npm - cc-safe-setup - Versions diffs - 1.0.2 → 1.0.4 - Mend

cc-safe-setup 1.0.2 → 1.0.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -1,5 +1,8 @@
 # cc-safe-setup
+[![npm version](https://img.shields.io/npm/v/cc-safe-setup)](https://www.npmjs.com/package/cc-safe-setup)
+[![npm downloads](https://img.shields.io/npm/dw/cc-safe-setup)](https://www.npmjs.com/package/cc-safe-setup)
 **One command to make Claude Code safe for autonomous operation.**
 ```bash
@@ -8,6 +11,34 @@ npx cc-safe-setup
 Installs 4 production-tested safety hooks in ~10 seconds. Zero dependencies. No manual configuration.
+```
+  cc-safe-setup
+  Make Claude Code safe for autonomous operation
+  Prevents real incidents:
+  ✗ rm -rf deleting entire user directories (NTFS junction traversal)
+  ✗ Untested code pushed to main at 3am
+  ✗ Syntax errors cascading through 30+ files
+  ✗ Sessions losing all context with no warning
+  Hooks to install:
+  ● Destructive Command Blocker
+  ● Branch Push Protector
+  ● Post-Edit Syntax Validator
+  ● Context Window Monitor
+  Install all 4 safety hooks? [Y/n] Y
+  ✓ Destructive Command Blocker
+  ✓ Branch Push Protector
+  ✓ Post-Edit Syntax Validator
+  ✓ Context Window Monitor
+  ✓ settings.json updated
+  Done. 4 safety hooks installed.
+```
 ## Why This Exists
 A Claude Code user [lost their entire C:\Users directory](https://github.com/anthropics/claude-code/issues/36339) when `rm -rf` followed NTFS junctions. Another had untested code pushed to main at 3am. Syntax errors cascaded through 30+ files before anyone noticed.

package/index.mjs CHANGED Viewed

@@ -49,11 +49,23 @@ function ask(question) {
   });
 }
+const DRY_RUN = process.argv.includes('--dry-run') || process.argv.includes('-n');
 async function main() {
   console.log();
   console.log(c.bold + '  cc-safe-setup' + c.reset);
   console.log(c.dim + '  Make Claude Code safe for autonomous operation' + c.reset);
   console.log();
+  // Check jq dependency
+  try {
+    const { execSync } = await import('child_process');
+    execSync('which jq', { stdio: 'pipe' });
+  } catch(e) {
+    console.log(c.yellow + '  Warning: jq is not installed. Hooks require jq for JSON parsing.' + c.reset);
+    console.log(c.dim + '  Install: brew install jq (macOS) | apt install jq (Linux)' + c.reset);
+    console.log();
+  }
   console.log(c.dim + '  Prevents real incidents:' + c.reset);
   console.log(c.red + '  x' + c.reset + ' rm -rf deleting entire user directories (NTFS junction traversal)');
   console.log(c.red + '  x' + c.reset + ' Untested code pushed to main at 3am');
@@ -69,6 +81,17 @@ async function main() {
   }
   console.log();
+  if (DRY_RUN) {
+    console.log(c.yellow + '  --dry-run: showing what would be installed (no changes made)' + c.reset);
+    console.log();
+    for (const [id, hook] of Object.entries(HOOKS)) {
+      console.log('  ' + c.dim + 'would install: ' + join(HOOKS_DIR, id + '.sh') + c.reset);
+    }
+    console.log('  ' + c.dim + 'would update: ' + SETTINGS_PATH + c.reset);
+    console.log();
+    process.exit(0);
+  }
   const answer = await ask('  Install all ' + Object.keys(HOOKS).length + ' safety hooks? [Y/n] ');
   if (answer.toLowerCase() === 'n') {
     console.log('\n  ' + c.dim + 'Cancelled.' + c.reset + '\n');

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "cc-safe-setup",
-  "version": "1.0.2",
+  "version": "1.0.4",
   "description": "One command to make Claude Code safe for autonomous operation. Installs destructive command blockers, branch guards, and syntax checks.",
   "main": "index.mjs",
   "bin": {