npm - cc-safe-setup - Versions diffs - 1.9.0 → 1.9.2 - Mend

cc-safe-setup 1.9.0 → 1.9.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/README.md +9 -2
package/examples/README.md +9 -6
package/examples/auto-checkpoint.sh +38 -0
package/index.mjs +21 -0
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -128,7 +128,13 @@ Or start with the free hooks: [claude-code-hooks](https://github.com/yurukusa/cl
 ## Examples
-Need custom hooks beyond the 8 built-in ones? See [`examples/`](examples/) for ready-to-use recipes:
+Need custom hooks beyond the 8 built-in ones? Install any example with one command:
+```bash
+npx cc-safe-setup --install-example block-database-wipe
+```
+Or browse all available examples in [`examples/`](examples/):
 - **auto-approve-git-read.sh** — Auto-approve `git status`, `git log`, even with `-C` flags
 - **auto-approve-ssh.sh** — Auto-approve safe SSH commands (`uptime`, `whoami`, etc.)
@@ -143,11 +149,12 @@ Need custom hooks beyond the 8 built-in ones? See [`examples/`](examples/) for r
 - **allowlist.sh** — Block everything not explicitly approved — inverse permission model ([#37471](https://github.com/anthropics/claude-code/issues/37471))
 - **protect-dotfiles.sh** — Block modifications to `~/.bashrc`, `~/.aws/`, `~/.ssh/` and chezmoi without diff ([#37478](https://github.com/anthropics/claude-code/issues/37478))
 - **scope-guard.sh** — Block file operations outside project directory — absolute paths, home, parent escapes ([#36233](https://github.com/anthropics/claude-code/issues/36233))
+- **auto-checkpoint.sh** — Auto-commit after every edit for rollback protection ([#34674](https://github.com/anthropics/claude-code/issues/34674))
 ## Learn More
 - [Official Hooks Reference](https://code.claude.com/docs/en/hooks) — Claude Code hooks documentation
-- [Hooks Cookbook](https://github.com/yurukusa/claude-code-hooks/blob/main/COOKBOOK.md) — 13 ready-to-use recipes from real GitHub Issues
+- [Hooks Cookbook](https://github.com/yurukusa/claude-code-hooks/blob/main/COOKBOOK.md) — 14 ready-to-use recipes from real GitHub Issues
 - [Japanese guide (Qiita)](https://qiita.com/yurukusa/items/a9714b33f5d974e8f1e8) — この記事の日本語解説
 - [The incident that inspired this tool](https://github.com/anthropics/claude-code/issues/36339) — NTFS junction rm -rf

package/examples/README.md CHANGED Viewed

@@ -5,6 +5,7 @@ Custom hooks beyond the 8 built-in ones. Copy any file to `~/.claude/hooks/` and
 | Hook | Purpose | Related Issue |
 |------|---------|---------------|
 | **allowlist.sh** | Block everything not explicitly approved (inverse model) | [#37471](https://github.com/anthropics/claude-code/issues/37471) |
+| **auto-checkpoint.sh** | Auto-commit after edits for rollback protection | [#34674](https://github.com/anthropics/claude-code/issues/34674) |
 | **auto-approve-build.sh** | Auto-approve npm/yarn/cargo/go build, test, lint | |
 | **auto-approve-docker.sh** | Auto-approve docker build, compose, ps, logs | |
 | **auto-approve-git-read.sh** | Auto-approve `git status/log/diff` even with `-C` flags | [#36900](https://github.com/anthropics/claude-code/issues/36900) |
@@ -21,14 +22,16 @@ Custom hooks beyond the 8 built-in ones. Copy any file to `~/.claude/hooks/` and
 ## Quick Start
 ```bash
-# 1. Copy example to hooks directory
-cp examples/block-database-wipe.sh ~/.claude/hooks/
+# One command — copies hook, updates settings.json, makes executable
+npx cc-safe-setup --install-example block-database-wipe
+```
-# 2. Make executable
-chmod +x ~/.claude/hooks/block-database-wipe.sh
+Or manually:
-# 3. Add to settings.json
-# See each file's header comment for the JSON configuration
+```bash
+cp examples/block-database-wipe.sh ~/.claude/hooks/
+chmod +x ~/.claude/hooks/block-database-wipe.sh
+# Add to settings.json — see each file's header for the JSON config
 ```
 ## List from CLI

package/examples/auto-checkpoint.sh ADDED Viewed

@@ -0,0 +1,38 @@
+#!/bin/bash
+# auto-checkpoint.sh — Auto-commit after every edit for rollback protection
+#
+# Solves: Context compaction silently reverting uncommitted edits (#34674)
+# Also protects against: session crashes, token expiry, any unexpected death
+#
+# Creates lightweight checkpoint commits after every Edit/Write.
+# If anything goes wrong, you can recover with `git log` and `git cherry-pick`.
+#
+# Usage: Add to settings.json as a PostToolUse hook
+#
+# {
+#   "hooks": {
+#     "PostToolUse": [{
+#       "matcher": "Edit|Write",
+#       "hooks": [{ "type": "command", "command": "~/.claude/hooks/auto-checkpoint.sh" }]
+#     }]
+#   }
+# }
+INPUT=$(cat)
+TOOL=$(echo "$INPUT" | jq -r '.tool_name // empty' 2>/dev/null)
+# Only checkpoint after Edit or Write
+[[ "$TOOL" != "Edit" && "$TOOL" != "Write" ]] && exit 0
+# Must be in a git repo
+git rev-parse --git-dir &>/dev/null || exit 0
+# Only commit if there are actual changes
+DIRTY=$(git status --porcelain 2>/dev/null | head -1)
+[[ -z "$DIRTY" ]] && exit 0
+# Create checkpoint commit
+git add -A 2>/dev/null
+git commit -m "checkpoint: auto-save $(date +%H:%M:%S)" --no-verify 2>/dev/null
+exit 0

package/index.mjs CHANGED Viewed

@@ -179,6 +179,23 @@ function status() {
   console.log();
   console.log('  ' + (settingsOk ? c.green + '✓' : c.red + '✗') + c.reset + ' settings.json ' + (settingsOk ? 'has hooks configured' : 'missing hook configuration'));
+  // Check installed examples
+  const exampleFiles = [
+    'allowlist.sh', 'auto-approve-build.sh', 'auto-approve-docker.sh',
+    'auto-approve-git-read.sh', 'auto-approve-python.sh', 'auto-approve-ssh.sh',
+    'auto-checkpoint.sh', 'auto-snapshot.sh', 'block-database-wipe.sh',
+    'edit-guard.sh', 'enforce-tests.sh', 'notify-waiting.sh',
+    'protect-dotfiles.sh', 'scope-guard.sh',
+  ];
+  const installedExamples = exampleFiles.filter(f => existsSync(join(HOOKS_DIR, f)));
+  if (installedExamples.length > 0) {
+    console.log();
+    console.log('  ' + c.bold + 'Example hooks installed:' + c.reset);
+    for (const f of installedExamples) {
+      console.log('  ' + c.green + '✓' + c.reset + ' ' + f);
+    }
+  }
   console.log();
   if (missing === 0) {
     console.log(c.bold + '  All ' + installed + ' hooks installed.' + c.reset);
@@ -186,6 +203,9 @@ function status() {
     console.log(c.bold + '  ' + installed + '/' + Object.keys(HOOKS).length + ' hooks installed.' + c.reset);
     console.log('  ' + c.dim + 'Run: npx cc-safe-setup' + c.reset);
   }
+  if (installedExamples.length > 0) {
+    console.log('  ' + c.dim + '+ ' + installedExamples.length + ' example hooks' + c.reset);
+  }
   console.log();
   // Exit code for CI: 0 = all installed, 1 = missing hooks
@@ -269,6 +289,7 @@ function examples() {
     'allowlist.sh': 'Block everything not in allowlist (inverse permission model)',
     'protect-dotfiles.sh': 'Block modifications to ~/.bashrc, ~/.aws/, ~/.ssh/',
     'scope-guard.sh': 'Block file operations outside project directory',
+    'auto-checkpoint.sh': 'Auto-commit after edits for rollback protection',
   };
   console.log();

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "cc-safe-setup",
-  "version": "1.9.0",
+  "version": "1.9.2",
   "description": "One command to make Claude Code safe for autonomous operation. 8 hooks: destructive blocker, branch guard, force-push protection, secret leak prevention, syntax checks, and more.",
   "main": "index.mjs",
   "bin": {