@takuma-hirai/hirai-method 0.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/.claude/.stale-harness-state/last-check +0 -0
- package/.claude/CommonRules.md +121 -0
- package/.claude/agents/01-core-development/api-designer.md +237 -0
- package/.claude/agents/01-core-development/backend-developer.md +222 -0
- package/.claude/agents/01-core-development/design-bridge.md +127 -0
- package/.claude/agents/01-core-development/electron-pro.md +240 -0
- package/.claude/agents/01-core-development/frontend-developer.md +133 -0
- package/.claude/agents/01-core-development/fullstack-developer.md +235 -0
- package/.claude/agents/01-core-development/graphql-architect.md +238 -0
- package/.claude/agents/01-core-development/microservices-architect.md +239 -0
- package/.claude/agents/01-core-development/mobile-developer.md +283 -0
- package/.claude/agents/01-core-development/ui-designer.md +174 -0
- package/.claude/agents/01-core-development/websocket-engineer.md +150 -0
- package/.claude/agents/03-infrastructure/azure-infra-engineer.md +53 -0
- package/.claude/agents/03-infrastructure/cloud-architect.md +277 -0
- package/.claude/agents/03-infrastructure/database-administrator.md +287 -0
- package/.claude/agents/03-infrastructure/deployment-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/devops-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/devops-incident-responder.md +287 -0
- package/.claude/agents/03-infrastructure/docker-expert.md +278 -0
- package/.claude/agents/03-infrastructure/incident-responder.md +287 -0
- package/.claude/agents/03-infrastructure/kubernetes-specialist.md +287 -0
- package/.claude/agents/03-infrastructure/network-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/platform-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/security-engineer.md +277 -0
- package/.claude/agents/03-infrastructure/sre-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/terraform-engineer.md +287 -0
- package/.claude/agents/03-infrastructure/terragrunt-expert.md +307 -0
- package/.claude/agents/03-infrastructure/windows-infra-admin.md +52 -0
- package/.claude/agents/04-quality-security/accessibility-tester.md +277 -0
- package/.claude/agents/04-quality-security/ad-security-reviewer.md +56 -0
- package/.claude/agents/04-quality-security/ai-writing-auditor.md +77 -0
- package/.claude/agents/04-quality-security/architect-reviewer.md +287 -0
- package/.claude/agents/04-quality-security/chaos-engineer.md +277 -0
- package/.claude/agents/04-quality-security/code-reviewer.md +287 -0
- package/.claude/agents/04-quality-security/compliance-auditor.md +277 -0
- package/.claude/agents/04-quality-security/debugger.md +287 -0
- package/.claude/agents/04-quality-security/error-detective.md +287 -0
- package/.claude/agents/04-quality-security/penetration-tester.md +287 -0
- package/.claude/agents/04-quality-security/performance-engineer.md +287 -0
- package/.claude/agents/04-quality-security/powershell-security-hardening.md +54 -0
- package/.claude/agents/04-quality-security/qa-expert.md +287 -0
- package/.claude/agents/04-quality-security/security-auditor.md +287 -0
- package/.claude/agents/04-quality-security/test-automator.md +287 -0
- package/.claude/agents/04-quality-security/ui-ux-tester.md +234 -0
- package/.claude/agents/06-developer-experience/build-engineer.md +286 -0
- package/.claude/agents/06-developer-experience/cli-developer.md +286 -0
- package/.claude/agents/06-developer-experience/dependency-manager.md +286 -0
- package/.claude/agents/06-developer-experience/documentation-engineer.md +276 -0
- package/.claude/agents/06-developer-experience/dx-optimizer.md +286 -0
- package/.claude/agents/06-developer-experience/git-workflow-manager.md +286 -0
- package/.claude/agents/06-developer-experience/legacy-modernizer.md +286 -0
- package/.claude/agents/06-developer-experience/mcp-developer.md +275 -0
- package/.claude/agents/06-developer-experience/powershell-module-architect.md +58 -0
- package/.claude/agents/06-developer-experience/powershell-ui-architect.md +135 -0
- package/.claude/agents/06-developer-experience/readme-generator.md +238 -0
- package/.claude/agents/06-developer-experience/refactoring-specialist.md +286 -0
- package/.claude/agents/06-developer-experience/slack-expert.md +232 -0
- package/.claude/agents/06-developer-experience/tooling-engineer.md +286 -0
- package/.claude/agents/09-meta-orchestration/agent-installer.md +97 -0
- package/.claude/agents/09-meta-orchestration/agent-organizer.md +287 -0
- package/.claude/agents/09-meta-orchestration/codebase-orchestrator.md +249 -0
- package/.claude/agents/09-meta-orchestration/context-manager.md +287 -0
- package/.claude/agents/09-meta-orchestration/error-coordinator.md +287 -0
- package/.claude/agents/09-meta-orchestration/it-ops-orchestrator.md +60 -0
- package/.claude/agents/09-meta-orchestration/knowledge-synthesizer.md +287 -0
- package/.claude/agents/09-meta-orchestration/multi-agent-coordinator.md +287 -0
- package/.claude/agents/09-meta-orchestration/performance-monitor.md +287 -0
- package/.claude/agents/09-meta-orchestration/task-distributor.md +287 -0
- package/.claude/agents/09-meta-orchestration/workflow-orchestrator.md +287 -0
- package/.claude/agents/10-research-analysis/competitive-analyst.md +287 -0
- package/.claude/agents/10-research-analysis/data-researcher.md +287 -0
- package/.claude/agents/10-research-analysis/market-researcher.md +287 -0
- package/.claude/agents/10-research-analysis/project-idea-validator.md +269 -0
- package/.claude/agents/10-research-analysis/research-analyst.md +287 -0
- package/.claude/agents/10-research-analysis/scientific-literature-researcher.md +151 -0
- package/.claude/agents/10-research-analysis/search-specialist.md +287 -0
- package/.claude/agents/10-research-analysis/trend-analyst.md +287 -0
- package/.claude/archive/README.md +47 -0
- package/.claude/archive/agents/02-language-specialists/angular-architect.md +287 -0
- package/.claude/archive/agents/02-language-specialists/cpp-pro.md +277 -0
- package/.claude/archive/agents/02-language-specialists/csharp-developer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/django-developer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/dotnet-core-expert.md +287 -0
- package/.claude/archive/agents/02-language-specialists/dotnet-framework-4.8-expert.md +306 -0
- package/.claude/archive/agents/02-language-specialists/elixir-expert.md +311 -0
- package/.claude/archive/agents/02-language-specialists/expo-react-native-expert.md +268 -0
- package/.claude/archive/agents/02-language-specialists/fastapi-developer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/flutter-expert.md +287 -0
- package/.claude/archive/agents/02-language-specialists/golang-pro.md +277 -0
- package/.claude/archive/agents/02-language-specialists/java-architect.md +287 -0
- package/.claude/archive/agents/02-language-specialists/javascript-pro.md +277 -0
- package/.claude/archive/agents/02-language-specialists/kotlin-specialist.md +287 -0
- package/.claude/archive/agents/02-language-specialists/laravel-specialist.md +287 -0
- package/.claude/archive/agents/02-language-specialists/nextjs-developer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/node-specialist.md +124 -0
- package/.claude/archive/agents/02-language-specialists/php-pro.md +287 -0
- package/.claude/archive/agents/02-language-specialists/powershell-5.1-expert.md +59 -0
- package/.claude/archive/agents/02-language-specialists/powershell-7-expert.md +57 -0
- package/.claude/archive/agents/02-language-specialists/python-pro.md +277 -0
- package/.claude/archive/agents/02-language-specialists/rails-expert.md +358 -0
- package/.claude/archive/agents/02-language-specialists/react-specialist.md +287 -0
- package/.claude/archive/agents/02-language-specialists/rust-engineer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/spring-boot-engineer.md +287 -0
- package/.claude/archive/agents/02-language-specialists/sql-pro.md +287 -0
- package/.claude/archive/agents/02-language-specialists/swift-expert.md +287 -0
- package/.claude/archive/agents/02-language-specialists/symfony-specialist.md +354 -0
- package/.claude/archive/agents/02-language-specialists/typescript-pro.md +277 -0
- package/.claude/archive/agents/02-language-specialists/vue-expert.md +287 -0
- package/.claude/archive/agents/05-data-ai/ai-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/data-analyst.md +277 -0
- package/.claude/archive/agents/05-data-ai/data-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/data-scientist.md +287 -0
- package/.claude/archive/agents/05-data-ai/database-optimizer.md +287 -0
- package/.claude/archive/agents/05-data-ai/llm-architect.md +287 -0
- package/.claude/archive/agents/05-data-ai/machine-learning-engineer.md +277 -0
- package/.claude/archive/agents/05-data-ai/ml-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/mlops-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/nlp-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/postgres-pro.md +287 -0
- package/.claude/archive/agents/05-data-ai/prompt-engineer.md +287 -0
- package/.claude/archive/agents/05-data-ai/reinforcement-learning-engineer.md +277 -0
- package/.claude/archive/agents/07-specialized-domains/api-documenter.md +277 -0
- package/.claude/archive/agents/07-specialized-domains/blockchain-developer.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/embedded-systems.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/fintech-engineer.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/game-developer.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/healthcare-admin.md +199 -0
- package/.claude/archive/agents/07-specialized-domains/iot-engineer.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/m365-admin.md +48 -0
- package/.claude/archive/agents/07-specialized-domains/mobile-app-developer.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/payment-integration.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/quant-analyst.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/risk-manager.md +287 -0
- package/.claude/archive/agents/07-specialized-domains/seo-specialist.md +184 -0
- package/.claude/archive/agents/08-business-product/business-analyst.md +287 -0
- package/.claude/archive/agents/08-business-product/content-marketer.md +287 -0
- package/.claude/archive/agents/08-business-product/customer-success-manager.md +287 -0
- package/.claude/archive/agents/08-business-product/legal-advisor.md +287 -0
- package/.claude/archive/agents/08-business-product/license-engineer.md +295 -0
- package/.claude/archive/agents/08-business-product/product-manager.md +287 -0
- package/.claude/archive/agents/08-business-product/project-manager.md +287 -0
- package/.claude/archive/agents/08-business-product/sales-engineer.md +287 -0
- package/.claude/archive/agents/08-business-product/scrum-master.md +287 -0
- package/.claude/archive/agents/08-business-product/technical-writer.md +287 -0
- package/.claude/archive/agents/08-business-product/ux-researcher.md +287 -0
- package/.claude/archive/agents/08-business-product/wordpress-master.md +316 -0
- package/.claude/archive/skills/competitive-ads-extractor/SKILL.md +293 -0
- package/.claude/archive/skills/developer-growth-analysis/SKILL.md +322 -0
- package/.claude/archive/skills/document-docx/LICENSE.txt +30 -0
- package/.claude/archive/skills/document-docx/SKILL.md +197 -0
- package/.claude/archive/skills/document-docx/docx-js.md +350 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-chart.xsd +1499 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-chartDrawing.xsd +146 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-diagram.xsd +1085 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-lockedCanvas.xsd +11 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-main.xsd +3081 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-picture.xsd +23 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-spreadsheetDrawing.xsd +185 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/dml-wordprocessingDrawing.xsd +287 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/pml.xsd +1676 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-additionalCharacteristics.xsd +28 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-bibliography.xsd +144 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-commonSimpleTypes.xsd +174 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-customXmlDataProperties.xsd +25 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-customXmlSchemaProperties.xsd +18 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesCustom.xsd +59 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesExtended.xsd +56 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesVariantTypes.xsd +195 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-math.xsd +582 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/shared-relationshipReference.xsd +25 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/sml.xsd +4439 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/vml-main.xsd +570 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/vml-officeDrawing.xsd +509 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/vml-presentationDrawing.xsd +12 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/vml-spreadsheetDrawing.xsd +108 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/vml-wordprocessingDrawing.xsd +96 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/wml.xsd +3646 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ISO-IEC29500-4_2016/xml.xsd +116 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ecma/fouth-edition/opc-contentTypes.xsd +42 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ecma/fouth-edition/opc-coreProperties.xsd +50 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ecma/fouth-edition/opc-digSig.xsd +49 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/ecma/fouth-edition/opc-relationships.xsd +33 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/mce/mc.xsd +75 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-2010.xsd +560 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-2012.xsd +67 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-2018.xsd +14 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-cex-2018.xsd +20 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-cid-2016.xsd +13 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-sdtdatahash-2020.xsd +4 -0
- package/.claude/archive/skills/document-docx/ooxml/schemas/microsoft/wml-symex-2015.xsd +8 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/pack.py +159 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/unpack.py +29 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validate.py +69 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validation/__init__.py +15 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validation/base.py +951 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validation/docx.py +274 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validation/pptx.py +315 -0
- package/.claude/archive/skills/document-docx/ooxml/scripts/validation/redlining.py +279 -0
- package/.claude/archive/skills/document-docx/ooxml.md +610 -0
- package/.claude/archive/skills/document-docx/scripts/__init__.py +1 -0
- package/.claude/archive/skills/document-docx/scripts/document.py +1276 -0
- package/.claude/archive/skills/document-docx/scripts/templates/comments.xml +3 -0
- package/.claude/archive/skills/document-docx/scripts/templates/commentsExtended.xml +3 -0
- package/.claude/archive/skills/document-docx/scripts/templates/commentsExtensible.xml +3 -0
- package/.claude/archive/skills/document-docx/scripts/templates/commentsIds.xml +3 -0
- package/.claude/archive/skills/document-docx/scripts/templates/people.xml +3 -0
- package/.claude/archive/skills/document-docx/scripts/utilities.py +374 -0
- package/.claude/archive/skills/document-pdf/LICENSE.txt +30 -0
- package/.claude/archive/skills/document-pdf/SKILL.md +294 -0
- package/.claude/archive/skills/document-pdf/forms.md +205 -0
- package/.claude/archive/skills/document-pdf/reference.md +612 -0
- package/.claude/archive/skills/document-pdf/scripts/check_bounding_boxes.py +70 -0
- package/.claude/archive/skills/document-pdf/scripts/check_bounding_boxes_test.py +226 -0
- package/.claude/archive/skills/document-pdf/scripts/check_fillable_fields.py +12 -0
- package/.claude/archive/skills/document-pdf/scripts/convert_pdf_to_images.py +35 -0
- package/.claude/archive/skills/document-pdf/scripts/create_validation_image.py +41 -0
- package/.claude/archive/skills/document-pdf/scripts/extract_form_field_info.py +152 -0
- package/.claude/archive/skills/document-pdf/scripts/fill_fillable_fields.py +114 -0
- package/.claude/archive/skills/document-pdf/scripts/fill_pdf_form_with_annotations.py +108 -0
- package/.claude/archive/skills/document-pptx/LICENSE.txt +30 -0
- package/.claude/archive/skills/document-pptx/SKILL.md +484 -0
- package/.claude/archive/skills/document-pptx/html2pptx.md +625 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-chart.xsd +1499 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-chartDrawing.xsd +146 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-diagram.xsd +1085 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-lockedCanvas.xsd +11 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-main.xsd +3081 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-picture.xsd +23 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-spreadsheetDrawing.xsd +185 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/dml-wordprocessingDrawing.xsd +287 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/pml.xsd +1676 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-additionalCharacteristics.xsd +28 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-bibliography.xsd +144 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-commonSimpleTypes.xsd +174 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-customXmlDataProperties.xsd +25 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-customXmlSchemaProperties.xsd +18 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesCustom.xsd +59 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesExtended.xsd +56 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-documentPropertiesVariantTypes.xsd +195 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-math.xsd +582 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/shared-relationshipReference.xsd +25 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/sml.xsd +4439 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/vml-main.xsd +570 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/vml-officeDrawing.xsd +509 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/vml-presentationDrawing.xsd +12 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/vml-spreadsheetDrawing.xsd +108 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/vml-wordprocessingDrawing.xsd +96 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/wml.xsd +3646 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ISO-IEC29500-4_2016/xml.xsd +116 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ecma/fouth-edition/opc-contentTypes.xsd +42 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ecma/fouth-edition/opc-coreProperties.xsd +50 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ecma/fouth-edition/opc-digSig.xsd +49 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/ecma/fouth-edition/opc-relationships.xsd +33 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/mce/mc.xsd +75 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-2010.xsd +560 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-2012.xsd +67 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-2018.xsd +14 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-cex-2018.xsd +20 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-cid-2016.xsd +13 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-sdtdatahash-2020.xsd +4 -0
- package/.claude/archive/skills/document-pptx/ooxml/schemas/microsoft/wml-symex-2015.xsd +8 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/pack.py +159 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/unpack.py +29 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validate.py +69 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validation/__init__.py +15 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validation/base.py +951 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validation/docx.py +274 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validation/pptx.py +315 -0
- package/.claude/archive/skills/document-pptx/ooxml/scripts/validation/redlining.py +279 -0
- package/.claude/archive/skills/document-pptx/ooxml.md +427 -0
- package/.claude/archive/skills/document-pptx/scripts/html2pptx.js +979 -0
- package/.claude/archive/skills/document-pptx/scripts/inventory.py +1020 -0
- package/.claude/archive/skills/document-pptx/scripts/rearrange.py +231 -0
- package/.claude/archive/skills/document-pptx/scripts/replace.py +385 -0
- package/.claude/archive/skills/document-pptx/scripts/thumbnail.py +450 -0
- package/.claude/archive/skills/document-xlsx/LICENSE.txt +30 -0
- package/.claude/archive/skills/document-xlsx/SKILL.md +289 -0
- package/.claude/archive/skills/document-xlsx/recalc.py +178 -0
- package/.claude/archive/skills/image-enhancer/SKILL.md +99 -0
- package/.claude/archive/skills/meeting-insights-analyzer/SKILL.md +327 -0
- package/.claude/archive/skills/slack-gif-creator/LICENSE.txt +202 -0
- package/.claude/archive/skills/slack-gif-creator/SKILL.md +646 -0
- package/.claude/archive/skills/slack-gif-creator/core/color_palettes.py +302 -0
- package/.claude/archive/skills/slack-gif-creator/core/easing.py +230 -0
- package/.claude/archive/skills/slack-gif-creator/core/frame_composer.py +469 -0
- package/.claude/archive/skills/slack-gif-creator/core/gif_builder.py +246 -0
- package/.claude/archive/skills/slack-gif-creator/core/typography.py +357 -0
- package/.claude/archive/skills/slack-gif-creator/core/validators.py +264 -0
- package/.claude/archive/skills/slack-gif-creator/core/visual_effects.py +494 -0
- package/.claude/archive/skills/slack-gif-creator/requirements.txt +4 -0
- package/.claude/archive/skills/slack-gif-creator/templates/bounce.py +106 -0
- package/.claude/archive/skills/slack-gif-creator/templates/explode.py +331 -0
- package/.claude/archive/skills/slack-gif-creator/templates/fade.py +329 -0
- package/.claude/archive/skills/slack-gif-creator/templates/flip.py +291 -0
- package/.claude/archive/skills/slack-gif-creator/templates/kaleidoscope.py +211 -0
- package/.claude/archive/skills/slack-gif-creator/templates/morph.py +329 -0
- package/.claude/archive/skills/slack-gif-creator/templates/move.py +293 -0
- package/.claude/archive/skills/slack-gif-creator/templates/pulse.py +268 -0
- package/.claude/archive/skills/slack-gif-creator/templates/shake.py +127 -0
- package/.claude/archive/skills/slack-gif-creator/templates/slide.py +291 -0
- package/.claude/archive/skills/slack-gif-creator/templates/spin.py +269 -0
- package/.claude/archive/skills/slack-gif-creator/templates/wiggle.py +300 -0
- package/.claude/archive/skills/slack-gif-creator/templates/zoom.py +312 -0
- package/.claude/archive/skills/twitter-algorithm-optimizer/SKILL.md +327 -0
- package/.claude/archive/skills/video-downloader/SKILL.md +99 -0
- package/.claude/archive/skills/video-downloader/scripts/download_video.py +145 -0
- package/.claude/bash-whitelist-requests/2026-05-28-grep-find-rg.md +68 -0
- package/.claude/bash-whitelist-requests/2026-06-01-readonly-filters.md +76 -0
- package/.claude/bash-whitelist.txt +124 -0
- package/.claude/commands/agent-introspect.md +89 -0
- package/.claude/commands/apply-rules.md +363 -0
- package/.claude/commands/approve-design.md +219 -0
- package/.claude/commands/approve-org-money.md +267 -0
- package/.claude/commands/build.md +234 -0
- package/.claude/commands/commit.md +97 -0
- package/.claude/commands/context-fetch.md +113 -0
- package/.claude/commands/create-tool.md +496 -0
- package/.claude/commands/design-review.md +138 -0
- package/.claude/commands/design.md +807 -0
- package/.claude/commands/discharge-byproduct.md +208 -0
- package/.claude/commands/doc-review.md +165 -0
- package/.claude/commands/document-pair.md +76 -0
- package/.claude/commands/error-triage.md +435 -0
- package/.claude/commands/eval.md +70 -0
- package/.claude/commands/evolve.md +49 -0
- package/.claude/commands/finish-task.md +105 -0
- package/.claude/commands/gan-build.md +91 -0
- package/.claude/commands/gan-design.md +82 -0
- package/.claude/commands/gate-bypass.md +77 -0
- package/.claude/commands/gate-clear.md +45 -0
- package/.claude/commands/gate-status.md +46 -0
- package/.claude/commands/harness-audit.md +151 -0
- package/.claude/commands/hearing.md +138 -0
- package/.claude/commands/impact-check.md +486 -0
- package/.claude/commands/init-tasks.md +49 -0
- package/.claude/commands/instinct-export.md +47 -0
- package/.claude/commands/instinct-import.md +41 -0
- package/.claude/commands/instinct-status.md +43 -0
- package/.claude/commands/investigate.md +547 -0
- package/.claude/commands/learn.md +55 -0
- package/.claude/commands/lint-rules.md +400 -0
- package/.claude/commands/mode.md +58 -0
- package/.claude/commands/modify-feature.md +209 -0
- package/.claude/commands/module-review.md +149 -0
- package/.claude/commands/move-section.md +67 -0
- package/.claude/commands/new-draft.md +67 -0
- package/.claude/commands/new-feature.md +286 -0
- package/.claude/commands/new-task.md +156 -0
- package/.claude/commands/notification.md +107 -0
- package/.claude/commands/pm-start.md +119 -0
- package/.claude/commands/projects.md +32 -0
- package/.claude/commands/promote.md +43 -0
- package/.claude/commands/rasis-report.md +1323 -0
- package/.claude/commands/release-note.md +130 -0
- package/.claude/commands/reply-watch.md +149 -0
- package/.claude/commands/requirement.md +352 -0
- package/.claude/commands/resume-state.md +187 -0
- package/.claude/commands/reviewpr.md +118 -0
- package/.claude/commands/save-state.md +100 -0
- package/.claude/commands/sentry-pr.md +157 -0
- package/.claude/commands/start-task.md +87 -0
- package/.claude/commands/system-review.md +147 -0
- package/.claude/commands/task-bypass.md +70 -0
- package/.claude/commands/task-estimate.md +100 -0
- package/.claude/commands/template-apply.md +89 -0
- package/.claude/commands/test-design.md +116 -0
- package/.claude/commands/transfer-mismatch.md +317 -0
- package/.claude/commands/verify.md +51 -0
- package/.claude/evals/grader-loop-mode-autonomy.sh +165 -0
- package/.claude/evals/grader-system-reminder-attention.sh +99 -0
- package/.claude/evals/loop-mode-autonomy.md +121 -0
- package/.claude/evals/loop-mode-autonomy.results.template.md +133 -0
- package/.claude/evals/system-reminder-attention.md +123 -0
- package/.claude/evals/system-reminder-attention.results.template.md +93 -0
- package/.claude/evals/system-reminder-attention.runner.md +353 -0
- package/.claude/harness-config.local.yml +48 -0
- package/.claude/harness-config.yml +534 -0
- package/.claude/hooks/agent-marker-clear.sh +43 -0
- package/.claude/hooks/agent-marker-set.sh +40 -0
- package/.claude/hooks/agent-router-suggest.sh +123 -0
- package/.claude/hooks/autonomous-action-guard.sh +242 -0
- package/.claude/hooks/byproduct-discharge-guard.sh +128 -0
- package/.claude/hooks/check-md-mermaid.sh +144 -0
- package/.claude/hooks/check-required-env.sh +95 -0
- package/.claude/hooks/check-serena-mcp.sh +123 -0
- package/.claude/hooks/confidence-gate.sh +139 -0
- package/.claude/hooks/context-budget.sh +233 -0
- package/.claude/hooks/delegation-guard.sh +99 -0
- package/.claude/hooks/dispatcher-manifest.tsv +38 -0
- package/.claude/hooks/draft-flow-guard.sh +304 -0
- package/.claude/hooks/failure-loop-detect.sh +139 -0
- package/.claude/hooks/gateguard.sh +209 -0
- package/.claude/hooks/improvement-proposal.sh +112 -0
- package/.claude/hooks/init-tasks-on-start.sh +34 -0
- package/.claude/hooks/lib/bypass-logger.sh +82 -0
- package/.claude/hooks/lib/confidence-gate/bypass.sh +48 -0
- package/.claude/hooks/lib/confidence-gate/extract.sh +99 -0
- package/.claude/hooks/lib/confidence-gate/major-agent-filter.sh +59 -0
- package/.claude/hooks/lib/confidence-gate/messages.sh +53 -0
- package/.claude/hooks/lib/config-loader.sh +784 -0
- package/.claude/hooks/lib/delegation-guard/bash-whitelist.sh +323 -0
- package/.claude/hooks/lib/delegation-guard/git-deny.sh +188 -0
- package/.claude/hooks/lib/delegation-guard/protected-paths.sh +105 -0
- package/.claude/hooks/lib/delegation-guard/subagent-detect.sh +40 -0
- package/.claude/hooks/lib/dispatcher-core.sh +454 -0
- package/.claude/hooks/lib/improvement-proposal/aggregate.py +466 -0
- package/.claude/hooks/lib/improvement-proposal/cache.sh +78 -0
- package/.claude/hooks/lib/mode-loader.sh +80 -0
- package/.claude/hooks/lib/next-actions-parser.sh +153 -0
- package/.claude/hooks/lib/project-root.sh +60 -0
- package/.claude/hooks/list-md-plan-first-reminder.sh +143 -0
- package/.claude/hooks/loop-auto-progress-reminder.sh +108 -0
- package/.claude/hooks/loop-confirmation-detector.sh +241 -0
- package/.claude/hooks/mode-asana-prompt.sh +61 -0
- package/.claude/hooks/mode-enforce.sh +57 -0
- package/.claude/hooks/mode-session-start.sh +93 -0
- package/.claude/hooks/next-actions-surface.sh +136 -0
- package/.claude/hooks/notification-dispatcher.sh +9 -0
- package/.claude/hooks/notify.sh +27 -0
- package/.claude/hooks/parallel-subagent-reminder.sh +469 -0
- package/.claude/hooks/post-tool-use-dispatcher.sh +9 -0
- package/.claude/hooks/pre-tool-use-dispatcher.sh +9 -0
- package/.claude/hooks/reviewer-count-guard.sh +313 -0
- package/.claude/hooks/session-help-surface.sh +192 -0
- package/.claude/hooks/session-start-dispatcher.sh +9 -0
- package/.claude/hooks/session-start-wrapper.sh +156 -0
- package/.claude/hooks/stale-harness-detect.sh +422 -0
- package/.claude/hooks/stop-dispatcher.sh +9 -0
- package/.claude/hooks/stop.sh +25 -0
- package/.claude/hooks/subagent-stop-dispatcher.sh +9 -0
- package/.claude/hooks/task-rule-guard.sh +317 -0
- package/.claude/hooks/tests/run-tests.sh +23 -0
- package/.claude/hooks/tests/test-agent-marker-warn.sh +86 -0
- package/.claude/hooks/tests/test-check-required-env.sh +138 -0
- package/.claude/hooks/tests/test-confidence-gate.sh +170 -0
- package/.claude/hooks/tests/test-config-env-override.sh +220 -0
- package/.claude/hooks/tests/test-gate-disable.sh +118 -0
- package/.claude/hooks/tests/test-improvement-proposal.sh +284 -0
- package/.claude/hooks/tool-call-slip-detector.sh +188 -0
- package/.claude/hooks/user-prompt-submit-dispatcher.sh +9 -0
- package/.claude/hooks/why-x5-reminder.sh +45 -0
- package/.claude/hooks/why-x5-violation-detect.sh +152 -0
- package/.claude/hooks/workflow-guard.sh +263 -0
- package/.claude/mode.yml +28 -0
- package/.claude/project-rules/development-process.md +8 -0
- package/.claude/project-rules/git-workflow.md +8 -0
- package/.claude/project-rules/modes.md +8 -0
- package/.claude/project-rules/self-improvement.md +8 -0
- package/.claude/project-rules/task-management.md +8 -0
- package/.claude/project-rules/why-x5-output.md +8 -0
- package/.claude/project-rules/workflow.md +8 -0
- package/.claude/rules/development-process.md +293 -0
- package/.claude/rules/git-workflow.md +71 -0
- package/.claude/rules/modes.md +189 -0
- package/.claude/rules/self-improvement.md +76 -0
- package/.claude/rules/task-management.md +261 -0
- package/.claude/rules/why-x5-output.md +97 -0
- package/.claude/rules/workflow.md +157 -0
- package/.claude/rules-details/README.md +67 -0
- package/.claude/rules-details/development-process/confidence-gate.md +22 -0
- package/.claude/rules-details/development-process/cross-repo-write.md +35 -0
- package/.claude/rules-details/development-process/delegation-requirements.md +158 -0
- package/.claude/rules-details/development-process/harness-sync.md +21 -0
- package/.claude/rules-details/development-process/origin.md +13 -0
- package/.claude/rules-details/development-process/parallelization-origin.md +22 -0
- package/.claude/rules-details/development-process/research-reuse.md +22 -0
- package/.claude/rules-details/development-process/staging-strategy.md +47 -0
- package/.claude/rules-details/modes/artifacts.md +34 -0
- package/.claude/rules-details/modes/compliance-items.md +120 -0
- package/.claude/rules-details/modes/five-layer-enforcement.md +46 -0
- package/.claude/rules-details/modes/mode-hooks.md +51 -0
- package/.claude/rules-details/modes/origin.md +17 -0
- package/.claude/rules-details/self-improvement/l4-mechanics.md +36 -0
- package/.claude/rules-details/self-improvement/origin.md +8 -0
- package/.claude/rules-details/self-improvement/related-skills.md +35 -0
- package/.claude/rules-details/self-improvement/when-to-use-layers.md +39 -0
- package/.claude/rules-details/task-management/hook-enforcement.md +25 -0
- package/.claude/rules-details/task-management/mandatory-reading.md +20 -0
- package/.claude/rules-details/task-management/origin.md +12 -0
- package/.claude/rules-details/task-management/parking-lot.md +26 -0
- package/.claude/rules-details/task-management/plan-first.md +44 -0
- package/.claude/rules-details/task-management/six-articles.md +68 -0
- package/.claude/rules-details/task-management/task-migration.md +16 -0
- package/.claude/rules-details/task-management/ui-detection.md +11 -0
- package/.claude/rules-details/why-x5-output/examples.md +41 -0
- package/.claude/rules-details/why-x5-output/feedback-memory.md +14 -0
- package/.claude/rules-details/why-x5-output/origin.md +10 -0
- package/.claude/rules-details/why-x5-output/v1-v10-history.md +19 -0
- package/.claude/rules-details/workflow/10-stage.md +43 -0
- package/.claude/rules-details/workflow/14-stage.md +52 -0
- package/.claude/rules-details/workflow/byproduct-discharge.md +39 -0
- package/.claude/rules-details/workflow/draft-flow-guard.md +31 -0
- package/.claude/rules-details/workflow/fan-out.md +70 -0
- package/.claude/rules-details/workflow/mece-20.md +36 -0
- package/.claude/rules-details/workflow/origin.md +14 -0
- package/.claude/rules-details/workflow/refactoring.md +48 -0
- package/.claude/rules-details/workflow/related-skills.md +22 -0
- package/.claude/rules-details/workflow/reviewer-prompt.md +100 -0
- package/.claude/rules-details/workflow/session-persistence.md +46 -0
- package/.claude/rules-details/workflow/workflow-guard.md +36 -0
- package/.claude/scripts/__pycache__/harness-audit.cpython-313.pyc +0 -0
- package/.claude/scripts/agent-stocktake.py +421 -0
- package/.claude/scripts/check-md-mermaid.mjs +138 -0
- package/.claude/scripts/generate-settings.sh +0 -0
- package/.claude/scripts/harness-audit.py +1547 -0
- package/.claude/scripts/hc-config.sh +2265 -0
- package/.claude/scripts/init-tasks.sh +117 -0
- package/.claude/scripts/lib/enforcement-matrix-parse.sh +81 -0
- package/.claude/scripts/lib/hc-config-metadata.sh +190 -0
- package/.claude/scripts/lib/hc-config-web-server.js +1528 -0
- package/.claude/scripts/lib/hc-config-web-ui/app.js +1054 -0
- package/.claude/scripts/lib/hc-config-web-ui/index.html +130 -0
- package/.claude/scripts/lib/hc-config-web-ui/style.css +522 -0
- package/.claude/scripts/new-task-helper.sh +432 -0
- package/.claude/scripts/observe-repair.sh +437 -0
- package/.claude/scripts/observe-rotate.sh +311 -0
- package/.claude/scripts/statusline.sh +239 -0
- package/.claude/settings.generated.preview.json +211 -0
- package/.claude/settings.json +215 -0
- package/.claude/settings.local.example.json +20 -0
- package/.claude/settings.local.json +36 -0
- package/.claude/skills/agent-introspection-debugging/SKILL.md +123 -0
- package/.claude/skills/agent-router/README.md +137 -0
- package/.claude/skills/agent-router/SKILL.md +74 -0
- package/.claude/skills/agent-router/dispatch-table.yml +352 -0
- package/.claude/skills/agent-router/router.py +1086 -0
- package/.claude/skills/agent-router/samples/representative_prompts.txt +24 -0
- package/.claude/skills/agent-router/tests/__init__.py +0 -0
- package/.claude/skills/agent-router/tests/test_router.py +762 -0
- package/.claude/skills/artifacts-builder/LICENSE.txt +202 -0
- package/.claude/skills/artifacts-builder/SKILL.md +74 -0
- package/.claude/skills/artifacts-builder/scripts/bundle-artifact.sh +54 -0
- package/.claude/skills/artifacts-builder/scripts/init-artifact.sh +322 -0
- package/.claude/skills/artifacts-builder/scripts/shadcn-components.tar.gz +0 -0
- package/.claude/skills/brand-guidelines/LICENSE.txt +202 -0
- package/.claude/skills/brand-guidelines/SKILL.md +73 -0
- package/.claude/skills/canvas-design/LICENSE.txt +202 -0
- package/.claude/skills/canvas-design/SKILL.md +130 -0
- package/.claude/skills/canvas-design/canvas-fonts/ArsenalSC-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/ArsenalSC-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/BigShoulders-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/BigShoulders-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/BigShoulders-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Boldonse-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Boldonse-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/BricolageGrotesque-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/BricolageGrotesque-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/BricolageGrotesque-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/CrimsonPro-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/CrimsonPro-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/CrimsonPro-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/CrimsonPro-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/DMMono-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/DMMono-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/EricaOne-OFL.txt +94 -0
- package/.claude/skills/canvas-design/canvas-fonts/EricaOne-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/GeistMono-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/GeistMono-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/GeistMono-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Gloock-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Gloock-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexMono-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexMono-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexMono-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexSerif-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexSerif-BoldItalic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexSerif-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/IBMPlexSerif-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSans-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSans-BoldItalic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSans-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSans-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSans-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSerif-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/InstrumentSerif-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Italiana-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Italiana-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/JetBrainsMono-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/JetBrainsMono-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/JetBrainsMono-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Jura-Light.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Jura-Medium.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Jura-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/LibreBaskerville-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/LibreBaskerville-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Lora-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Lora-BoldItalic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Lora-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Lora-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Lora-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/NationalPark-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/NationalPark-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/NationalPark-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/NothingYouCouldDo-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/NothingYouCouldDo-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Outfit-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Outfit-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Outfit-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/PixelifySans-Medium.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/PixelifySans-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/PoiretOne-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/PoiretOne-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/RedHatMono-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/RedHatMono-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/RedHatMono-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Silkscreen-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Silkscreen-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/SmoochSans-Medium.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/SmoochSans-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Tektur-Medium.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/Tektur-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/Tektur-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/WorkSans-Bold.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/WorkSans-BoldItalic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/WorkSans-Italic.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/WorkSans-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/WorkSans-Regular.ttf +0 -0
- package/.claude/skills/canvas-design/canvas-fonts/YoungSerif-OFL.txt +93 -0
- package/.claude/skills/canvas-design/canvas-fonts/YoungSerif-Regular.ttf +0 -0
- package/.claude/skills/changelog-generator/SKILL.md +104 -0
- package/.claude/skills/check-md-mermaid/SKILL.md +62 -0
- package/.claude/skills/connect/SKILL.md +156 -0
- package/.claude/skills/connect-apps/SKILL.md +80 -0
- package/.claude/skills/content-research-writer/SKILL.md +538 -0
- package/.claude/skills/continuous-agent-loop/SKILL.md +187 -0
- package/.claude/skills/continuous-learning-v2/SKILL.md +238 -0
- package/.claude/skills/continuous-learning-v2/config.json +35 -0
- package/.claude/skills/continuous-learning-v2/hooks/observe.sh +333 -0
- package/.claude/skills/continuous-learning-v2/instinct-cli.py +406 -0
- package/.claude/skills/domain-name-brainstormer/SKILL.md +212 -0
- package/.claude/skills/eval-harness/SKILL.md +100 -0
- package/.claude/skills/eval-harness/swe-bench/README.md +80 -0
- package/.claude/skills/eval-harness/swe-bench/config.yml +29 -0
- package/.claude/skills/eval-harness/swe-bench/docker/Dockerfile +25 -0
- package/.claude/skills/eval-harness/swe-bench/docker/docker-compose.yml +18 -0
- package/.claude/skills/eval-harness/swe-bench/results/dry-run-2026-05-04.json +137 -0
- package/.claude/skills/eval-harness/swe-bench/results/dry-run-comparison-2026-05-04.md +112 -0
- package/.claude/skills/eval-harness/swe-bench/results/dry-run-improved-2026-05-04.json +165 -0
- package/.claude/skills/eval-harness/swe-bench/results/raw/astropy__astropy-12907.patch +12 -0
- package/.claude/skills/eval-harness/swe-bench/results/raw/astropy__astropy-12907.txt +322 -0
- package/.claude/skills/eval-harness/swe-bench/results/raw/astropy__astropy-12907.whole-file.txt +322 -0
- package/.claude/skills/eval-harness/swe-bench/runner.py +845 -0
- package/.claude/skills/eval-harness/swe-bench/scoring.py +298 -0
- package/.claude/skills/eval-harness/swe-bench/tasks/fetch_tasks.py +81 -0
- package/.claude/skills/eval-harness/swe-bench/tasks/lite-50.json +702 -0
- package/.claude/skills/file-organizer/SKILL.md +433 -0
- package/.claude/skills/gan-style-harness/SKILL.md +111 -0
- package/.claude/skills/gateguard/.gateguard.yml +47 -0
- package/.claude/skills/gateguard/SKILL.md +99 -0
- package/.claude/skills/internal-comms/LICENSE.txt +202 -0
- package/.claude/skills/internal-comms/SKILL.md +32 -0
- package/.claude/skills/internal-comms/examples/3p-updates.md +47 -0
- package/.claude/skills/internal-comms/examples/company-newsletter.md +65 -0
- package/.claude/skills/internal-comms/examples/faq-answers.md +30 -0
- package/.claude/skills/internal-comms/examples/general-comms.md +16 -0
- package/.claude/skills/invoice-organizer/SKILL.md +446 -0
- package/.claude/skills/karpathy-guidelines/SKILL.md +67 -0
- package/.claude/skills/langsmith-fetch/SKILL.md +485 -0
- package/.claude/skills/lead-research-assistant/SKILL.md +199 -0
- package/.claude/skills/mcp-builder/LICENSE.txt +202 -0
- package/.claude/skills/mcp-builder/SKILL.md +328 -0
- package/.claude/skills/mcp-builder/reference/evaluation.md +602 -0
- package/.claude/skills/mcp-builder/reference/mcp_best_practices.md +915 -0
- package/.claude/skills/mcp-builder/reference/node_mcp_server.md +916 -0
- package/.claude/skills/mcp-builder/reference/python_mcp_server.md +752 -0
- package/.claude/skills/mcp-builder/scripts/connections.py +151 -0
- package/.claude/skills/mcp-builder/scripts/evaluation.py +373 -0
- package/.claude/skills/mcp-builder/scripts/example_evaluation.xml +22 -0
- package/.claude/skills/mcp-builder/scripts/requirements.txt +2 -0
- package/.claude/skills/raffle-winner-picker/SKILL.md +159 -0
- package/.claude/skills/repo-map/README.md +125 -0
- package/.claude/skills/repo-map/SKILL.md +128 -0
- package/.claude/skills/repo-map/examples/sample-output.md +1194 -0
- package/.claude/skills/repo-map/repo-map.py +715 -0
- package/.claude/skills/salesforce-e2e-testing/SKILL.md +116 -0
- package/.claude/skills/salesforce-e2e-testing/catalog-template.md +161 -0
- package/.claude/skills/salesforce-e2e-testing/methodology.md +179 -0
- package/.claude/skills/salesforce-e2e-testing/observation-rules.md +280 -0
- package/.claude/skills/salesforce-e2e-testing/pattern-taxonomy.md +392 -0
- package/.claude/skills/salesforce-e2e-testing/procedure-template.md +376 -0
- package/.claude/skills/skill-creator/LICENSE.txt +202 -0
- package/.claude/skills/skill-creator/SKILL.md +209 -0
- package/.claude/skills/skill-creator/scripts/init_skill.py +303 -0
- package/.claude/skills/skill-creator/scripts/package_skill.py +110 -0
- package/.claude/skills/skill-creator/scripts/quick_validate.py +65 -0
- package/.claude/skills/skill-share/SKILL.md +80 -0
- package/.claude/skills/tailored-resume-generator/SKILL.md +345 -0
- package/.claude/skills/template-skill/SKILL.md +6 -0
- package/.claude/skills/theme-factory/LICENSE.txt +202 -0
- package/.claude/skills/theme-factory/SKILL.md +59 -0
- package/.claude/skills/theme-factory/theme-showcase.pdf +0 -0
- package/.claude/skills/theme-factory/themes/arctic-frost.md +19 -0
- package/.claude/skills/theme-factory/themes/botanical-garden.md +19 -0
- package/.claude/skills/theme-factory/themes/desert-rose.md +19 -0
- package/.claude/skills/theme-factory/themes/forest-canopy.md +19 -0
- package/.claude/skills/theme-factory/themes/golden-hour.md +19 -0
- package/.claude/skills/theme-factory/themes/midnight-galaxy.md +19 -0
- package/.claude/skills/theme-factory/themes/modern-minimalist.md +19 -0
- package/.claude/skills/theme-factory/themes/ocean-depths.md +19 -0
- package/.claude/skills/theme-factory/themes/sunset-boulevard.md +19 -0
- package/.claude/skills/theme-factory/themes/tech-innovation.md +19 -0
- package/.claude/skills/verification-loop/SKILL.md +129 -0
- package/.claude/skills/webapp-testing/LICENSE.txt +202 -0
- package/.claude/skills/webapp-testing/SKILL.md +96 -0
- package/.claude/skills/webapp-testing/examples/console_logging.py +35 -0
- package/.claude/skills/webapp-testing/examples/element_discovery.py +40 -0
- package/.claude/skills/webapp-testing/examples/static_html_automation.py +33 -0
- package/.claude/skills/webapp-testing/scripts/with_server.py +106 -0
- package/.claude/templates/docs/draft/_DRAFT_TEMPLATE.md +162 -0
- package/.claude/templates/docs/draft/_TEST_DESIGN_TEMPLATE.md +76 -0
- package/.claude/templates/docs/tasks/_TASK_TEMPLATE.md +276 -0
- package/.claude/templates/docs/tasks/list.md +80 -0
- package/.claude/templates/docs/tasks/parking-lot.md +82 -0
- package/.claude/templates/settings.user-level.json.template +306 -0
- package/.claude/tests/SMOKE-CLASSIFICATION.md +199 -0
- package/.claude/tests/action-space-count-smoke.sh +130 -0
- package/.claude/tests/agent-router-suggest-wiring-smoke.sh +188 -0
- package/.claude/tests/audit-followups-smoke.sh +158 -0
- package/.claude/tests/autonomous-action-guard-relaxation-smoke.sh +479 -0
- package/.claude/tests/autonomous-action-guard-smoke.sh +187 -0
- package/.claude/tests/check-serena-mcp-smoke.sh +156 -0
- package/.claude/tests/common-rules-import-smoke.sh +209 -0
- package/.claude/tests/confidence-gate-smoke.sh +220 -0
- package/.claude/tests/config-feature-toggles-smoke.sh +389 -0
- package/.claude/tests/context-budget-smoke.sh +222 -0
- package/.claude/tests/custom-pm-commands-smoke.sh +93 -0
- package/.claude/tests/delegation-guard-code-smoke.sh +244 -0
- package/.claude/tests/delegation-guard-deny-layers-smoke.sh +356 -0
- package/.claude/tests/delegation-guard-readonly-filter-smoke.sh +205 -0
- package/.claude/tests/delegation-guard-search-whitelist-smoke.sh +152 -0
- package/.claude/tests/delegation-guard-segment-smoke.sh +109 -0
- package/.claude/tests/dispatcher-blocker-invariance-smoke.sh +700 -0
- package/.claude/tests/dispatcher-core-smoke.sh +452 -0
- package/.claude/tests/dispatcher-merge-matrix-smoke.sh +825 -0
- package/.claude/tests/dispatcher-success-stdout-smoke.sh +290 -0
- package/.claude/tests/draft-flow-guard-approved-dir-smoke.sh +234 -0
- package/.claude/tests/draft-flow-guard-smoke.sh +194 -0
- package/.claude/tests/dual-mode-portability-smoke.sh +131 -0
- package/.claude/tests/effective-hook-matrix-smoke.sh +261 -0
- package/.claude/tests/enforcement-mismatch-smoke.sh +263 -0
- package/.claude/tests/fixtures/cascade-sample.jsonl +9 -0
- package/.claude/tests/fixtures/next-actions/case-clean.md +14 -0
- package/.claude/tests/fixtures/next-actions/case-with-red.md +16 -0
- package/.claude/tests/fixtures/next-actions/case-with-yellow-only.md +14 -0
- package/.claude/tests/fixtures/normal-broken-scatter.jsonl +5 -0
- package/.claude/tests/fixtures/task-71/blocker-baseline.tsv +24 -0
- package/.claude/tests/fixtures/task-71/settings-inventory.tsv +37 -0
- package/.claude/tests/fixtures/transcript-50pct.jsonl +2 -0
- package/.claude/tests/fixtures/transcript-60pct.jsonl +2 -0
- package/.claude/tests/fixtures/transcript-80pct.jsonl +2 -0
- package/.claude/tests/fixtures/transcript-95pct.jsonl +2 -0
- package/.claude/tests/fixtures/workflow-guard/case-2-mid.json +21 -0
- package/.claude/tests/fixtures/workflow-guard/case-3-blocked.json +33 -0
- package/.claude/tests/fixtures/workflow-guard/case-4-clean.json +27 -0
- package/.claude/tests/fixtures/workflow-guard/case-8-modify.json +23 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-1.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-2.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-3.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-4.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-5.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-6.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-7.json +1 -0
- package/.claude/tests/fixtures/workflow-guard/inputs/case-8.json +1 -0
- package/.claude/tests/gateguard-smoke.sh +213 -0
- package/.claude/tests/git-deny-mainline-policy-smoke.sh +222 -0
- package/.claude/tests/harness-audit-c-batch-smoke.sh +270 -0
- package/.claude/tests/harness-audit-compare-smoke.sh +186 -0
- package/.claude/tests/harness-audit-pipeline-health-smoke.sh +326 -0
- package/.claude/tests/harness-config-local-smoke.sh +232 -0
- package/.claude/tests/hc-config-git-policy-smoke.sh +241 -0
- package/.claude/tests/hc-config-key-parity-smoke.sh +149 -0
- package/.claude/tests/hc-config-migration-smoke.sh +251 -0
- package/.claude/tests/hc-config-script-smoke.sh +1106 -0
- package/.claude/tests/hc-config-tui-smoke.sh +801 -0
- package/.claude/tests/hc-config-web-ui-smoke.sh +3224 -0
- package/.claude/tests/hook-cwd-robustness-smoke.sh +206 -0
- package/.claude/tests/hook-frequency-tweaks-smoke.sh +312 -0
- package/.claude/tests/improvement-proposal-cache-smoke.sh +238 -0
- package/.claude/tests/install-sh-overwrite-all-smoke.sh +274 -0
- package/.claude/tests/install-sh-regen-settings-smoke.sh +301 -0
- package/.claude/tests/install-sh-sync-drift-smoke.sh +285 -0
- package/.claude/tests/layer-b-context-isolation-smoke.sh +392 -0
- package/.claude/tests/list-md-plan-first-reminder-smoke.sh +313 -0
- package/.claude/tests/loop-auto-progress-smoke.sh +372 -0
- package/.claude/tests/loop-confirmation-detector-smoke.sh +674 -0
- package/.claude/tests/new-task-batch-update-smoke.sh +664 -0
- package/.claude/tests/next-actions-hooks-smoke.sh +283 -0
- package/.claude/tests/npx-cli-smoke.sh +696 -0
- package/.claude/tests/observe-flock-smoke.sh +223 -0
- package/.claude/tests/observe-jq-parse-smoke.sh +250 -0
- package/.claude/tests/observe-repair-smoke.sh +475 -0
- package/.claude/tests/observe-rotate-smoke.sh +428 -0
- package/.claude/tests/observe-subagent-stop-smoke.sh +476 -0
- package/.claude/tests/parallel-subagent-reminder-smoke.sh +918 -0
- package/.claude/tests/project-root-smoke.sh +140 -0
- package/.claude/tests/project-rules-protection-smoke.sh +199 -0
- package/.claude/tests/review-required-min-count-smoke.sh +286 -0
- package/.claude/tests/reviewer-count-guard-smoke.sh +490 -0
- package/.claude/tests/rule-architecture-smoke.sh +418 -0
- package/.claude/tests/rule-change-draft-flow-guard-smoke.sh +343 -0
- package/.claude/tests/run-all-smokes.sh +340 -0
- package/.claude/tests/session-help-surface-smoke.sh +224 -0
- package/.claude/tests/session-start-parallel-smoke.sh +165 -0
- package/.claude/tests/sessionstart-budget-smoke.sh +185 -0
- package/.claude/tests/sessionstart-footprint-smoke.sh +258 -0
- package/.claude/tests/settings-dispatcher-baseline-smoke.sh +709 -0
- package/.claude/tests/settings-generation-feature-pruning-smoke.sh +196 -0
- package/.claude/tests/stale-harness-detect-smoke.sh +974 -0
- package/.claude/tests/statusline-smoke.sh +180 -0
- package/.claude/tests/task-rule-guard-smoke.sh +656 -0
- package/.claude/tests/tool-call-slip-detector-smoke.sh +101 -0
- package/.claude/tests/wave-precheck-template-smoke.sh +159 -0
- package/.claude/tests/why-x5-violation-detect-smoke.sh +157 -0
- package/.claude/tests/workflow-guard-smoke.sh +266 -0
- package/CLAUDE.md +75 -0
- package/LICENSE +21 -0
- package/README.md +790 -0
- package/bin/cli.js +395 -0
- package/docs/INVENTORY.md +163 -0
- package/install.sh +769 -0
- package/package.json +25 -0
|
@@ -0,0 +1,356 @@
|
|
|
1
|
+
#!/usr/bin/env bash
|
|
2
|
+
# delegation-guard-deny-layers-smoke.sh — Smoke test for the 2 deny layers
|
|
3
|
+
# (destructive + protected branch push) in .claude/hooks/delegation-guard.sh.
|
|
4
|
+
#
|
|
5
|
+
# 設計起源:
|
|
6
|
+
# - 2026-05-18 user 指示「mainAgentでgitコマンドは基本的(破壊的変更以外)に
|
|
7
|
+
# 実行可能」を実装した commit b7eea6e (destructive layer 起源)。
|
|
8
|
+
# next-actions entry #13 (既実装、commit 9eacc3c)。
|
|
9
|
+
# - 2026-05-18 user 指示「gitの許可はmainとstgと含むブランチに対するpush、
|
|
10
|
+
# 破壊的変更以外に対してを許可してください」を実装した commit ad2f7bc
|
|
11
|
+
# (protected branch push deny layer)。
|
|
12
|
+
# next-actions entry #14 (本 task #30 で smoke 追加)。
|
|
13
|
+
#
|
|
14
|
+
# 対象 hook:
|
|
15
|
+
# .claude/hooks/lib/delegation-guard/git-deny.sh の 2 layer:
|
|
16
|
+
# - check_git_destructive (L12-L42、ECC_ALLOW_DESTRUCTIVE_GIT=1 で bypass)
|
|
17
|
+
# - check_protected_branch_push (L58-L128、ECC_ALLOW_PROTECTED_BRANCH_PUSH=1 で bypass)
|
|
18
|
+
# 両 layer は .claude/hooks/delegation-guard.sh から呼ばれる。
|
|
19
|
+
#
|
|
20
|
+
# 検証範囲:
|
|
21
|
+
# - destructive deny:
|
|
22
|
+
# - Block cases (23): destructive git 操作が decision:"block" + reason に
|
|
23
|
+
# "[git destructive guard]" を含むこと
|
|
24
|
+
# (`git push -f` single space は 2026-05-18 hook fix で blockable 化:
|
|
25
|
+
# regex を `push[[:space:]]+([^|;&]*[[:space:]])?-f([[:space:]]|$)` に修正)
|
|
26
|
+
# (iter3 R5 MEDIUM F-03/F-04/F-05 解消: push --mirror / --all / --branches / --prune
|
|
27
|
+
# を追加、defense-in-depth 完全化)
|
|
28
|
+
# - Pass cases (10): 非破壊 git 操作が block されないこと
|
|
29
|
+
# - Bypass cases (3): ECC_ALLOW_DESTRUCTIVE_GIT=1 で block 解除されること
|
|
30
|
+
# - protected branch push deny (本 file 末尾セクションで検証):
|
|
31
|
+
# - Block cases (9): main 明示 / stg 系部分一致 (3 variant) +
|
|
32
|
+
# --force-with-lease origin main (destructive + protected 二重 guard) +
|
|
33
|
+
# HEAD:main / HEAD:refs/heads/main / +main / +HEAD:main (R5 HIGH F-01/F-02 解消) が
|
|
34
|
+
# decision:"block" + reason に "[protected branch push deny]" を含むこと
|
|
35
|
+
# - Pass cases (1): feature branch への push は block されないこと
|
|
36
|
+
# (expect_pass_protected で destructive 干渉排除 + protected 単体検証)
|
|
37
|
+
# - Bypass case (1): ECC_ALLOW_PROTECTED_BRANCH_PUSH=1 で main push が通過
|
|
38
|
+
# - Negative bypass case (1): ECC_ALLOW_PROTECTED_BRANCH_PUSH=0 明示でも
|
|
39
|
+
# block 維持 (= "1" 比較の防御深度検証、iteration 2 追加)
|
|
40
|
+
#
|
|
41
|
+
# 非対象:
|
|
42
|
+
# - refspec 省略 (`git push` 引数なし) の current branch 解決 case
|
|
43
|
+
# (smoke 実行時の HEAD が任意 branch のため pure-test では再現困難、
|
|
44
|
+
# 別 task で git rev-parse mock 化 or HEAD 制御 wrapper を検討)
|
|
45
|
+
# - subagent context (delegation-guard 短絡経路、本 smoke は main agent
|
|
46
|
+
# context で起動)
|
|
47
|
+
#
|
|
48
|
+
# 重要制約:
|
|
49
|
+
# - file-top に `set -euo pipefail` を書かない (caller leak 防止教訓
|
|
50
|
+
# `feedback_set_e_in_sourced_libs`)
|
|
51
|
+
# - subagent 短絡を避けるため CLAUDE_HARNESS_ROLE を明示的に unset し、
|
|
52
|
+
# marker dir に lock を作らない。
|
|
53
|
+
#
|
|
54
|
+
# 実行:
|
|
55
|
+
# bash .claude/tests/delegation-guard-deny-layers-smoke.sh
|
|
56
|
+
#
|
|
57
|
+
# 終了コード:
|
|
58
|
+
# 0 = 全 case PASS / 1 = 1 件以上 FAIL
|
|
59
|
+
|
|
60
|
+
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
|
|
61
|
+
REPO_ROOT="$(cd "$SCRIPT_DIR/../.." && pwd)"
|
|
62
|
+
HOOK="$REPO_ROOT/.claude/hooks/delegation-guard.sh"
|
|
63
|
+
|
|
64
|
+
# subagent 短絡経路を確実に閉じる (main agent 文脈で hook を起動するため)
|
|
65
|
+
unset CLAUDE_HARNESS_ROLE
|
|
66
|
+
unset ECC_ALLOW_DESTRUCTIVE_GIT
|
|
67
|
+
unset ECC_ALLOW_PROTECTED_BRANCH_PUSH
|
|
68
|
+
|
|
69
|
+
PASS=0
|
|
70
|
+
FAIL=0
|
|
71
|
+
FAILED_CASES=()
|
|
72
|
+
|
|
73
|
+
# tool_input.command を含む PreToolUse JSON を python3 で安全に組み立てる
|
|
74
|
+
json_input() {
|
|
75
|
+
local cmd="$1"
|
|
76
|
+
CMD="$cmd" python3 -c '
|
|
77
|
+
import json, os
|
|
78
|
+
print(json.dumps({"tool_input": {"command": os.environ["CMD"]}}))
|
|
79
|
+
'
|
|
80
|
+
}
|
|
81
|
+
|
|
82
|
+
# stdout から decision フィールドを抽出 (parse 失敗時は "parse_error")
|
|
83
|
+
# BrokenPipeError noise を抑制するため python3 で stdin を full read
|
|
84
|
+
extract_decision() {
|
|
85
|
+
OUT_TEXT="$1" python3 -c '
|
|
86
|
+
import os, json
|
|
87
|
+
try:
|
|
88
|
+
d = json.loads(os.environ["OUT_TEXT"])
|
|
89
|
+
print(d.get("decision", "none"))
|
|
90
|
+
except Exception:
|
|
91
|
+
print("parse_error")
|
|
92
|
+
' 2>/dev/null
|
|
93
|
+
}
|
|
94
|
+
|
|
95
|
+
# stdout から reason フィールドを抽出
|
|
96
|
+
extract_reason() {
|
|
97
|
+
OUT_TEXT="$1" python3 -c '
|
|
98
|
+
import os, json
|
|
99
|
+
try:
|
|
100
|
+
d = json.loads(os.environ["OUT_TEXT"])
|
|
101
|
+
print(d.get("reason", ""))
|
|
102
|
+
except Exception:
|
|
103
|
+
print("")
|
|
104
|
+
' 2>/dev/null
|
|
105
|
+
}
|
|
106
|
+
|
|
107
|
+
# block 期待 (destructive layer): decision="block" + reason が "[git destructive guard]" を含むこと
|
|
108
|
+
# destructive cases では protected layer に到達しないが、念のため env で bypass し
|
|
109
|
+
# layer 単体を検証する (destructive 先勝ちで block されることを保証)。
|
|
110
|
+
expect_block() {
|
|
111
|
+
local label="$1"
|
|
112
|
+
local cmd="$2"
|
|
113
|
+
local out decision reason
|
|
114
|
+
|
|
115
|
+
out=$(json_input "$cmd" | ECC_ALLOW_PROTECTED_BRANCH_PUSH=1 bash "$HOOK" Bash 2>&1)
|
|
116
|
+
decision=$(extract_decision "$out")
|
|
117
|
+
reason=$(extract_reason "$out")
|
|
118
|
+
|
|
119
|
+
if [ "$decision" = "block" ] && printf '%s' "$reason" | grep -q '\[git destructive guard\]'; then
|
|
120
|
+
PASS=$((PASS + 1))
|
|
121
|
+
printf " PASS: %s\n" "$label"
|
|
122
|
+
else
|
|
123
|
+
FAIL=$((FAIL + 1))
|
|
124
|
+
FAILED_CASES+=("$label (decision=$decision)")
|
|
125
|
+
printf " FAIL: %s\n cmd: %s\n decision: %s\n out: %s\n" "$label" "$cmd" "$decision" "$out"
|
|
126
|
+
fi
|
|
127
|
+
}
|
|
128
|
+
|
|
129
|
+
# block 期待 (protected branch push layer): decision="block" + reason が
|
|
130
|
+
# "[protected branch push deny]" を含むこと。destructive layer が干渉しないよう
|
|
131
|
+
# env で bypass し layer 単体を検証する (push origin main 等は destructive ではない)。
|
|
132
|
+
expect_block_protected() {
|
|
133
|
+
local label="$1"
|
|
134
|
+
local cmd="$2"
|
|
135
|
+
local out decision reason
|
|
136
|
+
|
|
137
|
+
out=$(json_input "$cmd" | ECC_ALLOW_DESTRUCTIVE_GIT=1 bash "$HOOK" Bash 2>&1)
|
|
138
|
+
decision=$(extract_decision "$out")
|
|
139
|
+
reason=$(extract_reason "$out")
|
|
140
|
+
|
|
141
|
+
if [ "$decision" = "block" ] && printf '%s' "$reason" | grep -q '\[protected branch push deny\]'; then
|
|
142
|
+
PASS=$((PASS + 1))
|
|
143
|
+
printf " PASS: %s\n" "$label"
|
|
144
|
+
else
|
|
145
|
+
FAIL=$((FAIL + 1))
|
|
146
|
+
FAILED_CASES+=("$label (decision=$decision)")
|
|
147
|
+
printf " FAIL: %s\n cmd: %s\n decision: %s\n out: %s\n" "$label" "$cmd" "$decision" "$out"
|
|
148
|
+
fi
|
|
149
|
+
}
|
|
150
|
+
|
|
151
|
+
# pass 期待 (destructive layer): decision != "block" ({} or allow JSON)
|
|
152
|
+
# protected layer に到達しないよう env で bypass する (例: pull origin feature/test
|
|
153
|
+
# は protected 対象外だが、push 系 pass case がないので影響なし、念のため固定)。
|
|
154
|
+
expect_pass() {
|
|
155
|
+
local label="$1"
|
|
156
|
+
local cmd="$2"
|
|
157
|
+
local out decision
|
|
158
|
+
|
|
159
|
+
out=$(json_input "$cmd" | ECC_ALLOW_PROTECTED_BRANCH_PUSH=1 bash "$HOOK" Bash 2>&1)
|
|
160
|
+
decision=$(extract_decision "$out")
|
|
161
|
+
|
|
162
|
+
if [ "$decision" != "block" ]; then
|
|
163
|
+
PASS=$((PASS + 1))
|
|
164
|
+
printf " PASS: %s\n" "$label"
|
|
165
|
+
else
|
|
166
|
+
FAIL=$((FAIL + 1))
|
|
167
|
+
FAILED_CASES+=("$label (decision=$decision)")
|
|
168
|
+
printf " FAIL: %s\n cmd: %s\n out: %s\n" "$label" "$cmd" "$out"
|
|
169
|
+
fi
|
|
170
|
+
}
|
|
171
|
+
|
|
172
|
+
# pass 期待 (protected layer 単体): decision != "block"。
|
|
173
|
+
# destructive layer が干渉しないよう env で bypass する。
|
|
174
|
+
expect_pass_protected() {
|
|
175
|
+
local label="$1"
|
|
176
|
+
local cmd="$2"
|
|
177
|
+
local out decision
|
|
178
|
+
|
|
179
|
+
out=$(json_input "$cmd" | ECC_ALLOW_DESTRUCTIVE_GIT=1 bash "$HOOK" Bash 2>&1)
|
|
180
|
+
decision=$(extract_decision "$out")
|
|
181
|
+
|
|
182
|
+
if [ "$decision" != "block" ]; then
|
|
183
|
+
PASS=$((PASS + 1))
|
|
184
|
+
printf " PASS: %s\n" "$label"
|
|
185
|
+
else
|
|
186
|
+
FAIL=$((FAIL + 1))
|
|
187
|
+
FAILED_CASES+=("$label (decision=$decision)")
|
|
188
|
+
printf " FAIL: %s\n cmd: %s\n out: %s\n" "$label" "$cmd" "$out"
|
|
189
|
+
fi
|
|
190
|
+
}
|
|
191
|
+
|
|
192
|
+
# bypass 期待 (destructive): env ECC_ALLOW_DESTRUCTIVE_GIT=1 で decision != "block"
|
|
193
|
+
# 併せて protected layer の干渉も排除 (push --force bypass で protected layer に到達する場合あり)。
|
|
194
|
+
expect_bypass_pass() {
|
|
195
|
+
local label="$1"
|
|
196
|
+
local cmd="$2"
|
|
197
|
+
local out decision
|
|
198
|
+
|
|
199
|
+
out=$(json_input "$cmd" | ECC_ALLOW_DESTRUCTIVE_GIT=1 ECC_ALLOW_PROTECTED_BRANCH_PUSH=1 bash "$HOOK" Bash 2>&1)
|
|
200
|
+
decision=$(extract_decision "$out")
|
|
201
|
+
|
|
202
|
+
if [ "$decision" != "block" ]; then
|
|
203
|
+
PASS=$((PASS + 1))
|
|
204
|
+
printf " PASS: %s\n" "$label"
|
|
205
|
+
else
|
|
206
|
+
FAIL=$((FAIL + 1))
|
|
207
|
+
FAILED_CASES+=("$label (decision=$decision)")
|
|
208
|
+
printf " FAIL: %s\n cmd: %s\n out: %s\n" "$label" "$cmd" "$out"
|
|
209
|
+
fi
|
|
210
|
+
}
|
|
211
|
+
|
|
212
|
+
# bypass 期待 (protected): env ECC_ALLOW_PROTECTED_BRANCH_PUSH=1 で decision != "block"
|
|
213
|
+
# 併せて destructive layer の干渉も排除 (push origin main は destructive ではないが固定)。
|
|
214
|
+
expect_bypass_pass_protected() {
|
|
215
|
+
local label="$1"
|
|
216
|
+
local cmd="$2"
|
|
217
|
+
local out decision
|
|
218
|
+
|
|
219
|
+
out=$(json_input "$cmd" | ECC_ALLOW_PROTECTED_BRANCH_PUSH=1 ECC_ALLOW_DESTRUCTIVE_GIT=1 bash "$HOOK" Bash 2>&1)
|
|
220
|
+
decision=$(extract_decision "$out")
|
|
221
|
+
|
|
222
|
+
if [ "$decision" != "block" ]; then
|
|
223
|
+
PASS=$((PASS + 1))
|
|
224
|
+
printf " PASS: %s\n" "$label"
|
|
225
|
+
else
|
|
226
|
+
FAIL=$((FAIL + 1))
|
|
227
|
+
FAILED_CASES+=("$label (decision=$decision)")
|
|
228
|
+
printf " FAIL: %s\n cmd: %s\n out: %s\n" "$label" "$cmd" "$out"
|
|
229
|
+
fi
|
|
230
|
+
}
|
|
231
|
+
|
|
232
|
+
# block 期待 (protected layer、bypass env "0" 明示設定 negative case):
|
|
233
|
+
# ECC_ALLOW_PROTECTED_BRANCH_PUSH=0 を明示設定した場合、bypass は activate せず
|
|
234
|
+
# block が維持されることを検証 (= "1" 比較の防御深度検証、iteration 2 追加)。
|
|
235
|
+
# destructive layer の干渉を排除するため ECC_ALLOW_DESTRUCTIVE_GIT=1 を固定。
|
|
236
|
+
expect_block_with_explicit_bypass_zero() {
|
|
237
|
+
local label="$1"
|
|
238
|
+
local cmd="$2"
|
|
239
|
+
local out decision reason
|
|
240
|
+
|
|
241
|
+
out=$(json_input "$cmd" | ECC_ALLOW_DESTRUCTIVE_GIT=1 ECC_ALLOW_PROTECTED_BRANCH_PUSH=0 bash "$HOOK" Bash 2>&1)
|
|
242
|
+
decision=$(extract_decision "$out")
|
|
243
|
+
reason=$(extract_reason "$out")
|
|
244
|
+
|
|
245
|
+
if [ "$decision" = "block" ] && printf '%s' "$reason" | grep -q '\[protected branch push deny\]'; then
|
|
246
|
+
PASS=$((PASS + 1))
|
|
247
|
+
printf " PASS: %s\n" "$label"
|
|
248
|
+
else
|
|
249
|
+
FAIL=$((FAIL + 1))
|
|
250
|
+
FAILED_CASES+=("$label (decision=$decision)")
|
|
251
|
+
printf " FAIL: %s\n cmd: %s\n decision: %s\n out: %s\n" "$label" "$cmd" "$decision" "$out"
|
|
252
|
+
fi
|
|
253
|
+
}
|
|
254
|
+
|
|
255
|
+
printf "===== delegation-guard-deny-layers-smoke (next-actions #13 + #14) =====\n\n"
|
|
256
|
+
|
|
257
|
+
printf "Block cases (23):\n"
|
|
258
|
+
expect_block "push --force" "git push --force"
|
|
259
|
+
# 2026-05-18 hook fix で blockable 化:
|
|
260
|
+
# 旧 regex `[^|;&]*[[:space:]]-f` は「push 直後の space と -f の前の space」の
|
|
261
|
+
# **2 space 要求**になっていたため `git push -f` (single space) が漏れていた。
|
|
262
|
+
# 新 regex `push[[:space:]]+([^|;&]*[[:space:]])?-f([[:space:]]|$)` で
|
|
263
|
+
# `-f` 前の optional segment 化により single / multi space 両対応に修正。
|
|
264
|
+
expect_block "push -f (single space)" "git push -f"
|
|
265
|
+
expect_block "push origin main --force" "git push origin main --force"
|
|
266
|
+
expect_block "reset --hard" "git reset --hard"
|
|
267
|
+
expect_block "reset --hard HEAD~1" "git reset --hard HEAD~1"
|
|
268
|
+
expect_block "reset HEAD --hard" "git reset HEAD --hard"
|
|
269
|
+
expect_block "branch -D feature-x" "git branch -D feature-x"
|
|
270
|
+
expect_block "clean -f" "git clean -f"
|
|
271
|
+
expect_block "clean -fd" "git clean -fd"
|
|
272
|
+
expect_block "clean -fdx" "git clean -fdx"
|
|
273
|
+
expect_block "checkout -- src/foo.ts" "git checkout -- src/foo.ts"
|
|
274
|
+
expect_block "restore --worktree src/" "git restore --worktree src/"
|
|
275
|
+
expect_block "restore --source=HEAD --worktree src/" "git restore --source=HEAD --worktree src/"
|
|
276
|
+
expect_block "stash drop" "git stash drop"
|
|
277
|
+
expect_block "stash clear" "git stash clear"
|
|
278
|
+
expect_block "tag -d v1.0" "git tag -d v1.0"
|
|
279
|
+
expect_block "tag -f v1.0" "git tag -f v1.0"
|
|
280
|
+
expect_block "reflog expire --expire=now" "git reflog expire --expire=now"
|
|
281
|
+
expect_block "gc --prune=now" "git gc --prune=now"
|
|
282
|
+
# --- iteration 3: R5 security-reviewer MEDIUM F-03/F-04/F-05 解消 (task-39 Step2 iter3) ---
|
|
283
|
+
# (j) push --mirror: 全 ref 強制反映 (main 含む)、destructive group
|
|
284
|
+
# git-deny.sh: push[[:space:]]+([^|;&]*[[:space:]])?--mirror([[:space:]]|$)
|
|
285
|
+
expect_block "push --mirror origin (F-03)" "git push --mirror origin"
|
|
286
|
+
# (k) push --all: 全 branch 一括 push (main 含む)、destructive group
|
|
287
|
+
# git-deny.sh: push[[:space:]]+([^|;&]*[[:space:]])?--all([[:space:]]|$)
|
|
288
|
+
expect_block "push --all origin (F-04)" "git push --all origin"
|
|
289
|
+
# (l) push --branches: 全 branch 一括 push (main 含む)、destructive group
|
|
290
|
+
# git-deny.sh: push[[:space:]]+([^|;&]*[[:space:]])?--branches([[:space:]]|$)
|
|
291
|
+
expect_block "push --branches origin (F-04)" "git push --branches origin"
|
|
292
|
+
# (m) push --prune: remote-only branch 削除を含む、destructive group
|
|
293
|
+
# git-deny.sh: push[[:space:]]+([^|;&]*[[:space:]])?--prune([[:space:]]|$)
|
|
294
|
+
expect_block "push --prune origin (F-05)" "git push --prune origin"
|
|
295
|
+
|
|
296
|
+
printf "\nPass cases (10):\n"
|
|
297
|
+
expect_pass "status" "git status"
|
|
298
|
+
expect_pass "diff" "git diff"
|
|
299
|
+
expect_pass "log -5" "git log -5"
|
|
300
|
+
expect_pass "add foo.txt" "git add foo.txt"
|
|
301
|
+
expect_pass "commit -m" 'git commit -m "msg"'
|
|
302
|
+
expect_pass "branch -d (lowercase, merged delete)" "git branch -d feature-merged"
|
|
303
|
+
expect_pass "rev-parse HEAD" "git rev-parse HEAD"
|
|
304
|
+
expect_pass "show HEAD" "git show HEAD"
|
|
305
|
+
expect_pass "fetch origin" "git fetch origin"
|
|
306
|
+
expect_pass "pull origin feature/test" "git pull origin feature/test"
|
|
307
|
+
|
|
308
|
+
printf "\nProtected branch push cases (11):\n"
|
|
309
|
+
# (a) main 明示 refspec → block
|
|
310
|
+
expect_block_protected "push origin main" "git push origin main"
|
|
311
|
+
# (b) stg 系部分一致 (3 variant) → block
|
|
312
|
+
expect_block_protected "push origin stg" "git push origin stg"
|
|
313
|
+
expect_block_protected "push -u origin release/stg-prod" "git push -u origin release/stg-prod"
|
|
314
|
+
expect_block_protected "push origin feat:refs/heads/stg-v1" "git push origin feat:refs/heads/stg-v1"
|
|
315
|
+
# (c) feature branch は通過 → pass (protected layer 単体検証、destructive bypass で干渉排除)
|
|
316
|
+
expect_pass_protected "push origin feature/test" "git push origin feature/test"
|
|
317
|
+
# (d) --force-with-lease origin main は destructive layer + protected layer の
|
|
318
|
+
# 二重 guard で block (destructive bypass 状態で protected layer の block 動作検証、
|
|
319
|
+
# iteration 2 追加、security-reviewer MEDIUM 指摘起源)
|
|
320
|
+
expect_block_protected "push --force-with-lease origin main" "git push --force-with-lease origin main"
|
|
321
|
+
# (e) ECC_ALLOW_PROTECTED_BRANCH_PUSH=0 明示でも block 維持
|
|
322
|
+
# (= "1" 比較の防御深度検証、iteration 2 追加、security-reviewer MEDIUM 指摘起源)
|
|
323
|
+
expect_block_with_explicit_bypass_zero "push origin main with ECC=0 (bypass must not activate)" "git push origin main"
|
|
324
|
+
# --- iteration 3: R5 security-reviewer HIGH F-01 / F-02 解消 (task-39 Step2 iter1) ---
|
|
325
|
+
# (f) HEAD:main symbolic refspec → block
|
|
326
|
+
# git-deny.sh L86-95: dst_part=main → dst_basename=main → protected branch 一致
|
|
327
|
+
expect_block_protected "push origin HEAD:main" "git push origin HEAD:main"
|
|
328
|
+
# (g) HEAD:refs/heads/main (fully-qualified refspec variant) → block
|
|
329
|
+
# dst_part=refs/heads/main → basename strip → main 一致
|
|
330
|
+
expect_block_protected "push origin HEAD:refs/heads/main" "git push origin HEAD:refs/heads/main"
|
|
331
|
+
# (h) +main forced update refspec → block
|
|
332
|
+
# git-deny.sh L93: dst_basename="${dst_basename#+}" で + 除去後 main 一致
|
|
333
|
+
expect_block_protected "push origin +main" "git push origin +main"
|
|
334
|
+
# (i) +HEAD:main 複合 (forced symbolic refspec) → block
|
|
335
|
+
# + 除去 → HEAD:main → dst_part=main → main 一致
|
|
336
|
+
expect_block_protected "push origin +HEAD:main" "git push origin +HEAD:main"
|
|
337
|
+
|
|
338
|
+
printf "\nBypass cases (4):\n"
|
|
339
|
+
expect_bypass_pass "push --force bypass" "git push --force"
|
|
340
|
+
expect_bypass_pass "reset --hard bypass" "git reset --hard"
|
|
341
|
+
expect_bypass_pass "clean -fdx bypass" "git clean -fdx"
|
|
342
|
+
# (f) ECC_ALLOW_PROTECTED_BRANCH_PUSH=1 + main → pass (bypass)
|
|
343
|
+
expect_bypass_pass_protected "push origin main with bypass" "git push origin main"
|
|
344
|
+
|
|
345
|
+
TOTAL=$((PASS + FAIL))
|
|
346
|
+
printf "\n===== Result =====\n"
|
|
347
|
+
printf "PASS: %d / %d\n" "$PASS" "$TOTAL"
|
|
348
|
+
printf "FAIL: %d / %d\n" "$FAIL" "$TOTAL"
|
|
349
|
+
if [ "$FAIL" -gt 0 ]; then
|
|
350
|
+
printf "\nFailed cases:\n"
|
|
351
|
+
for c in "${FAILED_CASES[@]}"; do
|
|
352
|
+
printf " - %s\n" "$c"
|
|
353
|
+
done
|
|
354
|
+
exit 1
|
|
355
|
+
fi
|
|
356
|
+
exit 0
|
|
@@ -0,0 +1,205 @@
|
|
|
1
|
+
#!/usr/bin/env bash
|
|
2
|
+
# delegation-guard-readonly-filter-smoke.sh — task-68 Step 5 (§A 強化)
|
|
3
|
+
# (delegation-guard splitter 誤検知修正、read-only filter whitelist 追加).
|
|
4
|
+
#
|
|
5
|
+
# 設計起源:
|
|
6
|
+
# - docs/draft/harness-design-fundamental-review.md §3.4 (delegation-guard splitter
|
|
7
|
+
# の改行/pipe 誤検知修正、C4 対処)。
|
|
8
|
+
# - user 報告: main の Bash を pipe (`| head`, `| tail`, `| wc`) で segment 分割 →
|
|
9
|
+
# 各 segment を whitelist 照合する現実装が、pipe 先の read-only filter を whitelist
|
|
10
|
+
# 不在で誤 BLOCK していた (本見直しセッション中だけで複数回発火)。
|
|
11
|
+
#
|
|
12
|
+
# 対象:
|
|
13
|
+
# .claude/bash-whitelist.txt の PATH-RESTRICTED セクションに追加した read-only filter:
|
|
14
|
+
# ^head( |$) / ^tail( |$) / ^wc( |$) / ^sort( |$) / ^uniq( |$)
|
|
15
|
+
# ^nl( |$) / ^cut( |$) / ^tr( |$) / ^column( |$)
|
|
16
|
+
# 申請: .claude/bash-whitelist-requests/2026-06-01-readonly-filters.md
|
|
17
|
+
#
|
|
18
|
+
# 検証範囲:
|
|
19
|
+
# A. whitelist pass (pipe 先 read-only filter): 旧 BLOCK → PASS になる新挙動 (7 件)
|
|
20
|
+
# B. read-only filter 単体 / 非保護 path pass (13 件): 既存 8 件 + nl/tr/cut/column pipe/stdin 5 件
|
|
21
|
+
# C1. 危険 git deny 不変 (destructive + pipe filter) (3 件)
|
|
22
|
+
# C2. protected branch push deny 不変 (pipe filter 付き) (3 件: stg-preview 追加)
|
|
23
|
+
# C3. read-only filter で保護パス inspect → path-leak block 不変 (6 件: tr/cut 追加)
|
|
24
|
+
# ※ C3 は「保護パスへの直接 wc/head 等」と「tr/cut < src/ リダイレクト」両ケースで
|
|
25
|
+
# [サブエージェント委譲ルール] が維持されることを確認する。
|
|
26
|
+
# C4. 副作用系コマンドは whitelist 未追加で依然 BLOCK (委譲ルール) (6 件: sed/awk 追加)
|
|
27
|
+
# C5. --force-with-lease boundary (2 件): feat と main 両方 [git destructive guard] でBLOCK
|
|
28
|
+
#
|
|
29
|
+
# 重要制約:
|
|
30
|
+
# - file-top に `set -euo pipefail` を書かない (caller leak 防止教訓
|
|
31
|
+
# feedback_set_e_in_sourced_libs)
|
|
32
|
+
# - subagent 短絡を避けるため CLAUDE_HARNESS_ROLE を明示的に unset する。
|
|
33
|
+
#
|
|
34
|
+
# 実行:
|
|
35
|
+
# bash .claude/tests/delegation-guard-readonly-filter-smoke.sh
|
|
36
|
+
# cd /tmp && bash <repo_root>/.claude/tests/delegation-guard-readonly-filter-smoke.sh
|
|
37
|
+
#
|
|
38
|
+
# 終了コード:
|
|
39
|
+
# 0 = 全 case PASS / 1 = 1 件以上 FAIL
|
|
40
|
+
|
|
41
|
+
SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
|
|
42
|
+
REPO_ROOT="$(cd "$SCRIPT_DIR/../.." && pwd)"
|
|
43
|
+
HOOK="$REPO_ROOT/.claude/hooks/delegation-guard.sh"
|
|
44
|
+
|
|
45
|
+
# [code HIGH-1] cwd 非依存化: hook の HC_BASH_WHITELIST_PATH=.claude/bash-whitelist.txt を
|
|
46
|
+
# 解決するため、最初の test case 実行前に REPO_ROOT へ cd する。別 dir 実行時の false FAIL 解消。
|
|
47
|
+
cd "$REPO_ROOT" || exit 1
|
|
48
|
+
|
|
49
|
+
# subagent 短絡経路を確実に閉じる (main agent 文脈で hook を起動するため)
|
|
50
|
+
unset CLAUDE_HARNESS_ROLE
|
|
51
|
+
unset ECC_ALLOW_DESTRUCTIVE_GIT
|
|
52
|
+
unset ECC_ALLOW_PROTECTED_BRANCH_PUSH
|
|
53
|
+
|
|
54
|
+
PASS=0
|
|
55
|
+
FAIL=0
|
|
56
|
+
FAILED_CASES=()
|
|
57
|
+
|
|
58
|
+
json_input() {
|
|
59
|
+
local cmd="$1"
|
|
60
|
+
CMD="$cmd" python3 -c '
|
|
61
|
+
import json, os
|
|
62
|
+
print(json.dumps({"tool_input": {"command": os.environ["CMD"]}}))
|
|
63
|
+
'
|
|
64
|
+
}
|
|
65
|
+
|
|
66
|
+
extract_decision() {
|
|
67
|
+
# stderr を捨てて stdout のみ parse (config-loader WARN 等の混入を防ぐ)
|
|
68
|
+
OUT_TEXT="$1" python3 -c '
|
|
69
|
+
import os, json
|
|
70
|
+
try:
|
|
71
|
+
d = json.loads(os.environ["OUT_TEXT"])
|
|
72
|
+
print(d.get("decision", "none"))
|
|
73
|
+
except Exception:
|
|
74
|
+
print("parse_error")
|
|
75
|
+
' 2>/dev/null
|
|
76
|
+
}
|
|
77
|
+
|
|
78
|
+
extract_reason() {
|
|
79
|
+
OUT_TEXT="$1" python3 -c '
|
|
80
|
+
import os, json
|
|
81
|
+
try:
|
|
82
|
+
d = json.loads(os.environ["OUT_TEXT"])
|
|
83
|
+
print(d.get("reason", ""))
|
|
84
|
+
except Exception:
|
|
85
|
+
print("")
|
|
86
|
+
' 2>/dev/null
|
|
87
|
+
}
|
|
88
|
+
|
|
89
|
+
# pass 期待: decision != "block" ({} or allow JSON)
|
|
90
|
+
# stdout のみを取得 (2>/dev/null で config-loader WARN を除去)
|
|
91
|
+
expect_pass() {
|
|
92
|
+
local label="$1"
|
|
93
|
+
local cmd="$2"
|
|
94
|
+
local out decision
|
|
95
|
+
out=$(json_input "$cmd" | bash "$HOOK" Bash 2>/dev/null)
|
|
96
|
+
decision=$(extract_decision "$out")
|
|
97
|
+
if [ "$decision" != "block" ]; then
|
|
98
|
+
PASS=$((PASS + 1))
|
|
99
|
+
printf " PASS: %s\n" "$label"
|
|
100
|
+
else
|
|
101
|
+
FAIL=$((FAIL + 1))
|
|
102
|
+
FAILED_CASES+=("$label (decision=$decision)")
|
|
103
|
+
printf " FAIL: %s\n cmd: %s\n out: %s\n" "$label" "$cmd" "$out"
|
|
104
|
+
fi
|
|
105
|
+
}
|
|
106
|
+
|
|
107
|
+
# block 期待: decision="block" + reason が指定 marker を含むこと
|
|
108
|
+
expect_block_marker() {
|
|
109
|
+
local label="$1"
|
|
110
|
+
local cmd="$2"
|
|
111
|
+
local marker="$3"
|
|
112
|
+
local out decision reason
|
|
113
|
+
out=$(json_input "$cmd" | bash "$HOOK" Bash 2>/dev/null)
|
|
114
|
+
decision=$(extract_decision "$out")
|
|
115
|
+
reason=$(extract_reason "$out")
|
|
116
|
+
if [ "$decision" = "block" ] && printf '%s' "$reason" | grep -qF "$marker"; then
|
|
117
|
+
PASS=$((PASS + 1))
|
|
118
|
+
printf " PASS: %s\n" "$label"
|
|
119
|
+
else
|
|
120
|
+
FAIL=$((FAIL + 1))
|
|
121
|
+
FAILED_CASES+=("$label (decision=$decision, marker='$marker')")
|
|
122
|
+
printf " FAIL: %s\n cmd: %s\n decision: %s\n out: %s\n" "$label" "$cmd" "$decision" "$out"
|
|
123
|
+
fi
|
|
124
|
+
}
|
|
125
|
+
|
|
126
|
+
printf "===== delegation-guard-readonly-filter-smoke (task-68 Step 5 §A) =====\n\n"
|
|
127
|
+
|
|
128
|
+
printf "A. pipe 先 read-only filter pass (旧 BLOCK → PASS、誤検知修正) (7):\n"
|
|
129
|
+
expect_pass "git push feature | tail -5" "git push origin feat/x | tail -5"
|
|
130
|
+
expect_pass "git log | wc -l" "git log --oneline | wc -l"
|
|
131
|
+
expect_pass "git log | head" "git log | head"
|
|
132
|
+
expect_pass "git diff | head -20" "git diff | head -20"
|
|
133
|
+
expect_pass "ls | sort | uniq" "ls | sort | uniq"
|
|
134
|
+
expect_pass "git status | wc -l" "git status | wc -l"
|
|
135
|
+
expect_pass "git log | head | tail" "git log | head -5 | tail -2"
|
|
136
|
+
|
|
137
|
+
# [qa HIGH-1] 残り 4 コマンド nl/tr/cut/column の pipe 後段 + head 単体
|
|
138
|
+
printf "\nB. read-only filter 単体 / 非保護 path pass (13):\n"
|
|
139
|
+
expect_pass "head -20 docs/x.md" "head -20 docs/x.md"
|
|
140
|
+
expect_pass "tail -5 docs/x.md" "tail -5 docs/x.md"
|
|
141
|
+
expect_pass "wc -l docs/x.md" "wc -l docs/x.md"
|
|
142
|
+
expect_pass "sort docs/x.md" "sort docs/x.md"
|
|
143
|
+
expect_pass "uniq docs/x.md" "uniq docs/x.md"
|
|
144
|
+
expect_pass "nl docs/x.md" "nl docs/x.md"
|
|
145
|
+
expect_pass "cut -d: -f1 docs/x.md" "cut -d: -f1 docs/x.md"
|
|
146
|
+
expect_pass "column -t docs/x.md" "column -t docs/x.md"
|
|
147
|
+
expect_pass "head stdin (no path)" "head"
|
|
148
|
+
expect_pass "git log --oneline | nl" "git log --oneline | nl"
|
|
149
|
+
expect_pass "git log --oneline | tr ':' '-'" "git log --oneline | tr ':' '-'"
|
|
150
|
+
expect_pass "git log --oneline | cut -d' ' -f1" "git log --oneline | cut -d' ' -f1"
|
|
151
|
+
expect_pass "git log --oneline | column -t" "git log --oneline | column -t"
|
|
152
|
+
|
|
153
|
+
printf "\nC1. 危険 git deny 不変 (destructive、pipe filter 付き) (3):\n"
|
|
154
|
+
expect_block_marker "push --force | head" "git push --force | head" "[git destructive guard]"
|
|
155
|
+
expect_block_marker "reset --hard | tail" "git reset --hard | tail" "[git destructive guard]"
|
|
156
|
+
expect_block_marker "clean -fdx | wc -l" "git clean -fdx | wc -l" "[git destructive guard]"
|
|
157
|
+
|
|
158
|
+
# [qa MED-5] stg-preview (stg 含み名) + pipe → protected branch push deny 維持
|
|
159
|
+
printf "\nC2. protected branch push deny 不変 (pipe filter 付き) (3):\n"
|
|
160
|
+
expect_block_marker "push origin main | tail" "git push origin main | tail" "[protected branch push deny]"
|
|
161
|
+
expect_block_marker "push origin stg | head" "git push origin stg | head" "[protected branch push deny]"
|
|
162
|
+
expect_block_marker "push origin stg-preview | head" "git push origin stg-preview | head" "[protected branch push deny]"
|
|
163
|
+
|
|
164
|
+
# [qa MED-5 + security/test MED-1] 保護パス直接 inspect は path-leak でBLOCK維持。
|
|
165
|
+
# wc/head/tail は non-protected path では pass (B セクション) だが、
|
|
166
|
+
# src/ tests/ scripts/ を引数に取ると [サブエージェント委譲ルール] が発動する。
|
|
167
|
+
# tr/cut の stdin リダイレクト (`< src/foo.ts`) も同様に path-leak で BLOCK。
|
|
168
|
+
printf "\nC3. read-only filter で保護パス inspect → path-leak block 不変 (6):\n"
|
|
169
|
+
expect_block_marker "head src/foo.ts" "head src/foo.ts" "[サブエージェント委譲ルール]"
|
|
170
|
+
expect_block_marker "tail -5 tests/x.sh" "tail -5 tests/x.sh" "[サブエージェント委譲ルール]"
|
|
171
|
+
expect_block_marker "wc -l scripts/x.sh" "wc -l scripts/x.sh" "[サブエージェント委譲ルール]"
|
|
172
|
+
expect_block_marker "cat .claude/x | head; wc src/y" "cat .claude/x | head ; wc -l src/y" "[サブエージェント委譲ルール]"
|
|
173
|
+
expect_block_marker "tr -d 'x' < src/foo.ts" "tr -d 'x' < src/foo.ts" "[サブエージェント委譲ルール]"
|
|
174
|
+
expect_block_marker "cut -f1 scripts/install.sh" "cut -f1 scripts/install.sh" "[サブエージェント委譲ルール]"
|
|
175
|
+
|
|
176
|
+
# [qa HIGH-2] C4 marker を `[Bash 委譲ルール] 未承認コマンド:` に具体化。
|
|
177
|
+
# [qa MED-3] sed / awk (処理系 pipe) も BLOCK 維持を確認。
|
|
178
|
+
printf "\nC4. 副作用系コマンドは whitelist 未追加で依然 BLOCK (委譲ルール) (6):\n"
|
|
179
|
+
expect_block_marker "rm via pipe target" "git log | rm -rf x" "[Bash 委譲ルール] 未承認コマンド:"
|
|
180
|
+
expect_block_marker "tee not whitelisted" "git log | tee out.txt" "[Bash 委譲ルール] 未承認コマンド:"
|
|
181
|
+
expect_block_marker "xargs not whitelisted" "git log | xargs rm" "[Bash 委譲ルール] 未承認コマンド:"
|
|
182
|
+
expect_block_marker "cat bare not whitelisted" "git log | cat /etc/hosts" "[Bash 委譲ルール] 未承認コマンド:"
|
|
183
|
+
expect_block_marker "sed pipe (processing) block" "git log | sed 's/x/y/'" "[Bash 委譲ルール] 未承認コマンド:"
|
|
184
|
+
expect_block_marker "awk pipe (processing) block" "git log | awk '{print}'" "[Bash 委譲ルール] 未承認コマンド:"
|
|
185
|
+
|
|
186
|
+
# [test MED-2] --force-with-lease boundary:
|
|
187
|
+
# 現行 hook は --force-with-lease も `push[[:space:]]+[^|;&]*--force` にマッチして
|
|
188
|
+
# [git destructive guard] でBLOCK (feat/x も main も同一扱い)。
|
|
189
|
+
# hook 本体無変更のため、実動作に合わせて両方 block として記録。
|
|
190
|
+
printf "\nC5. --force-with-lease boundary (git destructive guard でBLOCK) (2):\n"
|
|
191
|
+
expect_block_marker "force-with-lease feat/x | tail" "git push --force-with-lease origin feat/x | tail" "[git destructive guard]"
|
|
192
|
+
expect_block_marker "force-with-lease main | tail" "git push --force-with-lease origin main | tail" "[git destructive guard]"
|
|
193
|
+
|
|
194
|
+
TOTAL=$((PASS + FAIL))
|
|
195
|
+
printf "\n===== Result =====\n"
|
|
196
|
+
printf "PASS: %d / %d\n" "$PASS" "$TOTAL"
|
|
197
|
+
printf "FAIL: %d / %d\n" "$FAIL" "$TOTAL"
|
|
198
|
+
if [ "$FAIL" -gt 0 ]; then
|
|
199
|
+
printf "\nFailed cases:\n"
|
|
200
|
+
for c in "${FAILED_CASES[@]}"; do
|
|
201
|
+
printf " - %s\n" "$c"
|
|
202
|
+
done
|
|
203
|
+
exit 1
|
|
204
|
+
fi
|
|
205
|
+
exit 0
|