdf/forms.md +205 -0
- package/.claude/archive/skills/document-pdf/reference.md +612 -0
- package/.claude/archive/skills/document-pdf/scripts/check_bounding_boxes.py +70 -0
- package/.claude/archive/skills/document-pdf/scripts/check_bounding_boxes_test.py +226 -0
- package/.claude/archive/skills/document-pdf/scripts/check_fillable_fields.py +12 -0
- package/.claude/archive/skills/document-pdf/scripts/convert_pdf_to_images.py +35 -0
- package/.claude/archive/skills/document-pdf/scripts/create_validation_image.py +41 -0
- package/.claude/archive/skills/document-pdf/scripts/extract_form_field_info.py +152 -0
- package/.claude/archive/skills/document-pdf/scripts/fill_fillable_fields.py +114 -0
- package/.claude/archive/skills/document-pdf/scripts/fill_pdf_form_with_annotations.py +108 -0
- package/.claude/archive/skills/document-pptx/LICENSE.txt +30 -0
- package/.claude/archive/skills/document-pptx/SKILL.md +484 -0
- package/.claude/archive/skills/document-pptx/html2pptx.md +625 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-chart.xsd +1499 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-chartDrawing.xsd +146 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-diagram.xsd +1085 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-lockedCanvas.xsd +11 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-main.xsd +3081 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-picture.xsd +23 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-spreadsheetDrawing.xsd +185 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-wordprocessingDrawing.xsd +287 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/pml.xsd +1676 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-additionalCharacteristics.xsd +28 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-bibliography.xsd +144 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-commonSimpleTypes.xsd +174 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-customXmlDataProperties.xsd +25 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-customXmlSchemaProperties.xsd +18 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesCustom.xsd +59 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesExtended.xsd +56 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesVariantTypes.xsd +195 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-math.xsd +582 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-relationshipReference.xsd +25 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/sml.xsd +4439 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/vml-main.xsd +570 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/vml-officeDrawing.xsd +509 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/vml-presentationDrawing.xsd +12 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/vml-spreadsheetDrawing.xsd +108 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/vml-wordprocessingDrawing.xsd +96 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/wml.xsd +3646 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/xml.xsd +116 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ecma/fouth-edition/opc-contentTypes.xsd +42 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ecma/fouth-edition/opc-coreProperties.xsd +50 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ecma/fouth-edition/opc-digSig.xsd +49 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ecma/fouth-edition/opc-relationships.xsd +33 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/mce/mc.xsd +75 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-2010.xsd +560 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-2012.xsd +67 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-2018.xsd +14 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-cex-2018.xsd +20 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-cid-2016.xsd +13 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-sdtdatahash-2020.xsd +4 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-symex-2015.xsd +8 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/pack.py +159 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/unpack.py +29 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validate.py +69 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validation/__init__.py +15 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validation/base.py +951 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validation/docx.py +274 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validation/pptx.py +315 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validation/redlining.py +279 -0
- package/.claude/archive/skills/document-pptx/ooxml.md +427 -0
- package/.claude/archive/skills/document-pptx/scripts/html2pptx.js +979 -0
- package/.claude/archive/skills/document-pptx/scripts/inventory.py +1020 -0
- package/.claude/archive/skills/document-pptx/scripts/rearrange.py +231 -0
- package/.claude/archive/skills/document-pptx/scripts/replace.py +385 -0
- package/.claude/archive/skills/document-pptx/scripts/thumbnail.py +450 -0
- package/.claude/archive/skills/document-xlsx/LICENSE.txt +30 -0
- package/.claude/archive/skills/document-xlsx/SKILL.md +289 -0
- package/.claude/archive/skills/document-xlsx/recalc.py +178 -0
- package/.claude/archive/skills/image-enhancer/SKILL.md +99 -0
- package/.claude/archive/skills/meeting-insights-analyzer/SKILL.md +327 -0
- package/.claude/archive/skills/slack-gif-creator/LICENSE.txt +202 -0
- package/.claude/archive/skills/slack-gif-creator/SKILL.md +646 -0
- package/.claude/archive/skills/slack-gif-creator/core/color_palettes.py +302 -0
- package/.claude/archive/skills/slack-gif-creator/core/easing.py +230 -0
- package/.claude/archive/skills/slack-gif-creator/core/frame_composer.py +469 -0
- package/.claude/archive/skills/slack-gif-creator/core/gif_builder.py +246 -0
- package/.claude/archive/skills/slack-gif-creator/core/typography.py +357 -0
- package/.claude/archive/skills/slack-gif-creator/core/validators.py +264 -0
- package/.claude/archive/skills/slack-gif-creator/core/visual_effects.py +494 -0
- package/.claude/archive/skills/slack-gif-creator/requirements.txt +4 -0
- package/.claude/archive/skills/slack-gif-creator/templates/bounce.py +106 -0
- package/.claude/archive/skills/slack-gif-creator/templates/explode.py +331 -0
- package/.claude/archive/skills/slack-gif-creator/templates/fade.py +329 -0
- package/.claude/archive/skills/slack-gif-creator/templates/flip.py +291 -0
- package/.claude/archive/skills/slack-gif-creator/templates/kaleidoscope.py +211 -0
- package/.claude/archive/skills/slack-gif-creator/templates/morph.py +329 -0
- package/.claude/archive/skills/slack-gif-creator/templates/move.py +293 -0
- package/.claude/archive/skills/slack-gif-creator/templates/pulse.py +268 -0
- package/.claude/archive/skills/slack-gif-creator/templates/shake.py +127 -0
- package/.claude/archive/skills/slack-gif-creator/templates/slide.py +291 -0
- package/.claude/archive/skills/slack-gif-creator/templates/spin.py +269 -0
- package/.claude/archive/skills/slack-gif-creator/templates/wiggle.py +300 -0
- package/.claude/archive/skills/slack-gif-creator/templates/zoom.py +312 -0
- package/.claude/archive/skills/twitter-algorithm-optimizer/SKILL.md +327 -0
- package/.claude/archive/skills/video-downloader/SKILL.md +99 -0
- package/.claude/archive/skills/video-downloader/scripts/download_video.py +145 -0
- package/.claude/bash-whitelist-requests/2026-05-28-grep-find-rg.md +68 -0
- package/.claude/bash-whitelist-requests/2026-06-01-readonly-filters.md +76 -0
- package/.claude/bash-whitelist.txt +124 -0
- package/.claude/commands/agent-introspect.md +89 -0
- package/.claude/commands/apply-rules.md +363 -0
- package/.claude/commands/approve-design.md +219 -0
- package/.claude/commands/approve-org-money.md +267 -0
- package/.claude/commands/build.md +234 -0
- package/.claude/commands/commit.md +97 -0
- package/.claude/commands/context-fetch.md +113 -0
- package/.claude/commands/create-tool.md +496 -0
- package/.claude/commands/design-review.md +138 -0
- package/.claude/commands/design.md +807 -0
- package/.claude/commands/discharge-byproduct.md +208 -0
- package/.claude/commands/doc-review.md +165 -0
- package/.claude/commands/document-pair.md +76 -0
- package/.claude/commands/error-triage.md +435 -0
- package/.claude/commands/eval.md +70 -0
- package/.claude/commands/evolve.md +49 -0
- package/.claude/commands/finish-task.md +105 -0
- package/.claude/commands/gan-build.md +91 -0
- package/.claude/commands/gan-design.md +82 -0
- package/.claude/commands/gate-bypass.md +77 -0
- package/.claude/commands/gate-clear.md +45 -0
- package/.claude/commands/gate-status.md +46 -0
- package/.claude/commands/harness-audit.md +151 -0
- package/.claude/commands/hearing.md +138 -0
- package/.claude/commands/impact-check.md +486 -0
- package/.claude/commands/init-tasks.md +49 -0
- package/.claude/commands/instinct-export.md +47 -0
- package/.claude/commands/instinct-import.md +41 -0
- package/.claude/commands/instinct-status.md +43 -0
- package/.claude/commands/investigate.md +547 -0
- package/.claude/commands/learn.md +55 -0
- package/.claude/commands/lint-rules.md +400 -0
- package/.claude/commands/mode.md +58 -0
- package/.claude/commands/modify-feature.md +209 -0
- package/.claude/commands/module-review.md +149 -0
- package/.claude/commands/move-section.md +67 -0
- package/.claude/commands/new-draft.md +67 -0
- package/.claude/commands/new-feature.md +286 -0
- package/.claude/commands/new-task.md +156 -0
- package/.claude/commands/notification.md +107 -0
- package/.claude/commands/pm-start.md +119 -0
- package/.claude/commands/projects.md +32 -0
- package/.claude/commands/promote.md +43 -0
- package/.claude/commands/rasis-report.md +1323 -0
- package/.claude/commands/release-note.md +130 -0
- package/.claude/commands/reply-watch.md +149 -0
- package/.claude/commands/requirement.md +352 -0
- package/.claude/commands/resume-state.md +187 -0
- package/.claude/commands/reviewpr.md +118 -0
- package/.claude/commands/save-state.md +100 -0
- package/.claude/commands/sentry-pr.md +157 -0
- package/.claude/commands/start-task.md +87 -0
- package/.claude/commands/system-review.md +147 -0
- package/.claude/commands/task-bypass.md +70 -0
- package/.claude/commands/task-estimate.md +100 -0
- package/.claude/commands/template-apply.md +89 -0
- package/.claude/commands/test-design.md +116 -0
- package/.claude/commands/transfer-mismatch.md +317 -0
- package/.claude/commands/verify.md +51 -0
- package/.claude/evals/grader-loop-mode-autonomy.sh +165 -0
- package/.claude/evals/grader-system-reminder-attention.sh +99 -0
- package/.claude/evals/loop-mode-autonomy.md +121 -0
- package/.claude/evals/loop-mode-autonomy.results.template.md +133 -0
- package/.claude/evals/system-reminder-attention.md +123 -0
- package/.claude/evals/system-reminder-attention.results.template.md +93 -0
- package/.claude/evals/system-reminder-attention.runner.md +353 -0
- package/.claude/harness-config.local.yml +48 -0
- package/.claude/harness-config.yml +534 -0
- package/.claude/hooks/agent-marker-clear.sh +43 -0
- package/.claude/hooks/agent-marker-set.sh +40 -0
- package/.claude/hooks/agent-router-suggest.sh +123 -0
- package/.claude/hooks/autonomous-action-guard.sh +242 -0
- package/.claude/hooks/byproduct-discharge-guard.sh +128 -0
- package/.claude/hooks/check-md-mermaid.sh +144 -0
- package/.claude/hooks/check-required-env.sh +95 -0
- package/.claude/hooks/check-serena-mcp.sh +123 -0
- package/.claude/hooks/confidence-gate.sh +139 -0
- package/.claude/hooks/context-budget.sh +233 -0
- package/.claude/hooks/delegation-guard.sh +99 -0
- package/.claude/hooks/dispatcher-manifest.tsv +38 -0
- package/.claude/hooks/draft-flow-guard.sh +304 -0
- package/.claude/hooks/failure-loop-detect.sh +139 -0
- package/.claude/hooks/gateguard.sh +209 -0
- package/.claude/hooks/improvement-proposal.sh +112 -0
- package/.claude/hooks/init-tasks-on-start.sh +34 -0
- package/.claude/hooks/lib/bypass-logger.sh +82 -0
- package/.claude/hooks/lib/confidence-gate/bypass.sh +48 -0
- package/.claude/hooks/lib/confidence-gate/extract.sh +99 -0
- package/.claude/hooks/lib/confidence-gate/major-agent-filter.sh +59 -0
- package/.claude/hooks/lib/confidence-gate/messages.sh +53 -0
- package/.claude/hooks/lib/config-loader.sh +784 -0
- package/.claude/hooks/lib/delegation-guard/bash-whitelist.sh +323 -0
- package/.claude/hooks/lib/delegation-guard/git-deny.sh +188 -0
- package/.claude/hooks/lib/delegation-guard/protected-paths.sh +105 -0
- package/.claude/hooks/lib/delegation-guard/subagent-detect.sh +40 -0
- package/.claude/hooks/lib/dispatcher-core.sh +454 -0
- package/.claude/hooks/lib/improvement-proposal/aggregate.py +466 -0
- package/.claude/hooks/lib/improvement-proposal/cache.sh +78 -0
- package/.claude/hooks/lib/mode-loader.sh +80 -0
- package/.claude/hooks/lib/next-actions-parser.sh +153 -0
- package/.claude/hooks/lib/project-root.sh +60 -0
- package/.claude/hooks/list-md-plan-first-reminder.sh +143 -0
- package/.claude/hooks/loop-auto-progress-reminder.sh +108 -0
- package/.claude/hooks/loop-confirmation-detector.sh +241 -0
- package/.claude/hooks/mode-asana-prompt.sh +61 -0
- package/.claude/hooks/mode-enforce.sh +57 -0
- package/.claude/hooks/mode-session-start.sh +93 -0
- package/.claude/hooks/next-actions-surface.sh +136 -0
- package/.claude/hooks/notification-dispatcher.sh +9 -0
- package/.claude/hooks/notify.sh +27 -0
- package/.claude/hooks/parallel-subagent-reminder.sh +469 -0
- package/.claude/hooks/post-tool-use-dispatcher.sh +9 -0
- package/.claude/hooks/pre-tool-use-dispatcher.sh +9 -0
- package/.claude/hooks/reviewer-count-guard.sh +313 -0
- package/.claude/hooks/session-help-surface.sh +192 -0
- package/.claude/hooks/session-start-dispatcher.sh +9 -0
- package/.claude/hooks/session-start-wrapper.sh +156 -0
- package/.claude/hooks/stale-harness-detect.sh +422 -0
- package/.claude/hooks/stop-dispatcher.sh +9 -0
- package/.claude/hooks/stop.sh +25 -0
- package/.claude/hooks/subagent-stop-dispatcher.sh +9 -0
- package/.claude/hooks/task-rule-guard.sh +317 -0
- package/.claude/hooks/tests/run-tests.sh +23 -0
- package/.claude/hooks/tests/test-agent-marker-warn.sh +86 -0
- package/.claude/hooks/tests/test-check-required-env.sh +138 -0
- package/.claude/hooks/tests/test-confidence-gate.sh +170 -0
- package/.claude/hooks/tests/test-config-env-override.sh +220 -0
- package/.claude/hooks/tests/test-gate-disable.sh +118 -0
- package/.claude/hooks/tests/test-improvement-proposal.sh +284 -0
- package/.claude/hooks/tool-call-slip-detector.sh +188 -0
- package/.claude/hooks/user-prompt-submit-dispatcher.sh +9 -0
- package/.claude/hooks/why-x5-reminder.sh +45 -0
- package/.claude/hooks/why-x5-violation-detect.sh +152 -0
- package/.claude/hooks/workflow-guard.sh +263 -0
- package/.claude/mode.yml +28 -0
- package/.claude/project-rules/development-process.md +8 -0
- package/.claude/project-rules/git-workflow.md +8 -0
- package/.claude/project-rules/modes.md +8 -0
- package/.claude/project-rules/self-improvement.md +8 -0
- package/.claude/project-rules/task-management.md +8 -0
- package/.claude/project-rules/why-x5-output.md +8 -0
- package/.claude/project-rules/workflow.md +8 -0
- package/.claude/rules/development-process.md +293 -0
- package/.claude/rules/git-workflow.md +71 -0
- package/.claude/rules/modes.md +189 -0
- package/.claude/rules/self-improvement.md +76 -0
- package/.claude/rules/task-management.md +261 -0
- package/.claude/rules/why-x5-output.md +97 -0
- package/.claude/rules/workflow.md +157 -0
- package/.claude/rules-details/README.md +67 -0
- package/.claude/rules-details/development-process/confidence-gate.md +22 -0
- package/.claude/rules-details/development-process/cross-repo-write.md +35 -0
- package/.claude/rules-details/development-process/delegation-requirements.md +158 -0
- package/.claude/rules-details/development-process/harness-sync.md +21 -0
- package/.claude/rules-details/development-process/origin.md +13 -0
- package/.claude/rules-details/development-process/parallelization-origin.md +22 -0
- package/.claude/rules-details/development-process/research-reuse.md +22 -0
- package/.claude/rules-details/development-process/staging-strategy.md +47 -0
- package/.claude/rules-details/modes/artifacts.md +34 -0
- package/.claude/rules-details/modes/compliance-items.md +120 -0
- package/.claude/rules-details/modes/five-layer-enforcement.md +46 -0
- package/.claude/rules-details/modes/mode-hooks.md +51 -0
- package/.claude/rules-details/modes/origin.md +17 -0
- package/.claude/rules-details/self-improvement/l4-mechanics.md +36 -0
- package/.claude/rules-details/self-improvement/origin.md +8 -0
- package/.claude/rules-details/self-improvement/related-skills.md +35 -0
- package/.claude/rules-details/self-improvement/when-to-use-layers.md +39 -0
- package/.claude/rules-details/task-management/hook-enforcement.md +25 -0
- package/.claude/rules-details/task-management/mandatory-reading.md +20 -0
- package/.claude/rules-details/task-management/origin.md +12 -0
- package/.claude/rules-details/task-management/parking-lot.md +26 -0
- package/.claude/rules-details/task-management/plan-first.md +44 -0
- package/.claude/rules-details/task-management/six-articles.md +68 -0
- package/.claude/rules-details/task-management/task-migration.md +16 -0
- package/.claude/rules-details/task-management/ui-detection.md +11 -0
- package/.claude/rules-details/why-x5-output/examples.md +41 -0
- package/.claude/rules-details/why-x5-output/feedback-memory.md +14 -0
- package/.claude/rules-details/why-x5-output/origin.md +10 -0
- package/.claude/rules-details/why-x5-output/v1-v10-history.md +19 -0
- package/.claude/rules-details/workflow/10-stage.md +43 -0
- package/.claude/rules-details/workflow/14-stage.md +52 -0
- package/.claude/rules-details/workflow/byproduct-discharge.md +39 -0
- package/.claude/rules-details/workflow/draft-flow-guard.md +31 -0
- package/.claude/rules-details/workflow/fan-out.md +70 -0
- package/.claude/rules-details/workflow/mece-20.md +36 -0
- package/.claude/rules-details/workflow/origin.md +14 -0
- package/.claude/rules-details/workflow/refactoring.md +48 -0
- package/.claude/rules-details/workflow/related-skills.md +22 -0
- package/.claude/rules-details/workflow/reviewer-prompt.md +100 -0
- package/.claude/rules-details/workflow/session-persistence.md +46 -0
- package/.claude/rules-details/workflow/workflow-guard.md +36 -0
- package/.claude/scripts/__pycache__/harness-audit.cpython-313.pyc +0 -0
- package/.claude/scripts/agent-stocktake.py +421 -0
- package/.claude/scripts/check-md-mermaid.mjs +138 -0
- package/.claude/scripts/generate-settings.sh +0 -0
- package/.claude/scripts/harness-audit.py +1547 -0
- package/.claude/scripts/hc-config.sh +2265 -0
- package/.claude/scripts/init-tasks.sh +117 -0
- package/.claude/scripts/lib/enforcement-matrix-parse.sh +81 -0
- package/.claude/scripts/lib/hc-config-metadata.sh +190 -0
- package/.claude/scripts/lib/hc-config-web-server.js +1528 -0
- package/.claude/scripts/lib/hc-config-web-ui/app.js +1054 -0
- package/.claude/scripts/lib/hc-config-web-ui/index.html +130 -0
- package/.claude/scripts/lib/hc-config-web-ui/style.css +522 -0
- package/.claude/scripts/new-task-helper.sh +432 -0
- package/.claude/scripts/observe-repair.sh +437 -0
- package/.claude/scripts/observe-rotate.sh +311 -0
- package/.claude/scripts/statusline.sh +239 -0
- package/.claude/settings.generated.preview.json +211 -0
- package/.claude/settings.json +215 -0
- package/.claude/settings.local.example.json +20 -0
- package/.claude/settings.local.json +36 -0
- package/.claude/skills/agent-introspection-debugging/SKILL.md +123 -0
- package/.claude/skills/agent-router/README.md +137 -0
- package/.claude/skills/agent-router/SKILL.md +74 -0
- package/.claude/skills/agent-router/dispatch-table.yml +352 -0
- package/.claude/skills/agent-router/router.py +1086 -0
- package/.claude/skills/agent-router/samples/representative_prompts.txt +24 -0
- package/.claude/skills/agent-router/tests/__init__.py +0 -0
- package/.claude/skills/agent-router/tests/test_router.py +762 -0
- package/.claude/skills/artifacts-builder/LICENSE.txt +202 -0
- package/.claude/skills/artifacts-builder/SKILL.md +74 -0
- package/.claude/skills/artifacts-builder/scripts/bundle-artifact.sh +54 -0
- package/.claude/skills/artifacts-builder/scripts/init-artifact.sh +322 -0
- package/.claude/skills/artifacts-builder/scripts/shadcn-components.tar.gz +0 -0
- package/.claude/skills/brand-guidelines/LICENSE.txt +202 -0
- package/.claude/skills/brand-guidelines/SKILL.md +73 -0
- package/.claude/skills/canvas-design/LICENSE.txt +202 -0
- package/.claude/skills/canvas-design/SKILL.md +130 -0
- package/.claude/skills/canvas-design/canvas-fonts/ArsenalSC-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/ArsenalSC-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/BigShoulders-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/BigShoulders-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/BigShoulders-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Boldonse-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Boldonse-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/BricolageGrotesque-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/BricolageGrotesque-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/BricolageGrotesque-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/CrimsonPro-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/CrimsonPro-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/CrimsonPro-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/CrimsonPro-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/DMMono-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/DMMono-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/EricaOne-OFL.txt +94 -0
- package/.claude/skills/canvas-design/canvas-fonts/EricaOne-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/GeistMono-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/GeistMono-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/GeistMono-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Gloock-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Gloock-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexMono-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexMono-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexMono-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexSerif-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexSerif-BoldItalic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexSerif-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexSerif-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSans-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSans-BoldItalic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSans-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSans-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSans-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSerif-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSerif-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Italiana-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Italiana-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/JetBrainsMono-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/JetBrainsMono-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/JetBrainsMono-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Jura-Light.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Jura-Medium.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Jura-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/LibreBaskerville-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/LibreBaskerville-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Lora-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Lora-BoldItalic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Lora-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Lora-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Lora-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/NationalPark-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/NationalPark-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/NationalPark-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/NothingYouCouldDo-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/NothingYouCouldDo-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Outfit-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Outfit-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Outfit-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/PixelifySans-Medium.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/PixelifySans-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/PoiretOne-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/PoiretOne-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/RedHatMono-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/RedHatMono-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/RedHatMono-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Silkscreen-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Silkscreen-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/SmoochSans-Medium.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/SmoochSans-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Tektur-Medium.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Tektur-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Tektur-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/WorkSans-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/WorkSans-BoldItalic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/WorkSans-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/WorkSans-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/WorkSans-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/YoungSerif-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/YoungSerif-Regular.ttf +0 -0
- package/.claude/skills/changelog-generator/SKILL.md +104 -0
- package/.claude/skills/check-md-mermaid/SKILL.md +62 -0
- package/.claude/skills/connect/SKILL.md +156 -0
- package/.claude/skills/connect-apps/SKILL.md +80 -0
- package/.claude/skills/content-research-writer/SKILL.md +538 -0
- package/.claude/skills/continuous-agent-loop/SKILL.md +187 -0
- package/.claude/skills/continuous-learning-v2/SKILL.md +238 -0
- package/.claude/skills/continuous-learning-v2/config.json +35 -0
- package/.claude/skills/continuous-learning-v2/hooks/observe.sh +333 -0
- package/.claude/skills/continuous-learning-v2/instinct-cli.py +406 -0
- package/.claude/skills/domain-name-brainstormer/SKILL.md +212 -0
- package/.claude/skills/eval-harness/SKILL.md +100 -0
- package/.claude/skills/eval-harness/swe-bench/README.md +80 -0
- package/.claude/skills/eval-harness/swe-bench/config.yml +29 -0
- package/.claude/skills/eval-harness/swe-bench/docker/Dockerfile +25 -0
- package/.claude/skills/eval-harness/swe-bench/docker/docker-compose.yml +18 -0
- package/.claude/skills/eval-harness/swe-bench/results/dry-run-2026-05-04.json +137 -0
- package/.claude/skills/eval-harness/swe-bench/results/dry-run-comparison-2026-05-04.md +112 -0
- package/.claude/skills/eval-harness/swe-bench/results/dry-run-improved-2026-05-04.json +165 -0
- package/.claude/skills/eval-harness/swe-bench/results/raw/astropy__astropy-12907.patch +12 -0
- package/.claude/skills/eval-harness/swe-bench/results/raw/astropy__astropy-12907.txt +322 -0
- package/.claude/skills/eval-harness/swe-bench/results/raw/astropy__astropy-12907.whole-file.txt +322 -0
- package/.claude/skills/eval-harness/swe-bench/runner.py +845 -0
- package/.claude/skills/eval-harness/swe-bench/scoring.py +298 -0
- package/.claude/skills/eval-harness/swe-bench/tasks/fetch_tasks.py +81 -0
- package/.claude/skills/eval-harness/swe-bench/tasks/lite-50.json +702 -0
- package/.claude/skills/file-organizer/SKILL.md +433 -0
- package/.claude/skills/gan-style-harness/SKILL.md +111 -0
- package/.claude/skills/gateguard/.gateguard.yml +47 -0
- package/.claude/skills/gateguard/SKILL.md +99 -0
- package/.claude/skills/internal-comms/LICENSE.txt +202 -0
- package/.claude/skills/internal-comms/SKILL.md +32 -0
- package/.claude/skills/internal-comms/examples/3p-updates.md +47 -0
- package/.claude/skills/internal-comms/examples/company-newsletter.md +65 -0
- package/.claude/skills/internal-comms/examples/faq-answers.md +30 -0
- package/.claude/skills/internal-comms/examples/general-comms.md +16 -0
- package/.claude/skills/invoice-organizer/SKILL.md +446 -0
- package/.claude/skills/karpathy-guidelines/SKILL.md +67 -0
- package/.claude/skills/langsmith-fetch/SKILL.md +485 -0
- package/.claude/skills/lead-research-assistant/SKILL.md +199 -0
- package/.claude/skills/mcp-builder/LICENSE.txt +202 -0
- package/.claude/skills/mcp-builder/SKILL.md +328 -0
- package/.claude/skills/mcp-builder/reference/evaluation.md +602 -0
- package/.claude/skills/mcp-builder/reference/mcp_best_practices.md +915 -0
- package/.claude/skills/mcp-builder/reference/node_mcp_server.md +916 -0
- package/.claude/skills/mcp-builder/reference/python_mcp_server.md +752 -0
- package/.claude/skills/mcp-builder/scripts/connections.py +151 -0
- package/.claude/skills/mcp-builder/scripts/evaluation.py +373 -0
- package/.claude/skills/mcp-builder/scripts/example_evaluation.xml +22 -0
- package/.claude/skills/mcp-builder/scripts/requirements.txt +2 -0
- package/.claude/skills/raffle-winner-picker/SKILL.md +159 -0
- package/.claude/skills/repo-map/README.md +125 -0
- package/.claude/skills/repo-map/SKILL.md +128 -0
- package/.claude/skills/repo-map/examples/sample-output.md +1194 -0
- package/.claude/skills/repo-map/repo-map.py +715 -0
- package/.claude/skills/salesforce-e2e-testing/SKILL.md +116 -0
- package/.claude/skills/salesforce-e2e-testing/catalog-template.md +161 -0
- package/.claude/skills/salesforce-e2e-testing/methodology.md +179 -0
- package/.claude/skills/salesforce-e2e-testing/observation-rules.md +280 -0
- package/.claude/skills/salesforce-e2e-testing/pattern-taxonomy.md +392 -0
- package/.claude/skills/salesforce-e2e-testing/procedure-template.md +376 -0
- package/.claude/skills/skill-creator/LICENSE.txt +202 -0
- package/.claude/skills/skill-creator/SKILL.md +209 -0
- package/.claude/skills/skill-creator/scripts/init_skill.py +303 -0
- package/.claude/skills/skill-creator/scripts/package_skill.py +110 -0
- package/.claude/skills/skill-creator/scripts/quick_validate.py +65 -0
- package/.claude/skills/skill-share/SKILL.md +80 -0
- package/.claude/skills/tailored-resume-generator/SKILL.md +345 -0
- package/.claude/skills/template-skill/SKILL.md +6 -0
- package/.claude/skills/theme-factory/LICENSE.txt +202 -0
- package/.claude/skills/theme-factory/SKILL.md +59 -0
- package/.claude/skills/theme-factory/theme-showcase.pdf +0 -0
- package/.claude/skills/theme-factory/themes/arctic-frost.md +19 -0
- package/.claude/skills/theme-factory/themes/botanical-garden.md +19 -0
- package/.claude/skills/theme-factory/themes/desert-rose.md +19 -0
- package/.claude/skills/theme-factory/themes/forest-canopy.md +19 -0
- package/.claude/skills/theme-factory/themes/golden-hour.md +19 -0
- package/.claude/skills/theme-factory/themes/midnight-galaxy.md +19 -0
- package/.claude/skills/theme-factory/themes/modern-minimalist.md +19 -0
- package/.claude/skills/theme-factory/themes/ocean-depths.md +19 -0
- package/.claude/skills/theme-factory/themes/sunset-boulevard.md +19 -0
- package/.claude/skills/theme-factory/themes/tech-innovation.md +19 -0
- package/.claude/skills/verification-loop/SKILL.md +129 -0
- package/.claude/skills/webapp-testing/LICENSE.txt +202 -0
- package/.claude/skills/webapp-testing/SKILL.md +96 -0
- package/.claude/skills/webapp-testing/examples/console_logging.py +35 -0
- package/.claude/skills/webapp-testing/examples/element_discovery.py +40 -0
- package/.claude/skills/webapp-testing/examples/static_html_automation.py +33 -0
- package/.claude/skills/webapp-testing/scripts/with_server.py +106 -0
- package/.claude/templates/docs/draft/_DRAFT_TEMPLATE.md +162 -0
- package/.claude/templates/docs/draft/_TEST_DESIGN_TEMPLATE.md +76 -0
- package/.claude/templates/docs/tasks/_TASK_TEMPLATE.md +276 -0
- package/.claude/templates/docs/tasks/list.md +80 -0
- package/.claude/templates/docs/tasks/parking-lot.md +82 -0
- package/.claude/templates/settings.user-level.json.template +306 -0
- package/.claude/tests/SMOKE-CLASSIFICATION.md +199 -0
- package/.claude/tests/action-space-count-smoke.sh +130 -0
- package/.claude/tests/agent-router-suggest-wiring-smoke.sh +188 -0
- package/.claude/tests/audit-followups-smoke.sh +158 -0
- package/.claude/tests/autonomous-action-guard-relaxation-smoke.sh +479 -0
- package/.claude/tests/autonomous-action-guard-smoke.sh +187 -0
- package/.claude/tests/check-serena-mcp-smoke.sh +156 -0
- package/.claude/tests/common-rules-import-smoke.sh +209 -0
- package/.claude/tests/confidence-gate-smoke.sh +220 -0
- package/.claude/tests/config-feature-toggles-smoke.sh +389 -0
- package/.claude/tests/context-budget-smoke.sh +222 -0
- package/.claude/tests/custom-pm-commands-smoke.sh +93 -0
- package/.claude/tests/delegation-guard-code-smoke.sh +244 -0
- package/.claude/tests/delegation-guard-deny-layers-smoke.sh +356 -0
- package/.claude/tests/delegation-guard-readonly-filter-smoke.sh +205 -0
- package/.claude/tests/delegation-guard-search-whitelist-smoke.sh +152 -0
- package/.claude/tests/delegation-guard-segment-smoke.sh +109 -0
- package/.claude/tests/dispatcher-blocker-invariance-smoke.sh +700 -0
- package/.claude/tests/dispatcher-core-smoke.sh +452 -0
- package/.claude/tests/dispatcher-merge-matrix-smoke.sh +825 -0
- package/.claude/tests/dispatcher-success-stdout-smoke.sh +290 -0
- package/.claude/tests/draft-flow-guard-approved-dir-smoke.sh +234 -0
- package/.claude/tests/draft-flow-guard-smoke.sh +194 -0
- package/.claude/tests/dual-mode-portability-smoke.sh +131 -0
- package/.claude/tests/effective-hook-matrix-smoke.sh +261 -0
- package/.claude/tests/enforcement-mismatch-smoke.sh +263 -0
- package/.claude/tests/fixtures/cascade-sample.jsonl +9 -0
- package/.claude/tests/fixtures/next-actions/case-clean.md +14 -0
- package/.claude/tests/fixtures/next-actions/case-with-red.md +16 -0
- package/.claude/tests/fixtures/next-actions/case-with-yellow-only.md +14 -0
- package/.claude/tests/fixtures/normal-broken-scatter.jsonl +5 -0
- package/.claude/tests/fixtures/task-71/blocker-baseline.tsv +24 -0
- package/.claude/tests/fixtures/task-71/settings-inventory.tsv +37 -0
- package/.claude/tests/fixtures/transcript-50pct.jsonl +2 -0
- package/.claude/tests/fixtures/transcript-60pct.jsonl +2 -0
- package/.claude/tests/fixtures/transcript-80pct.jsonl +2 -0
- package/.claude/tests/fixtures/transcript-95pct.jsonl +2 -0
- package/.claude/tests/fixtures/workflow-guard/case-2-mid.json +21 -0
- package/.claude/tests/fixtures/workflow-guard/case-3-blocked.json +33 -0
- package/.claude/tests/fixtures/workflow-guard/case-4-clean.json +27 -0
- package/.claude/tests/fixtures/workflow-guard/case-8-modify.json +23 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-1.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-2.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-3.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-4.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-5.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-6.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-7.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-8.json +1 -0
- package/.claude/tests/gateguard-smoke.sh +213 -0
- package/.claude/tests/git-deny-mainline-policy-smoke.sh +222 -0
- package/.claude/tests/harness-audit-c-batch-smoke.sh +270 -0
- package/.claude/tests/harness-audit-compare-smoke.sh +186 -0
- package/.claude/tests/harness-audit-pipeline-health-smoke.sh +326 -0
- package/.claude/tests/harness-config-local-smoke.sh +232 -0
- package/.claude/tests/hc-config-git-policy-smoke.sh +241 -0
- package/.claude/tests/hc-config-key-parity-smoke.sh +149 -0
- package/.claude/tests/hc-config-migration-smoke.sh +251 -0
- package/.claude/tests/hc-config-script-smoke.sh +1106 -0
- package/.claude/tests/hc-config-tui-smoke.sh +801 -0
- package/.claude/tests/hc-config-web-ui-smoke.sh +3224 -0
- package/.claude/tests/hook-cwd-robustness-smoke.sh +206 -0
- package/.claude/tests/hook-frequency-tweaks-smoke.sh +312 -0
- package/.claude/tests/improvement-proposal-cache-smoke.sh +238 -0
- package/.claude/tests/install-sh-overwrite-all-smoke.sh +274 -0
- package/.claude/tests/install-sh-regen-settings-smoke.sh +301 -0
- package/.claude/tests/install-sh-sync-drift-smoke.sh +285 -0
- package/.claude/tests/layer-b-context-isolation-smoke.sh +392 -0
- package/.claude/tests/list-md-plan-first-reminder-smoke.sh +313 -0
- package/.claude/tests/loop-auto-progress-smoke.sh +372 -0
- package/.claude/tests/loop-confirmation-detector-smoke.sh +674 -0
- package/.claude/tests/new-task-batch-update-smoke.sh +664 -0
- package/.claude/tests/next-actions-hooks-smoke.sh +283 -0
- package/.claude/tests/npx-cli-smoke.sh +696 -0
- package/.claude/tests/observe-flock-smoke.sh +223 -0
- package/.claude/tests/observe-jq-parse-smoke.sh +250 -0
- package/.claude/tests/observe-repair-smoke.sh +475 -0
- package/.claude/tests/observe-rotate-smoke.sh +428 -0
- package/.claude/tests/observe-subagent-stop-smoke.sh +476 -0
- package/.claude/tests/parallel-subagent-reminder-smoke.sh +918 -0
- package/.claude/tests/project-root-smoke.sh +140 -0
- package/.claude/tests/project-rules-protection-smoke.sh +199 -0
- package/.claude/tests/review-required-min-count-smoke.sh +286 -0
- package/.claude/tests/reviewer-count-guard-smoke.sh +490 -0
- package/.claude/tests/rule-architecture-smoke.sh +418 -0
- package/.claude/tests/rule-change-draft-flow-guard-smoke.sh +343 -0
- package/.claude/tests/run-all-smokes.sh +340 -0
- package/.claude/tests/session-help-surface-smoke.sh +224 -0
- package/.claude/tests/session-start-parallel-smoke.sh +165 -0
- package/.claude/tests/sessionstart-budget-smoke.sh +185 -0
- package/.claude/tests/sessionstart-footprint-smoke.sh +258 -0
- package/.claude/tests/settings-dispatcher-baseline-smoke.sh +709 -0
- package/.claude/tests/settings-generation-feature-pruning-smoke.sh +196 -0
- package/.claude/tests/stale-harness-detect-smoke.sh +974 -0
- package/.claude/tests/statusline-smoke.sh +180 -0
- package/.claude/tests/task-rule-guard-smoke.sh +656 -0
- package/.claude/tests/tool-call-slip-detector-smoke.sh +101 -0
- package/.claude/tests/wave-precheck-template-smoke.sh +159 -0
- package/.claude/tests/why-x5-violation-detect-smoke.sh +157 -0
- package/.claude/tests/workflow-guard-smoke.sh +266 -0
- package/CLAUDE.md +75 -0
- package/LICENSE +21 -0
- package/README.md +790 -0
- package/bin/cli.js +395 -0
- package/docs/INVENTORY.md +163 -0
- package/install.sh +769 -0
- package/package.json +25 -0
|
@@ -0,0 +1,323 @@
|
|
|
1
|
+
#!/usr/bin/env bash
|
|
2
|
+
# bash-whitelist.sh — Bash 経路の whitelist 照合 + segment splitter + path leak guard
|
|
3
|
+
#
|
|
4
|
+
# 提供関数:
|
|
5
|
+
# split_command_segments <cmd> — quote/heredoc aware なコマンド分割 (Case 1-9 検証済)
|
|
6
|
+
# check_bash_inline_override <cmd> — CLAUDE_ALLOW_MAIN_PUSH= etc. inline override 検出
|
|
7
|
+
# check_bash_whitelist <cmd> — whitelist 照合 + path leak guard
|
|
8
|
+
|
|
9
|
+
# --- inline env-var override 検出 (Hook バイパス封じ) ---
|
|
10
|
+
check_bash_inline_override() {
|
|
11
|
+
local cmd="$1"
|
|
12
|
+
if printf '%s' "$cmd" | grep -qE '(^|[[:space:];&|])CLAUDE_(ALLOW_MAIN_PUSH|HARNESS_ROLE)='; then
|
|
13
|
+
echo '{"decision":"block","reason":"[ハーネス保全] コマンド内に CLAUDE_ALLOW_MAIN_PUSH= / CLAUDE_HARNESS_ROLE= の inline 設定が含まれています。Hook のバイパスは禁止。承認が必要なら user に申請してください。"}'
|
|
14
|
+
exit 0
|
|
15
|
+
fi
|
|
16
|
+
}
|
|
17
|
+
|
|
18
|
+
# === segment splitter ===
|
|
19
|
+
# Bash コマンドを &&, ||, ;, | で分割して各セグメントを whitelist 照合する。
|
|
20
|
+
# quote-aware 実装: シングル/ダブルクォート内 + escape (\\) 後の特殊文字を保護。
|
|
21
|
+
# heredoc 本文 (<<EOF / <<-EOF / <<'EOF' / <<"EOF") は 1 つの string literal として
|
|
22
|
+
# 扱い、segment splitter から除外する (2026-05-23 修正、Case 7-9 で検証)。
|
|
23
|
+
#
|
|
24
|
+
# 出力は segment 間を \n、segment 内部の改行 (heredoc 本文等) はそのまま保持する。
|
|
25
|
+
# 外側読み取り側は heredoc 内改行も別 segment として扱わない実装にする必要があるが、
|
|
26
|
+
# 本実装では splitter 出力時に「heredoc/quoted 内の改行を space に置換」する shortcut で
|
|
27
|
+
# 単純化する。whitelist は line-start prefix match なので、各 segment の最初の token
|
|
28
|
+
# (例: `git`, `npm`) さえ正しく取れれば照合可能。
|
|
29
|
+
#
|
|
30
|
+
# 検証: .claude/tests/delegation-guard-segment-smoke.sh Case 1-9
|
|
31
|
+
split_command_segments() (
|
|
32
|
+
set -uo pipefail
|
|
33
|
+
# awk に入力全体を 1 つの record として渡す (RS で paragraph mode、改行を含む multiline cmd 対応)
|
|
34
|
+
printf '%s' "$1" | awk 'BEGIN { RS = "\x00" } {
|
|
35
|
+
cmd = $0
|
|
36
|
+
out = ""
|
|
37
|
+
i = 1
|
|
38
|
+
in_single = 0
|
|
39
|
+
in_double = 0
|
|
40
|
+
escape = 0
|
|
41
|
+
in_heredoc = 0
|
|
42
|
+
heredoc_delim = ""
|
|
43
|
+
heredoc_dash = 0
|
|
44
|
+
n = length(cmd)
|
|
45
|
+
while (i <= n) {
|
|
46
|
+
c = substr(cmd, i, 1)
|
|
47
|
+
|
|
48
|
+
# === heredoc 本文中の処理 ===
|
|
49
|
+
# heredoc 本文は segment splitter / quote tracker を適用しない。
|
|
50
|
+
# 改行は " " (space) に置換して segment splitter (外側 \n 区切り) に
|
|
51
|
+
# 誤検出されないようにする。delimiter 行を見たら heredoc 終了。
|
|
52
|
+
if (in_heredoc) {
|
|
53
|
+
if (c == "\n") {
|
|
54
|
+
# 次行 (line_end まで) を抽出して delimiter 判定
|
|
55
|
+
next_line_end = index(substr(cmd, i+1), "\n")
|
|
56
|
+
if (next_line_end == 0) {
|
|
57
|
+
next_line = substr(cmd, i+1)
|
|
58
|
+
next_line_len = length(next_line)
|
|
59
|
+
} else {
|
|
60
|
+
next_line = substr(cmd, i+1, next_line_end - 1)
|
|
61
|
+
next_line_len = next_line_end - 1
|
|
62
|
+
}
|
|
63
|
+
# <<-EOF 形式は先頭タブを strip して比較
|
|
64
|
+
check_line = next_line
|
|
65
|
+
if (heredoc_dash) {
|
|
66
|
+
sub(/^\t+/, "", check_line)
|
|
67
|
+
}
|
|
68
|
+
if (check_line == heredoc_delim) {
|
|
69
|
+
# delimiter 行: 改行を space に置換、delimiter 行はそのまま追記、heredoc 終了
|
|
70
|
+
# delimiter 行直後に続く文字 (例: `\n)\"`) は実 bash では heredoc の
|
|
71
|
+
# コマンド置換 ($(...)) 内とみなされるが、本 parser は $() を追えないので
|
|
72
|
+
# 「delimiter 直後の改行も heredoc 続きの一部」として空白に置換し、
|
|
73
|
+
# segment splitter が誤反応しないようにする (簡略実装、Case 7-9 で検証)。
|
|
74
|
+
out = out " " next_line
|
|
75
|
+
i += 1 + next_line_len
|
|
76
|
+
in_heredoc = 0
|
|
77
|
+
heredoc_delim = ""
|
|
78
|
+
heredoc_dash = 0
|
|
79
|
+
# delimiter 行直後の改行 (もしあれば) も space に置換
|
|
80
|
+
if (i <= n && substr(cmd, i, 1) == "\n") {
|
|
81
|
+
out = out " "
|
|
82
|
+
i++
|
|
83
|
+
}
|
|
84
|
+
continue
|
|
85
|
+
}
|
|
86
|
+
# 通常の本文行: 改行を space に置換して継続
|
|
87
|
+
out = out " "
|
|
88
|
+
i++
|
|
89
|
+
continue
|
|
90
|
+
}
|
|
91
|
+
# 本文中の普通の文字: そのまま追記 (| & ; 等の特殊文字も literal 扱い)
|
|
92
|
+
out = out c
|
|
93
|
+
i++
|
|
94
|
+
continue
|
|
95
|
+
}
|
|
96
|
+
|
|
97
|
+
# === heredoc 外: 通常 parser ===
|
|
98
|
+
if (escape) {
|
|
99
|
+
out = out c
|
|
100
|
+
escape = 0
|
|
101
|
+
i++
|
|
102
|
+
continue
|
|
103
|
+
}
|
|
104
|
+
if (c == "\\" && in_single == 0) {
|
|
105
|
+
out = out c
|
|
106
|
+
escape = 1
|
|
107
|
+
i++
|
|
108
|
+
continue
|
|
109
|
+
}
|
|
110
|
+
if (c == "\x27" && in_double == 0) {
|
|
111
|
+
in_single = 1 - in_single
|
|
112
|
+
out = out c
|
|
113
|
+
i++
|
|
114
|
+
continue
|
|
115
|
+
}
|
|
116
|
+
if (c == "\"" && in_single == 0) {
|
|
117
|
+
in_double = 1 - in_double
|
|
118
|
+
out = out c
|
|
119
|
+
i++
|
|
120
|
+
continue
|
|
121
|
+
}
|
|
122
|
+
|
|
123
|
+
# === heredoc 開始 marker 検出 ===
|
|
124
|
+
# `<<EOF` / `<<-EOF` / `<<'\''EOF'\''` / `<<"EOF"` 全形式を検出。
|
|
125
|
+
# 注: 厳密 bash 仕様では quote 内 `<<` は heredoc にならないが、本 parser は
|
|
126
|
+
# $() / ``などのコマンド置換スコープを追えないため、quote 状態に関係なく検出する。
|
|
127
|
+
# これは `git commit -m "$(cat <<'\''EOF'\'' ... EOF)"` 形式を救うために必要。
|
|
128
|
+
# 文字列内に literal で `<<WORD` が出現するケースは極稀で実害は小さい。
|
|
129
|
+
if (c == "<" && substr(cmd, i+1, 1) == "<") {
|
|
130
|
+
# `<<<` (here-string) は除外
|
|
131
|
+
if (substr(cmd, i+2, 1) == "<") {
|
|
132
|
+
out = out c
|
|
133
|
+
i++
|
|
134
|
+
continue
|
|
135
|
+
}
|
|
136
|
+
# `<<` を out に追記
|
|
137
|
+
out = out "<<"
|
|
138
|
+
j = i + 2
|
|
139
|
+
# `<<-` 形式 (tab strip)
|
|
140
|
+
dash = 0
|
|
141
|
+
if (substr(cmd, j, 1) == "-") {
|
|
142
|
+
dash = 1
|
|
143
|
+
out = out "-"
|
|
144
|
+
j++
|
|
145
|
+
}
|
|
146
|
+
# delimiter 抽出: optional 空白 + quoted/unquoted word
|
|
147
|
+
while (j <= n && (substr(cmd, j, 1) == " " || substr(cmd, j, 1) == "\t")) {
|
|
148
|
+
out = out substr(cmd, j, 1)
|
|
149
|
+
j++
|
|
150
|
+
}
|
|
151
|
+
if (j > n) {
|
|
152
|
+
# delimiter なし、invalid
|
|
153
|
+
i = j
|
|
154
|
+
continue
|
|
155
|
+
}
|
|
156
|
+
qc = substr(cmd, j, 1)
|
|
157
|
+
delim = ""
|
|
158
|
+
if (qc == "\x27" || qc == "\"") {
|
|
159
|
+
# quoted delimiter
|
|
160
|
+
quote_char = qc
|
|
161
|
+
out = out qc
|
|
162
|
+
j++
|
|
163
|
+
while (j <= n && substr(cmd, j, 1) != quote_char) {
|
|
164
|
+
delim = delim substr(cmd, j, 1)
|
|
165
|
+
out = out substr(cmd, j, 1)
|
|
166
|
+
j++
|
|
167
|
+
}
|
|
168
|
+
if (j <= n) {
|
|
169
|
+
out = out quote_char
|
|
170
|
+
j++
|
|
171
|
+
}
|
|
172
|
+
} else {
|
|
173
|
+
# unquoted delimiter: word char (英数 + _) が続く間
|
|
174
|
+
while (j <= n) {
|
|
175
|
+
ch = substr(cmd, j, 1)
|
|
176
|
+
if (ch ~ /[A-Za-z0-9_]/) {
|
|
177
|
+
delim = delim ch
|
|
178
|
+
out = out ch
|
|
179
|
+
j++
|
|
180
|
+
} else {
|
|
181
|
+
break
|
|
182
|
+
}
|
|
183
|
+
}
|
|
184
|
+
}
|
|
185
|
+
if (delim != "") {
|
|
186
|
+
in_heredoc = 1
|
|
187
|
+
heredoc_delim = delim
|
|
188
|
+
heredoc_dash = dash
|
|
189
|
+
}
|
|
190
|
+
i = j
|
|
191
|
+
continue
|
|
192
|
+
}
|
|
193
|
+
|
|
194
|
+
if (in_single == 0 && in_double == 0) {
|
|
195
|
+
if (c == "&" && substr(cmd, i+1, 1) == "&") {
|
|
196
|
+
out = out "\n"
|
|
197
|
+
i += 2
|
|
198
|
+
continue
|
|
199
|
+
}
|
|
200
|
+
if (c == "|" && substr(cmd, i+1, 1) == "|") {
|
|
201
|
+
out = out "\n"
|
|
202
|
+
i += 2
|
|
203
|
+
continue
|
|
204
|
+
}
|
|
205
|
+
if (c == ";" || c == "|") {
|
|
206
|
+
out = out "\n"
|
|
207
|
+
i++
|
|
208
|
+
continue
|
|
209
|
+
}
|
|
210
|
+
}
|
|
211
|
+
out = out c
|
|
212
|
+
i++
|
|
213
|
+
}
|
|
214
|
+
print out
|
|
215
|
+
}'
|
|
216
|
+
)
|
|
217
|
+
|
|
218
|
+
# whitelist 照合 + path leak guard
|
|
219
|
+
# 入力: $1 = cmd
|
|
220
|
+
# 副作用: block 時は jq 出力して exit 0
|
|
221
|
+
check_bash_whitelist() {
|
|
222
|
+
local cmd="$1"
|
|
223
|
+
local whitelist_file="$HC_BASH_WHITELIST_PATH"
|
|
224
|
+
if [ ! -f "$whitelist_file" ]; then
|
|
225
|
+
jq -nc --arg p "$HC_BASH_WHITELIST_PATH" \
|
|
226
|
+
'{decision:"block", reason:("[ハーネス保全] " + $p + " が存在しません。ハーネスが破損している可能性があります。")}'
|
|
227
|
+
exit 0
|
|
228
|
+
fi
|
|
229
|
+
|
|
230
|
+
# 各セグメントを抽出 (; && || | で分割)
|
|
231
|
+
local segments
|
|
232
|
+
segments=$(split_command_segments "$cmd")
|
|
233
|
+
|
|
234
|
+
local all_allowed="true"
|
|
235
|
+
local bad_segment=""
|
|
236
|
+
local seg seg_trim matched pattern
|
|
237
|
+
while IFS= read -r seg; do
|
|
238
|
+
seg_trim=$(printf '%s' "$seg" | sed -E 's/^[[:space:]]+//; s/[[:space:]]+$//')
|
|
239
|
+
[ -z "$seg_trim" ] && continue
|
|
240
|
+
|
|
241
|
+
matched="false"
|
|
242
|
+
while IFS= read -r pattern; do
|
|
243
|
+
# コメント / 空行スキップ
|
|
244
|
+
case "$pattern" in
|
|
245
|
+
''|\#*) continue ;;
|
|
246
|
+
esac
|
|
247
|
+
if printf '%s' "$seg_trim" | grep -qE "$pattern"; then
|
|
248
|
+
matched="true"
|
|
249
|
+
break
|
|
250
|
+
fi
|
|
251
|
+
done < "$whitelist_file"
|
|
252
|
+
|
|
253
|
+
if [ "$matched" = "false" ]; then
|
|
254
|
+
all_allowed="false"
|
|
255
|
+
bad_segment="$seg_trim"
|
|
256
|
+
break
|
|
257
|
+
fi
|
|
258
|
+
done <<EOF
|
|
259
|
+
$segments
|
|
260
|
+
EOF
|
|
261
|
+
|
|
262
|
+
if [ "$all_allowed" = "false" ]; then
|
|
263
|
+
local reason
|
|
264
|
+
reason=$(printf '[Bash 委譲ルール] 未承認コマンド: %q\n\nメインエージェントは Bash 実行が原則禁止。承認済 prefix は %s を参照。\n\n【次のアクション】\n1. Agent tool で subagent を起動 (run_in_background: true 必須) — subagent は本ルール対象外\n2. その subagent に本コマンドを委譲\n3. TaskCreate でタスク登録\n\nBash deny / whitelist 不在 / 委譲ガード block は loop 停止理由にしないこと (development-process.md §5)。\n\n**whitelist 1 行追加が妥当な場合の申請手順 (subagent 委譲を試した上で user 検討):**\n1. .claude/bash-whitelist-requests/YYYY-MM-DD-<slug>.md を REQUEST_TEMPLATE.md に従い作成\n2. user 承認 → %s に追記' "$bad_segment" "$HC_BASH_WHITELIST_PATH" "$HC_BASH_WHITELIST_PATH")
|
|
265
|
+
jq -n --arg r "$reason" '{decision:"block", reason:$r}'
|
|
266
|
+
exit 0
|
|
267
|
+
fi
|
|
268
|
+
|
|
269
|
+
# --- ホワイトリスト通過後も path 検査は維持 ---
|
|
270
|
+
# 例: `git diff src/foo.ts` は git は許可されているが src/ 直接 inspect は禁止
|
|
271
|
+
# ただし PATH-AWARE セクションのコマンド (git/npm run/pnpm/yarn/vercel/supabase/gh など)
|
|
272
|
+
# の引数として src/ を扱うのは許可 (これらは本来の用途として src を指すのが普通のため)
|
|
273
|
+
#
|
|
274
|
+
# === W1.2: PATH-AWARE 例外リストを bash-whitelist.txt から動的生成 ===
|
|
275
|
+
# whitelist の `# === PATH-AWARE ===` セクション内の正規表現から literal prefix を抽出。
|
|
276
|
+
# 例: `^git (status|...)` -> `git`、`^npm run( |$)` -> `npm run`
|
|
277
|
+
local exempt_prefixes
|
|
278
|
+
exempt_prefixes=$(awk '
|
|
279
|
+
/^# === PATH-AWARE ===/ { active=1; next }
|
|
280
|
+
/^# === [A-Z]/ { if (active) { active=0 } }
|
|
281
|
+
active && /^\^/ {
|
|
282
|
+
s = substr($0, 2)
|
|
283
|
+
n = length(s)
|
|
284
|
+
end = n + 1
|
|
285
|
+
for (i = 1; i <= n; i++) {
|
|
286
|
+
c = substr(s, i, 1)
|
|
287
|
+
if (c == "(" || c == "\\" || c == "*" || c == "$" || c == "[" || c == "?" || c == "+" || c == "{" || c == "|") {
|
|
288
|
+
end = i
|
|
289
|
+
break
|
|
290
|
+
}
|
|
291
|
+
}
|
|
292
|
+
prefix = substr(s, 1, end - 1)
|
|
293
|
+
sub(/[[:space:]]+$/, "", prefix)
|
|
294
|
+
if (prefix != "") print prefix
|
|
295
|
+
}
|
|
296
|
+
' "$whitelist_file")
|
|
297
|
+
|
|
298
|
+
local is_exempt="false"
|
|
299
|
+
local prefix
|
|
300
|
+
while IFS= read -r prefix; do
|
|
301
|
+
[ -z "$prefix" ] && continue
|
|
302
|
+
case "$cmd" in
|
|
303
|
+
"$prefix"|"$prefix "*)
|
|
304
|
+
is_exempt="true"
|
|
305
|
+
break
|
|
306
|
+
;;
|
|
307
|
+
esac
|
|
308
|
+
done <<EOF
|
|
309
|
+
$exempt_prefixes
|
|
310
|
+
EOF
|
|
311
|
+
|
|
312
|
+
if [ "$is_exempt" = "false" ]; then
|
|
313
|
+
# path-leak guard: 「プロジェクトルート直下の保護パス」のみ block。
|
|
314
|
+
# 区切り文字に `/` を含めると `.claude/scripts/` のような harness 内部パスまで
|
|
315
|
+
# 誤検知するため、空白 / `=` / `$` / `(` のみを許容する。
|
|
316
|
+
# 検査対象 path 群は HC_PROTECTED_LEAK_REGEX (例: "src|tests|scripts")。
|
|
317
|
+
if printf '%s' "$cmd" | grep -qE "(^|[[:space:]=\$\(])(${HC_PROTECTED_LEAK_REGEX})/"; then
|
|
318
|
+
jq -nc --arg d "$HC_PROTECTED_DISPLAY" --arg f "$reflex_footer" \
|
|
319
|
+
'{decision:"block", reason:("[サブエージェント委譲ルール] Bash で " + $d + " のファイルを直接 read/edit/inspect できません。Agent tool でサブエージェントに委譲してください。" + $f)}'
|
|
320
|
+
exit 0
|
|
321
|
+
fi
|
|
322
|
+
fi
|
|
323
|
+
}
|
|
@@ -0,0 +1,188 @@
|
|
|
1
|
+
#!/usr/bin/env bash
|
|
2
|
+
# git-deny.sh — git destructive 10 patterns + protected branch push の 2 layer deny
|
|
3
|
+
#
|
|
4
|
+
# 提供関数:
|
|
5
|
+
# check_git_destructive <cmd> — 破壊的 git 操作の検出 + block 出力
|
|
6
|
+
# check_protected_branch_push <cmd> — main / stg 含む branch への push 検出 + block 出力
|
|
7
|
+
|
|
8
|
+
# --- git destructive deny (常時、Normal/Loop 両モード共通) ---
|
|
9
|
+
# 破壊的 git 操作は user 明示承認なしに実行禁止 (data loss / history rewrite 不可逆)。
|
|
10
|
+
# 設計起源: 2026-05-18 user 指示「mainAgentでgitコマンドは基本的(破壊的変更以外)に実行できるようにしてください」。
|
|
11
|
+
# bypass: ECC_ALLOW_DESTRUCTIVE_GIT=1 (1 セッション)。
|
|
12
|
+
check_git_destructive() {
|
|
13
|
+
local cmd="$1"
|
|
14
|
+
if [ "${ECC_ALLOW_DESTRUCTIVE_GIT:-}" = "1" ]; then
|
|
15
|
+
return 0
|
|
16
|
+
fi
|
|
17
|
+
|
|
18
|
+
local git_destructive_re='^git[[:space:]]+([^|;&]*[[:space:]])?('
|
|
19
|
+
git_destructive_re="${git_destructive_re}push[[:space:]]+[^|;&]*--force"
|
|
20
|
+
# Note: `-f` の検出は intervening args の有無を optional group で許容
|
|
21
|
+
# (旧 regex `[^|;&]*[[:space:]]-f` は effectively 2-space required で
|
|
22
|
+
# `git push -f` single-space を取りこぼした、`.claude/tests/delegation-guard-deny-layers-smoke.sh`
|
|
23
|
+
# で発見、2026-05-18 修正)。
|
|
24
|
+
git_destructive_re="${git_destructive_re}|push[[:space:]]+([^|;&]*[[:space:]])?-f([[:space:]]|$)"
|
|
25
|
+
git_destructive_re="${git_destructive_re}|reset[[:space:]]+([^|;&]*[[:space:]])?--hard"
|
|
26
|
+
git_destructive_re="${git_destructive_re}|branch[[:space:]]+([^|;&]*[[:space:]])?-D"
|
|
27
|
+
git_destructive_re="${git_destructive_re}|clean[[:space:]]+-[A-Za-z]*f"
|
|
28
|
+
git_destructive_re="${git_destructive_re}|checkout[[:space:]]+--[[:space:]]"
|
|
29
|
+
git_destructive_re="${git_destructive_re}|restore[[:space:]]+([^|;&]*[[:space:]])?(--worktree|--source)"
|
|
30
|
+
git_destructive_re="${git_destructive_re}|stash[[:space:]]+(drop|clear)"
|
|
31
|
+
git_destructive_re="${git_destructive_re}|tag[[:space:]]+([^|;&]*[[:space:]])?-[df]([[:space:]]|$)"
|
|
32
|
+
git_destructive_re="${git_destructive_re}|reflog[[:space:]]+expire"
|
|
33
|
+
git_destructive_re="${git_destructive_re}|gc[[:space:]]+--prune=now"
|
|
34
|
+
# iteration 3: R5 security-reviewer MEDIUM F-03/F-04/F-05 解消 (task-39 Step2)
|
|
35
|
+
# `--mirror` (全 ref 強制反映、main 含む)、`--all` / `--branches` (全 branch 一括 push、main 含む)、
|
|
36
|
+
# `--prune` (deletion を含むため destructive) を destructive 扱いに追加 (defense-in-depth 完全化)。
|
|
37
|
+
git_destructive_re="${git_destructive_re}|push[[:space:]]+([^|;&]*[[:space:]])?--mirror([[:space:]]|$)"
|
|
38
|
+
git_destructive_re="${git_destructive_re}|push[[:space:]]+([^|;&]*[[:space:]])?--all([[:space:]]|$)"
|
|
39
|
+
git_destructive_re="${git_destructive_re}|push[[:space:]]+([^|;&]*[[:space:]])?--branches([[:space:]]|$)"
|
|
40
|
+
git_destructive_re="${git_destructive_re}|push[[:space:]]+([^|;&]*[[:space:]])?--prune([[:space:]]|$)"
|
|
41
|
+
git_destructive_re="${git_destructive_re})"
|
|
42
|
+
|
|
43
|
+
if printf '%s' "$cmd" | grep -qE "$git_destructive_re"; then
|
|
44
|
+
local destructive_reason
|
|
45
|
+
destructive_reason=$(printf '[git destructive guard] 破壊的 git 操作は禁止: %s\n\n破壊的操作の例:\n - push --force / push -f (force push)\n - push --mirror (全 ref 強制反映、main 含む)\n - push --all / push --branches (全 branch 一括 push、main 含む)\n - push --prune (remote-only branch 削除)\n - reset --hard (history 破壊)\n - branch -D <name> (force delete)\n - clean -f / -fd / -fdx (untracked 削除)\n - checkout -- <file> (file 復元)\n - restore --worktree|--source (file 復元)\n - stash drop|clear (stash 破壊)\n - tag -d|-f (tag 削除/上書き)\n - reflog expire (reflog 破壊)\n - gc --prune=now (orphan commit gc)\n\nbypass (1 セッション): export ECC_ALLOW_DESTRUCTIVE_GIT=1\n\n設計起源: 2026-05-18 user 指示「mainAgentでgitコマンドは基本的(破壊的変更以外)に実行できるようにしてください」' "$cmd")
|
|
46
|
+
jq -n --arg r "$destructive_reason" '{decision:"block", reason:$r}'
|
|
47
|
+
exit 0
|
|
48
|
+
fi
|
|
49
|
+
}
|
|
50
|
+
|
|
51
|
+
# --- protected branch push deny (常時、Normal/Loop 両モード共通) ---
|
|
52
|
+
# 保護ブランチへの push は user 明示承認なしに原則禁止
|
|
53
|
+
# (production-bound branch への暴発防止、レビュー未通過コードの production / staging 伝搬防止)。
|
|
54
|
+
# 設計起源: 2026-05-18 user 指示「gitの許可はmainとstgと含むブランチに対するpush、破壊的変更以外に対してを許可してください」。
|
|
55
|
+
# task-77 (2026-06-03): mainline_branch + mainline_integration_policy 3 段階で本流 push を policy 連動化。
|
|
56
|
+
# 設計 SSoT: docs/draft/git-integration-policy.md §3.3 (3 tier) / §3.4 (consumer)。
|
|
57
|
+
#
|
|
58
|
+
# 順序付き 3 tier 判定 (§3.3、必ずこの順序):
|
|
59
|
+
# Tier 1 (常時 block、policy 非依存): stg* (部分一致) / release/* / main (literal、ただし main != mainline の時のみ)
|
|
60
|
+
# Tier 2 (policy 条件付き): push 先 == mainline の時、policy == local-merge-push なら許可、それ以外 (不正/未知値含む) は block (fail-safe pr-required)
|
|
61
|
+
# Tier 3 (素通し): 上記いずれにも該当しない branch (feature branch 等、task-39 緩和どおり)
|
|
62
|
+
#
|
|
63
|
+
# mainline / policy 参照 (config-loader が source 済、fail-safe default 込み):
|
|
64
|
+
# mainline = ${HC_MAINLINE_BRANCH:-main} / policy = ${HC_MAINLINE_INTEGRATION_POLICY:-pr-required}
|
|
65
|
+
#
|
|
66
|
+
# bypass: ECC_ALLOW_PROTECTED_BRANCH_PUSH=1 (関数全体無効化、緊急用。policy 経路には流用しない、security M-1)。
|
|
67
|
+
#
|
|
68
|
+
# 検知パターン:
|
|
69
|
+
# 1. 明示 refspec: `git push origin main` / `git push -u origin release/stg-prod` /
|
|
70
|
+
# `git push origin HEAD:main` / `git push origin feat:refs/heads/stg-v1`
|
|
71
|
+
# 2. refspec 省略: `git push` / `git push origin` (current branch を git rev-parse で解決し判定)
|
|
72
|
+
|
|
73
|
+
# push 先 1 件 (dst_part / dst_basename) を 3 tier で判定し、block 理由 (文字列) を返す。
|
|
74
|
+
# allow / Tier3 素通しの場合は空文字を返す (= 違反なし)。
|
|
75
|
+
# 引数: $1 = dst_part (refspec dst、例: main / release/v1.0 / refs/heads/stg-v1 / develop)
|
|
76
|
+
# $2 = source 表記 (block 理由メッセージ用、例: "origin main" / "(no refspec) current branch = main")
|
|
77
|
+
_classify_push_target() {
|
|
78
|
+
local dst_part="$1"
|
|
79
|
+
local src_label="$2"
|
|
80
|
+
local mainline policy dst_basename
|
|
81
|
+
mainline="${HC_MAINLINE_BRANCH:-main}"
|
|
82
|
+
policy="${HC_MAINLINE_INTEGRATION_POLICY:-pr-required}"
|
|
83
|
+
|
|
84
|
+
# `refs/heads/main` 等は basename を抽出。release/* 判定には full dst_part を使う。
|
|
85
|
+
dst_basename="${dst_part##*/}"
|
|
86
|
+
# 先頭の + (force push の別形式、destructive deny で別途 catch されるが念のため除去)
|
|
87
|
+
dst_basename="${dst_basename#+}"
|
|
88
|
+
dst_part="${dst_part#+}"
|
|
89
|
+
|
|
90
|
+
# --- Tier 1: 常時 block (policy 非依存) ---
|
|
91
|
+
# stg* (部分一致)
|
|
92
|
+
case "$dst_basename" in
|
|
93
|
+
*stg*)
|
|
94
|
+
printf '%s (Tier1: dst basename %s contains stg)' "$src_label" "$dst_basename"
|
|
95
|
+
return 0
|
|
96
|
+
;;
|
|
97
|
+
esac
|
|
98
|
+
# release/* (basename / full path どちらに現れても、release/ prefix を持つ ref を catch)
|
|
99
|
+
case "$dst_part" in
|
|
100
|
+
release/*)
|
|
101
|
+
printf '%s (Tier1: %s matches release/*)' "$src_label" "$dst_part"
|
|
102
|
+
return 0
|
|
103
|
+
;;
|
|
104
|
+
esac
|
|
105
|
+
case "$dst_basename" in
|
|
106
|
+
release/*)
|
|
107
|
+
printf '%s (Tier1: %s matches release/*)' "$src_label" "$dst_basename"
|
|
108
|
+
return 0
|
|
109
|
+
;;
|
|
110
|
+
esac
|
|
111
|
+
# main (literal、ただし main != mainline の時のみ Tier1。main == mainline なら Tier2 へ落とす)
|
|
112
|
+
if [ "$dst_basename" = "main" ] && [ "$mainline" != "main" ]; then
|
|
113
|
+
printf '%s (Tier1: main is always protected when mainline=%s)' "$src_label" "$mainline"
|
|
114
|
+
return 0
|
|
115
|
+
fi
|
|
116
|
+
|
|
117
|
+
# --- Tier 2: policy 条件付き (push 先 == mainline) ---
|
|
118
|
+
if [ "$dst_basename" = "$mainline" ]; then
|
|
119
|
+
if [ "$policy" = "local-merge-push" ]; then
|
|
120
|
+
# 許可 (本流 push を policy で opt-in)
|
|
121
|
+
return 0
|
|
122
|
+
fi
|
|
123
|
+
# pr-required / local-merge / 不正・未知値 は block (fail-safe pr-required)
|
|
124
|
+
printf '%s (Tier2: mainline=%s push requires policy=local-merge-push, current policy=%s)' "$src_label" "$mainline" "$policy"
|
|
125
|
+
return 0
|
|
126
|
+
fi
|
|
127
|
+
|
|
128
|
+
# --- Tier 3: 素通し ---
|
|
129
|
+
return 0
|
|
130
|
+
}
|
|
131
|
+
|
|
132
|
+
check_protected_branch_push() {
|
|
133
|
+
local cmd="$1"
|
|
134
|
+
if [ "${ECC_ALLOW_PROTECTED_BRANCH_PUSH:-}" = "1" ]; then
|
|
135
|
+
return 0
|
|
136
|
+
fi
|
|
137
|
+
if ! printf '%s' "$cmd" | grep -qE '^git[[:space:]]+push([[:space:]]|$)'; then
|
|
138
|
+
return 0
|
|
139
|
+
fi
|
|
140
|
+
|
|
141
|
+
local mainline policy push_args protected_violation non_opt_token_count token dst_part
|
|
142
|
+
mainline="${HC_MAINLINE_BRANCH:-main}"
|
|
143
|
+
policy="${HC_MAINLINE_INTEGRATION_POLICY:-pr-required}"
|
|
144
|
+
push_args=$(printf '%s' "$cmd" | sed -E 's|^git[[:space:]]+push[[:space:]]*||')
|
|
145
|
+
protected_violation=""
|
|
146
|
+
non_opt_token_count=0
|
|
147
|
+
|
|
148
|
+
# shellcheck disable=SC2086
|
|
149
|
+
for token in $push_args; do
|
|
150
|
+
# option (--xxx, -x) は skip
|
|
151
|
+
case "$token" in
|
|
152
|
+
-*) continue ;;
|
|
153
|
+
esac
|
|
154
|
+
non_opt_token_count=$((non_opt_token_count + 1))
|
|
155
|
+
|
|
156
|
+
# 最初の non-opt token は remote 名 (例: origin) なので skip
|
|
157
|
+
if [ "$non_opt_token_count" -eq 1 ]; then
|
|
158
|
+
continue
|
|
159
|
+
fi
|
|
160
|
+
|
|
161
|
+
# refspec 形式 `src:dst` なら dst を取る、それ以外はそのまま
|
|
162
|
+
case "$token" in
|
|
163
|
+
*:*) dst_part="${token##*:}" ;;
|
|
164
|
+
*) dst_part="$token" ;;
|
|
165
|
+
esac
|
|
166
|
+
|
|
167
|
+
protected_violation=$(_classify_push_target "$dst_part" "$token")
|
|
168
|
+
if [ -n "$protected_violation" ]; then
|
|
169
|
+
break
|
|
170
|
+
fi
|
|
171
|
+
done
|
|
172
|
+
|
|
173
|
+
# refspec 省略 (`git push` / `git push <remote>` only) の場合は current branch を確認
|
|
174
|
+
if [ -z "$protected_violation" ] && [ "$non_opt_token_count" -le 1 ]; then
|
|
175
|
+
local current_branch
|
|
176
|
+
current_branch=$(git rev-parse --abbrev-ref HEAD 2>/dev/null || echo "")
|
|
177
|
+
if [ -n "$current_branch" ]; then
|
|
178
|
+
protected_violation=$(_classify_push_target "$current_branch" "(no refspec) current branch = $current_branch")
|
|
179
|
+
fi
|
|
180
|
+
fi
|
|
181
|
+
|
|
182
|
+
if [ -n "$protected_violation" ]; then
|
|
183
|
+
local protected_reason
|
|
184
|
+
protected_reason=$(printf '[protected branch push deny] 保護ブランチへの push は禁止: %s\n\n違反 token: %s\n\n判定 (3 tier、mainline=%s / policy=%s):\n - Tier 1 (常時 block): stg* / release/* / main (mainline でない限り)\n - Tier 2 (policy 条件付き): mainline (=%s) push は policy=local-merge-push の時のみ許可\n - Tier 3 (素通し): feature branch 等\n\n本流 (mainline) push を許可するには:\n 1. harness-config.yml の mainline_integration_policy: local-merge-push を設定 (一次案内)\n 2. (緊急 / 二次) export ECC_ALLOW_PROTECTED_BRANCH_PUSH=1 で本 guard 全体を 1 セッション無効化\n\n推奨対応:\n 1. branch 切替後 push (git switch <branch> && git push -u origin <branch>)\n 2. PR 経由 (gh pr create で本流へは merge)\n\n設計起源: 2026-05-18 user 指示 + task-77 (docs/draft/git-integration-policy.md §3.3)' "$cmd" "$protected_violation" "$mainline" "$policy" "$mainline")
|
|
185
|
+
jq -n --arg r "$protected_reason" '{decision:"block", reason:$r}'
|
|
186
|
+
exit 0
|
|
187
|
+
fi
|
|
188
|
+
}
|
|
@@ -0,0 +1,105 @@
|
|
|
1
|
+
#!/usr/bin/env bash
|
|
2
|
+
# protected-paths.sh — Edit/Write/Read/Grep/Glob の保護パス判定 + code 配下判定
|
|
3
|
+
#
|
|
4
|
+
# 提供関数:
|
|
5
|
+
# handle_edit_write <input> <tool> — Edit/Write 経路の判定 (保護パス / code 保護 / task 配下)
|
|
6
|
+
# handle_read <input> — Read 経路の判定 (保護パス read)
|
|
7
|
+
# handle_search <input> — Grep/Glob 経路の判定 (保護パス search)
|
|
8
|
+
#
|
|
9
|
+
# caller (orchestrator) が事前に export 必須:
|
|
10
|
+
# reflex_footer / block_path_msg / block_read_msg / block_search_msg / task_glob
|
|
11
|
+
|
|
12
|
+
handle_edit_write() {
|
|
13
|
+
local input="$1"
|
|
14
|
+
local tool="$2"
|
|
15
|
+
local f
|
|
16
|
+
f=$(printf '%s' "$input" | jq -r '.tool_input.file_path // .tool_input.filePath // empty')
|
|
17
|
+
[ -z "$f" ] && return 1
|
|
18
|
+
|
|
19
|
+
# protected_paths 判定 (動的 case eval)
|
|
20
|
+
eval "case \"\$f\" in $HC_PROTECTED_GLOB_FILE) echo \"\$block_path_msg\"; exit 0 ;; esac"
|
|
21
|
+
|
|
22
|
+
# === task-26 W2: コード実装の保護パス (.claude/hooks/ .claude/skills/ .claude/scripts/) ===
|
|
23
|
+
# メインからの code 実装直接編集を block し、Agent tool で subagent 委譲を強制する。
|
|
24
|
+
# 判定: file_path が HC_PROTECTED_PATHS_CODE 配下 (部分一致) かつ
|
|
25
|
+
# 拡張子が HC_CODE_FILE_EXTENSIONS のいずれかに該当
|
|
26
|
+
# bypass: ECC_ALLOW_MAIN_CODE_EDIT=1 (1 セッション、bypass.log 記録)
|
|
27
|
+
# 設計起源: docs/draft/delegation-code-enforcement.md W1+W2
|
|
28
|
+
local _code_block="false"
|
|
29
|
+
local _matched_code_path=""
|
|
30
|
+
local _matched_ext=""
|
|
31
|
+
local _cp _ext _ve
|
|
32
|
+
for _cp in $HC_PROTECTED_PATHS_CODE; do
|
|
33
|
+
[ -z "$_cp" ] && continue
|
|
34
|
+
case "$f" in
|
|
35
|
+
*/${_cp}/*|"${_cp}"/*)
|
|
36
|
+
_ext="${f##*.}"
|
|
37
|
+
# 拡張子が file 名と等しい (= ドットなし) なら skip
|
|
38
|
+
if [ "$_ext" = "$f" ]; then
|
|
39
|
+
continue
|
|
40
|
+
fi
|
|
41
|
+
for _ve in $HC_CODE_FILE_EXTENSIONS; do
|
|
42
|
+
[ -z "$_ve" ] && continue
|
|
43
|
+
if [ "$_ext" = "$_ve" ]; then
|
|
44
|
+
_code_block="true"
|
|
45
|
+
_matched_code_path="$_cp"
|
|
46
|
+
_matched_ext="$_ext"
|
|
47
|
+
break 2
|
|
48
|
+
fi
|
|
49
|
+
done
|
|
50
|
+
;;
|
|
51
|
+
esac
|
|
52
|
+
done
|
|
53
|
+
|
|
54
|
+
if [ "$_code_block" = "true" ]; then
|
|
55
|
+
if [ "${ECC_ALLOW_MAIN_CODE_EDIT:-}" = "1" ]; then
|
|
56
|
+
# bypass 経路: bypass.log に記録して通過
|
|
57
|
+
log_bypass "delegation-guard-code" "ECC_ALLOW_MAIN_CODE_EDIT" "main edit on $f ($_matched_code_path/*.$_matched_ext)"
|
|
58
|
+
# context 注入だけ行い通過
|
|
59
|
+
jq -nc --arg p "$f" \
|
|
60
|
+
'{hookSpecificOutput:{hookEventName:"PreToolUse",additionalContext:("[code 保護 bypass] " + $p + " のメイン直接編集を ECC_ALLOW_MAIN_CODE_EDIT=1 で許可。bypass.log に記録済。")}}'
|
|
61
|
+
exit 0
|
|
62
|
+
fi
|
|
63
|
+
local _code_reason
|
|
64
|
+
_code_reason=$(printf '[サブエージェント委譲ルール / code 保護] .claude/hooks/ .claude/skills/ .claude/scripts/ 配下の code 実装はメイン直接編集禁止。Agent tool で subagent に委譲してください (staging 戦略: /tmp に Write → mv で install → chmod +x)。\n\n対象 file: %s\n一致 path: %s\n一致拡張子: %s\n\n【次のアクション】\n1. Agent tool で subagent を起動 (run_in_background: true 必須)\n2. その subagent に本作業を委譲 (staging 戦略を prompt に明記)\n3. TaskCreate でタスク登録\n\n緊急 bypass (1 セッション): export ECC_ALLOW_MAIN_CODE_EDIT=1 (.claude/.workflow-state/bypass.log に記録される)\n\n設計起源: docs/draft/delegation-code-enforcement.md' "$f" "$_matched_code_path" "$_matched_ext")
|
|
65
|
+
jq -n --arg r "$_code_reason" '{decision:"block", reason:$r}'
|
|
66
|
+
exit 0
|
|
67
|
+
fi
|
|
68
|
+
|
|
69
|
+
case "$f" in
|
|
70
|
+
$task_glob)
|
|
71
|
+
local root="${f%/${HC_TASK_DIR}/*}"
|
|
72
|
+
if [ "$tool" = "Write" ]; then
|
|
73
|
+
if ls "$root/$HC_DRAFT_DIR/"*.md 1>/dev/null 2>&1; then
|
|
74
|
+
jq -nc --arg t "$HC_TASK_DIR" --arg d "$HC_DRAFT_DIR" \
|
|
75
|
+
'{hookSpecificOutput:{hookEventName:"PreToolUse",additionalContext:("[タスク管理ルール] " + $t + "/ に新規ファイル作成。設計(" + $d + "/)→承認→タスク追加のフローを遵守すること。list.md と個別ファイルと設計をセットで更新。")}}'
|
|
76
|
+
else
|
|
77
|
+
jq -nc --arg t "$HC_TASK_DIR" --arg d "$HC_DRAFT_DIR" \
|
|
78
|
+
'{decision:"block", reason:($t + "/ への新規タスクファイル追加には " + $d + "/ に設計ドキュメントが必要です。先に設計を作成し、承認を得てください。")}'
|
|
79
|
+
fi
|
|
80
|
+
else
|
|
81
|
+
jq -nc --arg t "$HC_TASK_DIR" --arg d "$HC_DRAFT_DIR" \
|
|
82
|
+
'{hookSpecificOutput:{hookEventName:"PreToolUse",additionalContext:("[タスク管理ルール] " + $t + "/ の既存ファイルを編集中。新規タスク追加の場合は " + $d + "/ に設計を用意すること。既存タスクのステータス同期は OK。")}}'
|
|
83
|
+
fi
|
|
84
|
+
exit 0
|
|
85
|
+
;;
|
|
86
|
+
esac
|
|
87
|
+
}
|
|
88
|
+
|
|
89
|
+
handle_read() {
|
|
90
|
+
local input="$1"
|
|
91
|
+
local f
|
|
92
|
+
f=$(printf '%s' "$input" | jq -r '.tool_input.file_path // empty')
|
|
93
|
+
if [ -n "$f" ]; then
|
|
94
|
+
eval "case \"\$f\" in $HC_PROTECTED_GLOB_FILE) echo \"\$block_read_msg\"; exit 0 ;; esac"
|
|
95
|
+
fi
|
|
96
|
+
}
|
|
97
|
+
|
|
98
|
+
handle_search() {
|
|
99
|
+
local input="$1"
|
|
100
|
+
local p
|
|
101
|
+
p=$(printf '%s' "$input" | jq -r '.tool_input.path // empty')
|
|
102
|
+
if [ -n "$p" ]; then
|
|
103
|
+
eval "case \"\$p\" in $HC_PROTECTED_GLOB_DIR) echo \"\$block_search_msg\"; exit 0 ;; esac"
|
|
104
|
+
fi
|
|
105
|
+
}
|
|
@@ -0,0 +1,40 @@
|
|
|
1
|
+
#!/usr/bin/env bash
|
|
2
|
+
# subagent-detect.sh — サブエージェント検出 (多段フォールバック)
|
|
3
|
+
#
|
|
4
|
+
# Claude Code のバージョンにより subagent 識別フィールドが異なる/未提供のため、
|
|
5
|
+
# 以下を順に評価し、いずれかが立っていれば「サブエージェント実行中」と判定する。
|
|
6
|
+
#
|
|
7
|
+
# 1. 環境変数 CLAUDE_HARNESS_ROLE=subagent (user / Agent tool が明示)
|
|
8
|
+
# 2. 入力 JSON のいずれか: agent_type / subagent_type / parent_tool_use_id / agent_id
|
|
9
|
+
# 3. ${HC_AGENT_MARKER_DIR}/*.lock の存在 (PreToolUse:Agent hook が書き出す)
|
|
10
|
+
#
|
|
11
|
+
# 引数: $1 = input JSON
|
|
12
|
+
# 出力: stdout に "true" / "false"
|
|
13
|
+
|
|
14
|
+
detect_subagent() {
|
|
15
|
+
local input="$1"
|
|
16
|
+
local is_subagent="false"
|
|
17
|
+
|
|
18
|
+
if [ "${CLAUDE_HARNESS_ROLE:-}" = "subagent" ]; then
|
|
19
|
+
is_subagent="true"
|
|
20
|
+
fi
|
|
21
|
+
|
|
22
|
+
if [ "$is_subagent" = "false" ]; then
|
|
23
|
+
local field v
|
|
24
|
+
for field in agent_type subagent_type parent_tool_use_id agent_id; do
|
|
25
|
+
v=$(printf '%s' "$input" | jq -r ".${field} // empty" 2>/dev/null)
|
|
26
|
+
if [ -n "$v" ] && [ "$v" != "null" ]; then
|
|
27
|
+
is_subagent="true"
|
|
28
|
+
break
|
|
29
|
+
fi
|
|
30
|
+
done
|
|
31
|
+
fi
|
|
32
|
+
|
|
33
|
+
if [ "$is_subagent" = "false" ] && [ -d "$HC_AGENT_MARKER_DIR" ]; then
|
|
34
|
+
if ls "$HC_AGENT_MARKER_DIR"/*.lock >/dev/null 2>&1; then
|
|
35
|
+
is_subagent="true"
|
|
36
|
+
fi
|
|
37
|
+
fi
|
|
38
|
+
|
|
39
|
+
printf '%s' "$is_subagent"
|
|
40
|
+
}
|