@wipcomputer/wip-ai-devops-toolbox 1.9.60 → 1.9.61

package/CHANGELOG.md

@@ -31,6 +31,29 @@
 
 
 
+
+## 1.9.61 (2026-03-29)
+
+# Release Notes: wip-ai-devops-toolbox v1.9.61
+
+**Add test script for branch guard. Fix node bypass regex.**
+
+## The story
+
+Every guard bug this session (v1.9.56-59) would have been caught by running a test before merging. This release adds test.sh to the guard that pipes test JSON into guard.mjs and verifies allow/deny results. 30 test cases covering destructive commands, quoted strings (Bug 1/3), compound commands (Bug 2), safe commands, and plan files.
+
+Also fixes the node bypass regex: `require('fs').writeFileSync` wasn't caught because the regex looked for `fs.writeFile` literally. Broadened to match `writeFile` after `node -e`.
+
+## Issues closed
+
+- #232 (guard test coverage)
+
+## How to verify
+
+```bash
+cd tools/wip-branch-guard && bash test.sh
+# Should show: 30 passed, 0 failed, 3 skipped
+```
 
 ## 1.9.60 (2026-03-29)
 

package/SKILL.md

@@ -5,7 +5,7 @@ license: MIT
 interface: [cli, module, mcp, skill, hook, plugin]
 metadata:
   display-name: "WIP AI DevOps Toolbox"
-  version: "1.9.60"
+  version: "1.9.61"
   homepage: "https://github.com/wipcomputer/wip-ai-devops-toolbox"
   author: "Parker Todd Brooks"
   category: dev-tools

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/wip-ai-devops-toolbox",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "type": "module",
   "description": "The complete AI DevOps toolkit for AI-assisted development teams.",
   "license": "MIT",

package/tools/deploy-public/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/deploy-public",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "description": "Private-to-public repo sync. Excludes ai/ folder, creates PR, merges, cleans up branches.",
   "bin": {
     "deploy-public": "./deploy-public.sh"

package/tools/post-merge-rename/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/post-merge-rename",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "description": "Post-merge branch renaming. Appends --merged-YYYY-MM-DD to preserve history.",
   "bin": {
     "post-merge-rename": "./post-merge-rename.sh"

package/tools/wip-branch-guard/guard.mjs

@@ -50,7 +50,7 @@ const DESTRUCTIVE_PATTERNS = [
 // the attack IS inside quotes (e.g. python -c "open('f').write('x')").
 const DESTRUCTIVE_CODE_PATTERNS = [
   /\bpython3?\s+-c\s+.*\bopen\s*\(/,    // python -c "open().write()" bypass (#241)
-  /\bnode\s+-e\s+.*\bfs\.\w*[Ww]rite/,  // node -e "fs.writeFile()" bypass
+  /\bnode\s+-e\s+.*\bwriteFile/,         // node -e "require('fs').writeFile()" or "fs.writeFile()" bypass
 ];
 
 // Strip quoted string contents to prevent regex matching inside data.

package/tools/wip-branch-guard/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/wip-branch-guard",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "description": "PreToolUse hook that blocks all writes on main branch. Forces agents to work on branches or worktrees.",
   "type": "module",
   "main": "guard.mjs",

package/tools/wip-branch-guard/test.sh

@@ -0,0 +1,117 @@
+#!/bin/bash
+# Guard test runner. Run from the guard directory before merging.
+# Usage: bash test.sh
+#
+# Pipes test JSON into guard.mjs and checks if it allows or blocks.
+# Exit 0 = all tests pass. Exit 1 = at least one failed.
+#
+# Note: compound command tests (Bug 2) and on-main tests need CWD
+# to be in a repo on main. The script auto-detects and skips those
+# tests if running from a branch/worktree.
+
+GUARD="$(dirname "$0")/guard.mjs"
+PASS=0
+FAIL=0
+SKIP=0
+
+# Check if we're on main (for tests that need main-branch context)
+ON_MAIN=false
+BRANCH=$(git branch --show-current 2>/dev/null)
+if [[ "$BRANCH" == "main" || "$BRANCH" == "master" ]]; then
+  ON_MAIN=true
+fi
+
+# Helper: build properly escaped JSON using node (avoids bash quote hell)
+make_json() {
+  local tool="$1" key="$2" value="$3"
+  node -e "process.stdout.write(JSON.stringify({tool_name:'$tool',tool_input:{$key:process.argv[1]}}))" "$value"
+}
+
+# Helper: run a test case
+# Args: description, expected (allow|deny), tool_name, command_or_filepath, [main_only]
+test_case() {
+  local desc="$1" expected="$2" tool="$3" input="$4" main_only="${5:-false}"
+
+  if [[ "$main_only" == "true" && "$ON_MAIN" == "false" ]]; then
+    echo "  SKIP: $desc (needs main branch)"
+    ((SKIP++))
+    return
+  fi
+
+  local json
+  if [[ "$tool" == "Bash" ]]; then
+    json=$(make_json Bash command "$input")
+  elif [[ "$tool" == "Write" || "$tool" == "Edit" ]]; then
+    json=$(make_json "$tool" file_path "$input")
+  fi
+
+  local output
+  output=$(echo "$json" | node "$GUARD" 2>/dev/null)
+
+  local actual="allow"
+  if echo "$output" | grep -q '"deny"' 2>/dev/null; then
+    actual="deny"
+  fi
+
+  if [[ "$actual" == "$expected" ]]; then
+    echo "  PASS: $desc"
+    ((PASS++))
+  else
+    echo "  FAIL: $desc (expected $expected, got $actual)"
+    ((FAIL++))
+  fi
+}
+
+echo "=== Branch Guard Tests ==="
+echo ""
+echo "--- Destructive commands (should DENY on any branch) ---"
+test_case "git clean -fd" deny Bash "git clean -fd"
+test_case "git checkout -- file.txt" deny Bash "git checkout -- file.txt"
+test_case "git checkout ." deny Bash "git checkout ."
+test_case "git stash drop" deny Bash "git stash drop"
+test_case "git stash pop" deny Bash "git stash pop"
+test_case "git stash clear" deny Bash "git stash clear"
+test_case "git reset --hard" deny Bash "git reset --hard"
+test_case "git restore file.txt" deny Bash "git restore file.txt"
+test_case "python file write bypass" deny Bash "python3 -c \"open('f','w').write('x')\""
+test_case "node file write bypass" deny Bash "node -e \"require('fs').writeFileSync('f','d')\""
+
+echo ""
+echo "--- Quoted strings: should NOT match inside quotes (Bug 1, 3) ---"
+test_case "gh issue with git checkout in body" allow Bash "gh issue create --body 'use git checkout -- to fix'"
+test_case "echo with git commit in quotes" allow Bash "echo 'dont run git commit on main'"
+test_case "gh issue with git reset in body" allow Bash "gh issue create --body 'tried git reset --hard'"
+
+echo ""
+echo "--- Compound commands: each segment checked independently (Bug 2) ---"
+echo "  (These only run when CWD is on main branch)"
+test_case "rm with echo should still block" deny Bash "rm -f file ; echo done" true
+test_case "safe compound (ls && echo)" allow Bash "ls -la && echo done" true
+test_case "cd then rm should block" deny Bash "cd /tmp && rm -rf somedir" true
+
+echo ""
+echo "--- Safe commands (should ALLOW) ---"
+test_case "git status" allow Bash "git status"
+test_case "git log" allow Bash "git log --oneline -5"
+test_case "git diff" allow Bash "git diff"
+test_case "git checkout branch" allow Bash "git checkout feature-branch"
+test_case "git worktree add" allow Bash "git worktree add .worktrees/repo--branch -b feat"
+test_case "git stash list" allow Bash "git stash list"
+test_case "git stash show" allow Bash "git stash show"
+test_case "git restore --staged" allow Bash "git restore --staged file.txt"
+test_case "ls command" allow Bash "ls -la"
+test_case "grep command" allow Bash "grep -r pattern ."
+test_case "gh pr create" allow Bash "gh pr create --title test"
+test_case "gh pr merge" allow Bash "gh pr merge 123 --merge"
+test_case "echo" allow Bash "echo hello"
+test_case "wip-release dry-run" allow Bash "wip-release patch --dry-run"
+test_case "ldm install" allow Bash "ldm install"
+test_case "mkdir .worktrees" allow Bash "mkdir -p .worktrees/repo--branch"
+
+echo ""
+echo "--- Plan files (should ALLOW Write/Edit) ---"
+test_case "Edit plan file" allow Edit "/Users/lesa/.claude/plans/my-plan.md"
+
+echo ""
+echo "=== Results: $PASS passed, $FAIL failed, $SKIP skipped ==="
+[[ $FAIL -eq 0 ]] && exit 0 || exit 1

package/tools/wip-file-guard/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/wip-file-guard",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "type": "module",
   "description": "Hook that blocks destructive edits to protected identity files. For Claude Code CLI and OpenClaw.",
   "main": "guard.mjs",

package/tools/wip-license-guard/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/wip-license-guard",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "description": "License compliance for your own repos. Ensures correct copyright, dual-license blocks, and LICENSE files.",
   "type": "module",
   "bin": {

package/tools/wip-license-hook/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/wip-license-hook",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "description": "License rug-pull detection and dependency license compliance for open source projects",
   "type": "module",
   "main": "dist/cli/index.js",

package/tools/wip-readme-format/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/wip-readme-format",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "description": "Reformat any repo's README to follow the WIP Computer standard. Agent-first, human-readable.",
   "type": "module",
   "bin": {

package/tools/wip-release/core.mjs

@@ -1235,6 +1235,44 @@ export async function release({ repoPath, level, notes, notesSource, dryRun, noP
     }
   }
 
+  // 0.95. Run test scripts (if any exist)
+  {
+    const toolsDir = join(repoPath, 'tools');
+    const testFiles = [];
+    if (existsSync(toolsDir)) {
+      for (const sub of readdirSync(toolsDir)) {
+        const testPath = join(toolsDir, sub, 'test.sh');
+        if (existsSync(testPath)) testFiles.push({ tool: sub, path: testPath });
+      }
+    }
+    // Also check repo root test.sh
+    const rootTest = join(repoPath, 'test.sh');
+    if (existsSync(rootTest)) testFiles.push({ tool: '(root)', path: rootTest });
+
+    if (testFiles.length > 0) {
+      let allPassed = true;
+      for (const { tool, path } of testFiles) {
+        try {
+          execFileSync('bash', [path], { cwd: dirname(path), stdio: 'pipe', timeout: 30000 });
+          console.log(`  ✓ Tests passed: ${tool}`);
+        } catch (e) {
+          allPassed = false;
+          console.log(`  ✗ Tests FAILED: ${tool}`);
+          const output = (e.stdout || '').toString().trim();
+          if (output) {
+            for (const line of output.split('\n').slice(-5)) console.log(`    ${line}`);
+          }
+        }
+      }
+      if (!allPassed) {
+        console.log('');
+        console.log('  Fix failing tests before releasing.');
+        console.log('');
+        return { currentVersion, newVersion, dryRun: false, failed: true };
+      }
+    }
+  }
+
   if (dryRun) {
     // Product docs check (dry-run)
     if (!skipProductCheck) {

package/tools/wip-release/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/wip-release",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "type": "module",
   "description": "One-command release pipeline. Bumps version, updates changelog + SKILL.md, publishes to npm + GitHub.",
   "main": "core.mjs",

package/tools/wip-repo-init/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/wip-repo-init",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "description": "Scaffold the standard ai/ directory structure in any repo",
   "type": "module",
   "bin": {

package/tools/wip-repo-permissions-hook/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/wip-repo-permissions-hook",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "type": "module",
   "description": "Repo visibility guard. Blocks repos from going public without a -private counterpart.",
   "main": "core.mjs",

package/tools/wip-repos/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/wip-repos",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "type": "module",
   "description": "Repo manifest reconciler. Single source of truth for repo organization. Like prettier for folder structure.",
   "main": "core.mjs",

package/tools/wip-universal-installer/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/universal-installer",
-  "version": "1.9.60",
+  "version": "1.9.61",
   "type": "module",
   "description": "The Universal Interface specification for agent-native software. Teaches your AI how to build repos with every interface: CLI, Module, MCP Server, OpenClaw Plugin, Skill, Claude Code Hook.",
   "main": "detect.mjs",