block-no-verify 1.1.1 → 1.1.3

package/README.md

@@ -8,13 +8,29 @@ When using AI coding assistants like Claude Code, Gemini CLI, Cursor, or others,
 
 This package provides a CLI that can block any git commands that include `--no-verify`, working with any AI tool that supports command hooks.
 
+## Used By
+
+<a href="https://github.com/langgenius/dify">
+  <img src="https://github.com/langgenius.png" width="50" height="50" alt="Dify" title="Dify - Open-source LLM app development platform">
+</a>
+<a href="https://centy.io">
+  <img src="https://github.com/centy-io.png" width="50" height="50" alt="Centy" title="Centy">
+</a>
+<a href="https://worktree.io">
+  <img src="https://github.com/worktree-io.png" width="50" height="50" alt="Worktree" title="Worktree">
+</a>
+
 ## Installation
 
+Add as a dev dependency to ensure a consistent, pinned version:
+
 ```bash
-pnpm add -g block-no-verify
+pnpm add -D block-no-verify
+# or
+npm install --save-dev block-no-verify
 ```
 
-Or use without installation via `pnpm dlx block-no-verify` or `npx block-no-verify`.
+Then use it with `pnpm exec block-no-verify` or `npm exec block-no-verify`.
 
 ## Quick Start
 
@@ -47,7 +63,7 @@ Add to your `.claude/settings.json`:
         "hooks": [
           {
             "type": "command",
-            "command": "pnpm dlx block-no-verify"
+            "command": "pnpm exec block-no-verify"
           }
         ]
       }
@@ -72,7 +88,7 @@ Add to your `.gemini/settings.json`:
           {
             "name": "block-no-verify",
             "type": "command",
-            "command": "pnpm dlx block-no-verify",
+            "command": "pnpm exec block-no-verify",
             "description": "Block --no-verify flags in git commands",
             "timeout": 5000
           }
@@ -97,7 +113,7 @@ Create `.cursor/hooks.json` in your project root:
   "hooks": {
     "beforeShellExecution": [
       {
-        "command": "pnpm dlx block-no-verify"
+        "command": "pnpm exec block-no-verify"
       }
     ]
   }
@@ -126,7 +142,7 @@ echo '{"tool_input":{"command":"git commit --no-verify"}}' | block-no-verify
 
 ## CLI Options
 
-```
+```text
 block-no-verify [options] [command]
 
 Options:

package/dist/agents/allowed-commands.d.ts

@@ -0,0 +1,4 @@
+import type { TestCommand } from './test-command.js';
+/** Commands that should be allowed (no --no-verify or hooks bypass) */
+export declare const ALLOWED_COMMANDS: TestCommand[];
+//# sourceMappingURL=allowed-commands.d.ts.map

package/dist/agents/allowed-commands.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"allowed-commands.d.ts","sourceRoot":"","sources":["../../src/agents/allowed-commands.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAA;AAEpD,uEAAuE;AACvE,eAAO,MAAM,gBAAgB,EAAE,WAAW,EA4CzC,CAAA"}

package/dist/agents/allowed-commands.js

@@ -0,0 +1,47 @@
+/** Commands that should be allowed (no --no-verify or hooks bypass) */
+export const ALLOWED_COMMANDS = [
+    // Normal git commands
+    { command: 'git commit -m "test"', description: 'normal commit' },
+    {
+        command: 'git commit -m "feat: add feature"',
+        description: 'commit with conventional message',
+    },
+    { command: 'git push origin main', description: 'normal push' },
+    { command: 'git push -u origin feature', description: 'push with upstream' },
+    { command: 'git merge feature', description: 'normal merge' },
+    { command: 'git cherry-pick abc123', description: 'normal cherry-pick' },
+    { command: 'git rebase main', description: 'normal rebase' },
+    { command: 'git am < patch', description: 'normal am' },
+    // Git commands that don't support --no-verify
+    { command: 'git status', description: 'git status' },
+    { command: 'git log --oneline', description: 'git log' }, // cspell:disable-line
+    { command: 'git diff', description: 'git diff' },
+    { command: 'git branch -a', description: 'git branch' },
+    { command: 'git checkout main', description: 'git checkout' },
+    { command: 'git pull origin main', description: 'git pull' },
+    { command: 'git fetch --all', description: 'git fetch' },
+    { command: 'git stash', description: 'git stash' },
+    // Non-git commands
+    { command: 'npm install', description: 'npm install' },
+    { command: 'pnpm build', description: 'pnpm build' },
+    { command: 'yarn test', description: 'yarn test' },
+    { command: 'ls -la', description: 'ls command' },
+    { command: 'echo "hello"', description: 'echo command' },
+    // -n flag in non-commit contexts (different meaning)
+    { command: 'git push -n origin main', description: 'push -n (dry-run)' },
+    { command: 'git merge -n feature', description: 'merge -n (no commit)' },
+    {
+        command: 'git cherry-pick -n abc123',
+        description: 'cherry-pick -n (no commit)',
+    },
+    // Commands with special characters
+    {
+        command: 'git commit -m "feat(scope): add feature #123"',
+        description: 'special chars',
+    },
+    {
+        command: 'git commit -m "fix: handle edge case @user"',
+        description: '@ mention',
+    },
+];
+//# sourceMappingURL=allowed-commands.js.map

package/dist/agents/allowed-commands.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"allowed-commands.js","sourceRoot":"","sources":["../../src/agents/allowed-commands.ts"],"names":[],"mappings":"AAEA,uEAAuE;AACvE,MAAM,CAAC,MAAM,gBAAgB,GAAkB;IAC7C,sBAAsB;IACtB,EAAE,OAAO,EAAE,sBAAsB,EAAE,WAAW,EAAE,eAAe,EAAE;IACjE;QACE,OAAO,EAAE,mCAAmC;QAC5C,WAAW,EAAE,kCAAkC;KAChD;IACD,EAAE,OAAO,EAAE,sBAAsB,EAAE,WAAW,EAAE,aAAa,EAAE;IAC/D,EAAE,OAAO,EAAE,4BAA4B,EAAE,WAAW,EAAE,oBAAoB,EAAE;IAC5E,EAAE,OAAO,EAAE,mBAAmB,EAAE,WAAW,EAAE,cAAc,EAAE;IAC7D,EAAE,OAAO,EAAE,wBAAwB,EAAE,WAAW,EAAE,oBAAoB,EAAE;IACxE,EAAE,OAAO,EAAE,iBAAiB,EAAE,WAAW,EAAE,eAAe,EAAE;IAC5D,EAAE,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,WAAW,EAAE;IACvD,8CAA8C;IAC9C,EAAE,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,YAAY,EAAE;IACpD,EAAE,OAAO,EAAE,mBAAmB,EAAE,WAAW,EAAE,SAAS,EAAE,EAAE,sBAAsB;IAChF,EAAE,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,UAAU,EAAE;IAChD,EAAE,OAAO,EAAE,eAAe,EAAE,WAAW,EAAE,YAAY,EAAE;IACvD,EAAE,OAAO,EAAE,mBAAmB,EAAE,WAAW,EAAE,cAAc,EAAE;IAC7D,EAAE,OAAO,EAAE,sBAAsB,EAAE,WAAW,EAAE,UAAU,EAAE;IAC5D,EAAE,OAAO,EAAE,iBAAiB,EAAE,WAAW,EAAE,WAAW,EAAE;IACxD,EAAE,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,WAAW,EAAE;IAClD,mBAAmB;IACnB,EAAE,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,aAAa,EAAE;IACtD,EAAE,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,YAAY,EAAE;IACpD,EAAE,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,WAAW,EAAE;IAClD,EAAE,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,YAAY,EAAE;IAChD,EAAE,OAAO,EAAE,cAAc,EAAE,WAAW,EAAE,cAAc,EAAE;IACxD,qDAAqD;IACrD,EAAE,OAAO,EAAE,yBAAyB,EAAE,WAAW,EAAE,mBAAmB,EAAE;IACxE,EAAE,OAAO,EAAE,sBAAsB,EAAE,WAAW,EAAE,sBAAsB,EAAE;IACxE;QACE,OAAO,EAAE,2BAA2B;QACpC,WAAW,EAAE,4BAA4B;KAC1C;IACD,mCAAmC;IACnC;QACE,OAAO,EAAE,+CAA+C;QACxD,WAAW,EAAE,eAAe;KAC7B;IACD;QACE,OAAO,EAAE,6CAA6C;QACtD,WAAW,EAAE,WAAW;KACzB;CACF,CAAA"}

package/dist/agents/blocked-commands.d.ts

@@ -0,0 +1,4 @@
+import type { TestCommand } from './test-command.js';
+/** Commands that should be blocked (contain --no-verify or hooks bypass) */
+export declare const BLOCKED_COMMANDS: TestCommand[];
+//# sourceMappingURL=blocked-commands.d.ts.map

package/dist/agents/blocked-commands.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"blocked-commands.d.ts","sourceRoot":"","sources":["../../src/agents/blocked-commands.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAA;AAEpD,4EAA4E;AAC5E,eAAO,MAAM,gBAAgB,EAAE,WAAW,EAoEzC,CAAA"}

package/dist/agents/blocked-commands.js

@@ -0,0 +1,71 @@
+/** Commands that should be blocked (contain --no-verify or hooks bypass) */
+export const BLOCKED_COMMANDS = [
+    // --no-verify flag
+    {
+        command: 'git commit --no-verify -m "test"',
+        description: 'commit with --no-verify',
+    },
+    {
+        command: 'git commit -m "test" --no-verify',
+        description: 'commit with --no-verify at end',
+    },
+    {
+        command: 'git push --no-verify origin main',
+        description: 'push with --no-verify',
+    },
+    {
+        command: 'git push origin main --no-verify',
+        description: 'push with --no-verify at end',
+    },
+    {
+        command: 'git merge --no-verify feature',
+        description: 'merge with --no-verify',
+    },
+    {
+        command: 'git cherry-pick --no-verify abc123',
+        description: 'cherry-pick with --no-verify',
+    },
+    {
+        command: 'git rebase --no-verify main',
+        description: 'rebase with --no-verify',
+    },
+    { command: 'git am --no-verify < patch', description: 'am with --no-verify' },
+    // -n shorthand (only for commit)
+    { command: 'git commit -n -m "test"', description: 'commit with -n flag' },
+    { command: 'git commit -m "test" -n', description: 'commit with -n at end' },
+    {
+        command: 'git commit -nm "test"',
+        description: 'commit with combined -nm flags',
+    },
+    // Edge cases
+    {
+        command: 'ls && git commit --no-verify -m "test"',
+        description: 'chained with --no-verify',
+    },
+    {
+        command: 'git -C /path commit --no-verify -m "test"',
+        description: '-C flag with --no-verify',
+    },
+    {
+        command: 'git    commit    --no-verify -m "test"',
+        description: 'extra whitespace',
+    },
+    // core.hooksPath override (bypass hooks by redirecting hooks directory)
+    {
+        command: 'git -c core.hooksPath=/dev/null push',
+        description: 'hooksPath=/dev/null push',
+    },
+    {
+        command: 'git -c core.hooksPath=/dev/null commit -m "test"',
+        description: 'hooksPath commit',
+    },
+    {
+        command: 'git -c core.hooksPath= push origin main',
+        description: 'empty hooksPath push',
+    },
+    {
+        command: 'git -c "core.hooksPath=/dev/null" push',
+        description: 'quoted hooksPath push',
+    },
+];
+//# sourceMappingURL=blocked-commands.js.map

package/dist/agents/blocked-commands.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"blocked-commands.js","sourceRoot":"","sources":["../../src/agents/blocked-commands.ts"],"names":[],"mappings":"AAEA,4EAA4E;AAC5E,MAAM,CAAC,MAAM,gBAAgB,GAAkB;IAC7C,mBAAmB;IACnB;QACE,OAAO,EAAE,kCAAkC;QAC3C,WAAW,EAAE,yBAAyB;KACvC;IACD;QACE,OAAO,EAAE,kCAAkC;QAC3C,WAAW,EAAE,gCAAgC;KAC9C;IACD;QACE,OAAO,EAAE,kCAAkC;QAC3C,WAAW,EAAE,uBAAuB;KACrC;IACD;QACE,OAAO,EAAE,kCAAkC;QAC3C,WAAW,EAAE,8BAA8B;KAC5C;IACD;QACE,OAAO,EAAE,+BAA+B;QACxC,WAAW,EAAE,wBAAwB;KACtC;IACD;QACE,OAAO,EAAE,oCAAoC;QAC7C,WAAW,EAAE,8BAA8B;KAC5C;IACD;QACE,OAAO,EAAE,6BAA6B;QACtC,WAAW,EAAE,yBAAyB;KACvC;IACD,EAAE,OAAO,EAAE,4BAA4B,EAAE,WAAW,EAAE,qBAAqB,EAAE;IAC7E,iCAAiC;IACjC,EAAE,OAAO,EAAE,yBAAyB,EAAE,WAAW,EAAE,qBAAqB,EAAE;IAC1E,EAAE,OAAO,EAAE,yBAAyB,EAAE,WAAW,EAAE,uBAAuB,EAAE;IAC5E;QACE,OAAO,EAAE,uBAAuB;QAChC,WAAW,EAAE,gCAAgC;KAC9C;IACD,aAAa;IACb;QACE,OAAO,EAAE,wCAAwC;QACjD,WAAW,EAAE,0BAA0B;KACxC;IACD;QACE,OAAO,EAAE,2CAA2C;QACpD,WAAW,EAAE,0BAA0B;KACxC;IACD;QACE,OAAO,EAAE,wCAAwC;QACjD,WAAW,EAAE,kBAAkB;KAChC;IACD,wEAAwE;IACxE;QACE,OAAO,EAAE,sCAAsC;QAC/C,WAAW,EAAE,0BAA0B;KACxC;IACD;QACE,OAAO,EAAE,kDAAkD;QAC3D,WAAW,EAAE,kBAAkB;KAChC;IACD;QACE,OAAO,EAAE,yCAAyC;QAClD,WAAW,EAAE,sBAAsB;KACpC;IACD;QACE,OAAO,EAAE,wCAAwC;QACjD,WAAW,EAAE,uBAAuB;KACrC;CACF,CAAA"}

package/dist/agents/test-command.d.ts

@@ -0,0 +1,5 @@
+export interface TestCommand {
+    command: string;
+    description: string;
+}
+//# sourceMappingURL=test-command.d.ts.map

package/dist/agents/test-command.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"test-command.d.ts","sourceRoot":"","sources":["../../src/agents/test-command.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,WAAW;IAC1B,OAAO,EAAE,MAAM,CAAA;IACf,WAAW,EAAE,MAAM,CAAA;CACpB"}

package/dist/agents/test-command.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=test-command.js.map

package/dist/agents/test-command.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"test-command.js","sourceRoot":"","sources":["../../src/agents/test-command.ts"],"names":[],"mappings":""}

package/dist/agents/test-commands.d.ts

@@ -1,13 +1,9 @@
 /**
  * Test commands for agent format testing
  */
-interface TestCommand {
-    command: string;
-    description: string;
-}
+export type { TestCommand } from './test-command.js';
 export declare const testCommands: {
-    BLOCKED_COMMANDS: TestCommand[];
-    ALLOWED_COMMANDS: TestCommand[];
+    BLOCKED_COMMANDS: import("./test-command.js").TestCommand[];
+    ALLOWED_COMMANDS: import("./test-command.js").TestCommand[];
 };
-export {};
 //# sourceMappingURL=test-commands.d.ts.map

package/dist/agents/test-commands.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"test-commands.d.ts","sourceRoot":"","sources":["../../src/agents/test-commands.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,UAAU,WAAW;IACnB,OAAO,EAAE,MAAM,CAAA;IACf,WAAW,EAAE,MAAM,CAAA;CACpB;AAiHD,eAAO,MAAM,YAAY;;;CAGxB,CAAA"}
+{"version":3,"file":"test-commands.d.ts","sourceRoot":"","sources":["../../src/agents/test-commands.ts"],"names":[],"mappings":"AAAA;;GAEG;AAKH,YAAY,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAA;AAEpD,eAAO,MAAM,YAAY;;;CAGxB,CAAA"}

package/dist/agents/test-commands.js

@@ -1,109 +1,8 @@
 /**
  * Test commands for agent format testing
  */
-/**
- * Commands that should be blocked (contain --no-verify)
- */
-const BLOCKED_COMMANDS = [
-    // --no-verify flag
-    {
-        command: 'git commit --no-verify -m "test"',
-        description: 'commit with --no-verify',
-    },
-    {
-        command: 'git commit -m "test" --no-verify',
-        description: 'commit with --no-verify at end',
-    },
-    {
-        command: 'git push --no-verify origin main',
-        description: 'push with --no-verify',
-    },
-    {
-        command: 'git push origin main --no-verify',
-        description: 'push with --no-verify at end',
-    },
-    {
-        command: 'git merge --no-verify feature',
-        description: 'merge with --no-verify',
-    },
-    {
-        command: 'git cherry-pick --no-verify abc123',
-        description: 'cherry-pick with --no-verify',
-    },
-    {
-        command: 'git rebase --no-verify main',
-        description: 'rebase with --no-verify',
-    },
-    { command: 'git am --no-verify < patch', description: 'am with --no-verify' },
-    // -n shorthand (only for commit)
-    { command: 'git commit -n -m "test"', description: 'commit with -n flag' },
-    { command: 'git commit -m "test" -n', description: 'commit with -n at end' },
-    {
-        command: 'git commit -nm "test"',
-        description: 'commit with combined -nm flags',
-    },
-    // Edge cases
-    {
-        command: 'ls && git commit --no-verify -m "test"',
-        description: 'chained command with --no-verify',
-    },
-    {
-        command: 'git -C /path commit --no-verify -m "test"',
-        description: 'git with -C flag and --no-verify',
-    },
-    {
-        command: 'git    commit    --no-verify -m "test"',
-        description: 'extra whitespace with --no-verify',
-    },
-];
-/**
- * Commands that should be allowed (no --no-verify)
- */
-const ALLOWED_COMMANDS = [
-    // Normal git commands
-    { command: 'git commit -m "test"', description: 'normal commit' },
-    {
-        command: 'git commit -m "feat: add feature"',
-        description: 'commit with conventional message',
-    },
-    { command: 'git push origin main', description: 'normal push' },
-    { command: 'git push -u origin feature', description: 'push with upstream' },
-    { command: 'git merge feature', description: 'normal merge' },
-    { command: 'git cherry-pick abc123', description: 'normal cherry-pick' },
-    { command: 'git rebase main', description: 'normal rebase' },
-    { command: 'git am < patch', description: 'normal am' },
-    // Git commands that don't support --no-verify
-    { command: 'git status', description: 'git status' },
-    { command: 'git log --oneline', description: 'git log with oneline' }, // cspell:disable-line
-    { command: 'git diff', description: 'git diff' },
-    { command: 'git branch -a', description: 'git branch' },
-    { command: 'git checkout main', description: 'git checkout' },
-    { command: 'git pull origin main', description: 'git pull' },
-    { command: 'git fetch --all', description: 'git fetch' },
-    { command: 'git stash', description: 'git stash' },
-    // Non-git commands
-    { command: 'npm install', description: 'npm install' },
-    { command: 'pnpm build', description: 'pnpm build' },
-    { command: 'yarn test', description: 'yarn test' },
-    { command: 'ls -la', description: 'ls command' },
-    { command: 'echo "hello"', description: 'echo command' },
-    // -n flag in non-commit contexts (different meaning)
-    { command: 'git push -n origin main', description: 'push dry-run with -n' },
-    { command: 'git merge -n feature', description: 'merge with -n (no commit)' },
-    {
-        command: 'git cherry-pick -n abc123',
-        description: 'cherry-pick with -n (no commit)',
-    },
-    // Commands with special characters
-    {
-        command: 'git commit -m "feat(scope): add feature #123"',
-        description: 'commit with special chars',
-    },
-    {
-        command: 'git commit -m "fix: handle edge case @user"',
-        description: 'commit with @ mention',
-    },
-];
+import { BLOCKED_COMMANDS } from './blocked-commands.js';
+import { ALLOWED_COMMANDS } from './allowed-commands.js';
 export const testCommands = {
     BLOCKED_COMMANDS,
     ALLOWED_COMMANDS,

package/dist/agents/test-commands.js.map

@@ -1 +1 @@
-{"version":3,"file":"test-commands.js","sourceRoot":"","sources":["../../src/agents/test-commands.ts"],"names":[],"mappings":"AAAA;;GAEG;AAOH;;GAEG;AACH,MAAM,gBAAgB,GAAkB;IACtC,mBAAmB;IACnB;QACE,OAAO,EAAE,kCAAkC;QAC3C,WAAW,EAAE,yBAAyB;KACvC;IACD;QACE,OAAO,EAAE,kCAAkC;QAC3C,WAAW,EAAE,gCAAgC;KAC9C;IACD;QACE,OAAO,EAAE,kCAAkC;QAC3C,WAAW,EAAE,uBAAuB;KACrC;IACD;QACE,OAAO,EAAE,kCAAkC;QAC3C,WAAW,EAAE,8BAA8B;KAC5C;IACD;QACE,OAAO,EAAE,+BAA+B;QACxC,WAAW,EAAE,wBAAwB;KACtC;IACD;QACE,OAAO,EAAE,oCAAoC;QAC7C,WAAW,EAAE,8BAA8B;KAC5C;IACD;QACE,OAAO,EAAE,6BAA6B;QACtC,WAAW,EAAE,yBAAyB;KACvC;IACD,EAAE,OAAO,EAAE,4BAA4B,EAAE,WAAW,EAAE,qBAAqB,EAAE;IAE7E,iCAAiC;IACjC,EAAE,OAAO,EAAE,yBAAyB,EAAE,WAAW,EAAE,qBAAqB,EAAE;IAC1E,EAAE,OAAO,EAAE,yBAAyB,EAAE,WAAW,EAAE,uBAAuB,EAAE;IAC5E;QACE,OAAO,EAAE,uBAAuB;QAChC,WAAW,EAAE,gCAAgC;KAC9C;IAED,aAAa;IACb;QACE,OAAO,EAAE,wCAAwC;QACjD,WAAW,EAAE,kCAAkC;KAChD;IACD;QACE,OAAO,EAAE,2CAA2C;QACpD,WAAW,EAAE,kCAAkC;KAChD;IACD;QACE,OAAO,EAAE,wCAAwC;QACjD,WAAW,EAAE,mCAAmC;KACjD;CACF,CAAA;AAED;;GAEG;AACH,MAAM,gBAAgB,GAAkB;IACtC,sBAAsB;IACtB,EAAE,OAAO,EAAE,sBAAsB,EAAE,WAAW,EAAE,eAAe,EAAE;IACjE;QACE,OAAO,EAAE,mCAAmC;QAC5C,WAAW,EAAE,kCAAkC;KAChD;IACD,EAAE,OAAO,EAAE,sBAAsB,EAAE,WAAW,EAAE,aAAa,EAAE;IAC/D,EAAE,OAAO,EAAE,4BAA4B,EAAE,WAAW,EAAE,oBAAoB,EAAE;IAC5E,EAAE,OAAO,EAAE,mBAAmB,EAAE,WAAW,EAAE,cAAc,EAAE;IAC7D,EAAE,OAAO,EAAE,wBAAwB,EAAE,WAAW,EAAE,oBAAoB,EAAE;IACxE,EAAE,OAAO,EAAE,iBAAiB,EAAE,WAAW,EAAE,eAAe,EAAE;IAC5D,EAAE,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,WAAW,EAAE;IAEvD,8CAA8C;IAC9C,EAAE,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,YAAY,EAAE;IACpD,EAAE,OAAO,EAAE,mBAAmB,EAAE,WAAW,EAAE,sBAAsB,EAAE,EAAE,sBAAsB;IAC7F,EAAE,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,UAAU,EAAE;IAChD,EAAE,OAAO,EAAE,eAAe,EAAE,WAAW,EAAE,YAAY,EAAE;IACvD,EAAE,OAAO,EAAE,mBAAmB,EAAE,WAAW,EAAE,cAAc,EAAE;IAC7D,EAAE,OAAO,EAAE,sBAAsB,EAAE,WAAW,EAAE,UAAU,EAAE;IAC5D,EAAE,OAAO,EAAE,iBAAiB,EAAE,WAAW,EAAE,WAAW,EAAE;IACxD,EAAE,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,WAAW,EAAE;IAElD,mBAAmB;IACnB,EAAE,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,aAAa,EAAE;IACtD,EAAE,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,YAAY,EAAE;IACpD,EAAE,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,WAAW,EAAE;IAClD,EAAE,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,YAAY,EAAE;IAChD,EAAE,OAAO,EAAE,cAAc,EAAE,WAAW,EAAE,cAAc,EAAE;IAExD,qDAAqD;IACrD,EAAE,OAAO,EAAE,yBAAyB,EAAE,WAAW,EAAE,sBAAsB,EAAE;IAC3E,EAAE,OAAO,EAAE,sBAAsB,EAAE,WAAW,EAAE,2BAA2B,EAAE;IAC7E;QACE,OAAO,EAAE,2BAA2B;QACpC,WAAW,EAAE,iCAAiC;KAC/C;IAED,mCAAmC;IACnC;QACE,OAAO,EAAE,+CAA+C;QACxD,WAAW,EAAE,2BAA2B;KACzC;IACD;QACE,OAAO,EAAE,6CAA6C;QACtD,WAAW,EAAE,uBAAuB;KACrC;CACF,CAAA;AAED,MAAM,CAAC,MAAM,YAAY,GAAG;IAC1B,gBAAgB;IAChB,gBAAgB;CACjB,CAAA"}
+{"version":3,"file":"test-commands.js","sourceRoot":"","sources":["../../src/agents/test-commands.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAA;AACxD,OAAO,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAA;AAIxD,MAAM,CAAC,MAAM,YAAY,GAAG;IAC1B,gBAAgB;IAChB,gBAAgB;CACjB,CAAA"}

package/dist/check-command.d.ts

@@ -1,6 +1,6 @@
 import type { CheckResult } from './check-result.js';
 /**
- * Checks a command input for --no-verify flag usage
+ * Checks a command input for --no-verify flag usage or hooks path override
  *
  * @param input - The command input to check (typically from stdin in Claude Code hooks)
  * @returns CheckResult indicating whether the command should be blocked

package/dist/check-command.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"check-command.d.ts","sourceRoot":"","sources":["../src/check-command.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAA;AAIpD;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,WAAW,CAgBvD"}
+{"version":3,"file":"check-command.d.ts","sourceRoot":"","sources":["../src/check-command.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAA;AAKpD;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,WAAW,CAwBvD"}

package/dist/check-command.js

@@ -1,7 +1,8 @@
 import { detectGitCommand } from './detect-git-command.js';
 import { hasNoVerifyFlag } from './has-no-verify-flag.js';
+import { hasHooksPathOverride } from './has-hooks-path-override.js';
 /**
- * Checks a command input for --no-verify flag usage
+ * Checks a command input for --no-verify flag usage or hooks path override
  *
  * @param input - The command input to check (typically from stdin in Claude Code hooks)
  * @returns CheckResult indicating whether the command should be blocked
@@ -18,6 +19,13 @@ export function checkCommand(input) {
             gitCommand,
         };
     }
+    if (hasHooksPathOverride(input)) {
+        return {
+            blocked: true,
+            reason: `BLOCKED: Overriding core.hooksPath is not allowed with git ${gitCommand}. Git hooks must not be bypassed.`,
+            gitCommand,
+        };
+    }
     return { blocked: false, gitCommand };
 }
 //# sourceMappingURL=check-command.js.map

package/dist/check-command.js.map

@@ -1 +1 @@
-{"version":3,"file":"check-command.js","sourceRoot":"","sources":["../src/check-command.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAA;AAC1D,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAA;AAEzD;;;;;GAKG;AACH,MAAM,UAAU,YAAY,CAAC,KAAa;IACxC,MAAM,UAAU,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAA;IAE1C,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,CAAA;IAC3B,CAAC;IAED,IAAI,eAAe,CAAC,KAAK,EAAE,UAAU,CAAC,EAAE,CAAC;QACvC,OAAO;YACL,OAAO,EAAE,IAAI;YACb,MAAM,EAAE,qDAAqD,UAAU,mCAAmC;YAC1G,UAAU;SACX,CAAA;IACH,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAA;AACvC,CAAC"}
+{"version":3,"file":"check-command.js","sourceRoot":"","sources":["../src/check-command.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAA;AAC1D,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAA;AACzD,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAA;AAEnE;;;;;GAKG;AACH,MAAM,UAAU,YAAY,CAAC,KAAa;IACxC,MAAM,UAAU,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAA;IAE1C,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,CAAA;IAC3B,CAAC;IAED,IAAI,eAAe,CAAC,KAAK,EAAE,UAAU,CAAC,EAAE,CAAC;QACvC,OAAO;YACL,OAAO,EAAE,IAAI;YACb,MAAM,EAAE,qDAAqD,UAAU,mCAAmC;YAC1G,UAAU;SACX,CAAA;IACH,CAAC;IAED,IAAI,oBAAoB,CAAC,KAAK,CAAC,EAAE,CAAC;QAChC,OAAO;YACL,OAAO,EAAE,IAAI;YACb,MAAM,EAAE,8DAA8D,UAAU,mCAAmC;YACnH,UAAU;SACX,CAAA;IACH,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAA;AACvC,CAAC"}

package/dist/has-hooks-path-override.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Checks if the input contains a -c core.hooksPath= override
+ * which is used to bypass git hooks by redirecting the hooks directory
+ */
+export declare function hasHooksPathOverride(input: string): boolean;
+//# sourceMappingURL=has-hooks-path-override.d.ts.map

package/dist/has-hooks-path-override.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"has-hooks-path-override.d.ts","sourceRoot":"","sources":["../src/has-hooks-path-override.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,wBAAgB,oBAAoB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAI3D"}

package/dist/has-hooks-path-override.js

@@ -0,0 +1,10 @@
+/**
+ * Checks if the input contains a -c core.hooksPath= override
+ * which is used to bypass git hooks by redirecting the hooks directory
+ */
+export function hasHooksPathOverride(input) {
+    // Match: -c core.hooksPath=<value> with optional quotes around the value
+    // Handles: -c core.hooksPath=/dev/null, -c "core.hooksPath=", -c 'core.hooksPath=/tmp'
+    return /-c\s+["']?core\.hooksPath\s*=/.test(input);
+}
+//# sourceMappingURL=has-hooks-path-override.js.map

package/dist/has-hooks-path-override.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"has-hooks-path-override.js","sourceRoot":"","sources":["../src/has-hooks-path-override.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,MAAM,UAAU,oBAAoB,CAAC,KAAa;IAChD,yEAAyE;IACzE,uFAAuF;IACvF,OAAO,+BAA+B,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;AACpD,CAAC"}

package/dist/index.d.ts

@@ -10,6 +10,7 @@ export type { CheckResult } from './check-result.js';
 export { EXIT_CODES } from './exit-codes.js';
 export { detectGitCommand } from './detect-git-command.js';
 export { hasNoVerifyFlag } from './has-no-verify-flag.js';
+export { hasHooksPathOverride } from './has-hooks-path-override.js';
 export { checkCommand } from './check-command.js';
 export { parseInput } from './parse-input.js';
 export type { InputFormat } from './input-format.js';

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,2BAA2B,EAAE,MAAM,YAAY,CAAA;AACxD,YAAY,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAClD,YAAY,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAA;AACpD,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAA;AAC5C,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAA;AAC1D,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAA;AACzD,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAA;AACjD,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAC7C,YAAY,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAA;AACpD,YAAY,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,2BAA2B,EAAE,MAAM,YAAY,CAAA;AACxD,YAAY,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAClD,YAAY,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAA;AACpD,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAA;AAC5C,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAA;AAC1D,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAA;AACzD,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAA;AACnE,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAA;AACjD,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA;AAC7C,YAAY,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAA;AACpD,YAAY,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAA"}

package/dist/index.js

@@ -8,6 +8,7 @@ export { GIT_COMMANDS_WITH_NO_VERIFY } from './types.js';
 export { EXIT_CODES } from './exit-codes.js';
 export { detectGitCommand } from './detect-git-command.js';
 export { hasNoVerifyFlag } from './has-no-verify-flag.js';
+export { hasHooksPathOverride } from './has-hooks-path-override.js';
 export { checkCommand } from './check-command.js';
 export { parseInput } from './parse-input.js';
 //# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,2BAA2B,EAAE,MAAM,YAAY,CAAA;AAGxD,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAA;AAC5C,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAA;AAC1D,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAA;AACzD,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAA;AACjD,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,2BAA2B,EAAE,MAAM,YAAY,CAAA;AAGxD,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAA;AAC5C,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAA;AAC1D,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAA;AACzD,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAA;AACnE,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAA;AACjD,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAA"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "block-no-verify",
-  "version": "1.1.1",
+  "version": "1.1.3",
   "description": "CLI tool to block --no-verify flag in git commands. Prevents AI agents from bypassing git hooks.",
   "type": "module",
   "main": "./dist/index.js",
@@ -17,6 +17,22 @@
   "files": [
     "dist"
   ],
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsc --watch",
+    "test": "vitest",
+    "test:watch": "vitest --watch",
+    "test:coverage": "vitest --coverage",
+    "lint": "eslint .",
+    "lint:fix": "eslint . --fix",
+    "format": "prettier --write \"src/**/*.{ts,tsx,js,jsx,json,md}\"",
+    "format:check": "prettier --check \"src/**/*.{ts,tsx,js,jsx,json,md}\"",
+    "spell": "cspell lint '**/*.{ts,js,md,json}' --gitignore",
+    "spell:check": "cspell lint '**/*.{ts,js,md,json}' --gitignore",
+    "knip": "knip",
+    "prepare": "husky",
+    "release": "release-it"
+  },
   "keywords": [
     "git",
     "no-verify",
@@ -32,6 +48,7 @@
   "engines": {
     "node": ">=20.0.0"
   },
+  "packageManager": "pnpm@10.26.2",
   "publishConfig": {
     "access": "public"
   },
@@ -47,6 +64,7 @@
     "@commitlint/cli": "^20.3.1",
     "@commitlint/config-conventional": "^20.3.1",
     "@cspell/dict-he": "^4.0.5",
+    "@release-it/conventional-changelog": "^10.0.6",
     "@types/node": "^25.0.3",
     "@vitest/coverage-v8": "^4.0.16",
     "cspell": "^9.4.0",
@@ -61,20 +79,5 @@
     "release-it": "^19.2.3",
     "typescript": "^5.9.3",
     "vitest": "^4.0.16"
-  },
-  "scripts": {
-    "build": "tsc",
-    "dev": "tsc --watch",
-    "test": "vitest",
-    "test:watch": "vitest --watch",
-    "test:coverage": "vitest --coverage",
-    "lint": "eslint .",
-    "lint:fix": "eslint . --fix",
-    "format": "prettier --write \"src/**/*.{ts,tsx,js,jsx,json,md}\"",
-    "format:check": "prettier --check \"src/**/*.{ts,tsx,js,jsx,json,md}\"",
-    "spell": "cspell lint '**/*.{ts,js,md,json}' --gitignore",
-    "spell:check": "cspell lint '**/*.{ts,js,md,json}' --gitignore",
-    "knip": "knip",
-    "release": "release-it"
   }
-}
+}