cc-safe-setup 1.9.2 → 1.9.4

package/README.md

@@ -18,14 +18,14 @@ Installs 8 production-tested safety hooks in ~10 seconds. Zero dependencies. No
   cc-safe-setup
   Make Claude Code safe for autonomous operation
 
-  Prevents real incidents:
-  ✗ rm -rf deleting entire user directories (NTFS junction traversal)
-  ✗ Remove-Item -Recurse -Force destroying unpushed source code
+  Prevents real incidents (from GitHub Issues):
+  ✗ rm -rf deleted entire user directory via NTFS junction (#36339)
+  ✗ Remove-Item -Recurse -Force destroyed unpushed source (#37331)
+  ✗ Entire Mac filesystem deleted during cleanup (#36233)
   ✗ Untested code pushed to main at 3am
-  ✗ Force-push rewriting shared branch history
+  ✗ Force-push rewrote shared branch history
   ✗ API keys committed to public repos via git add .
   ✗ Syntax errors cascading through 30+ files
-  ✗ Laravel migrate:fresh wiping production database
   ✗ Sessions losing all context with no warning
 
   Hooks to install:
@@ -150,11 +150,12 @@ Or browse all available examples in [`examples/`](examples/):
 - **protect-dotfiles.sh** — Block modifications to `~/.bashrc`, `~/.aws/`, `~/.ssh/` and chezmoi without diff ([#37478](https://github.com/anthropics/claude-code/issues/37478))
 - **scope-guard.sh** — Block file operations outside project directory — absolute paths, home, parent escapes ([#36233](https://github.com/anthropics/claude-code/issues/36233))
 - **auto-checkpoint.sh** — Auto-commit after every edit for rollback protection ([#34674](https://github.com/anthropics/claude-code/issues/34674))
+- **git-config-guard.sh** — Block `git config --global` modifications without consent ([#37201](https://github.com/anthropics/claude-code/issues/37201))
 
 ## Learn More
 
 - [Official Hooks Reference](https://code.claude.com/docs/en/hooks) — Claude Code hooks documentation
-- [Hooks Cookbook](https://github.com/yurukusa/claude-code-hooks/blob/main/COOKBOOK.md) — 14 ready-to-use recipes from real GitHub Issues
+- [Hooks Cookbook](https://github.com/yurukusa/claude-code-hooks/blob/main/COOKBOOK.md) — 15 ready-to-use recipes from real GitHub Issues
 - [Japanese guide (Qiita)](https://qiita.com/yurukusa/items/a9714b33f5d974e8f1e8) — この記事の日本語解説
 - [The incident that inspired this tool](https://github.com/anthropics/claude-code/issues/36339) — NTFS junction rm -rf
 

package/examples/README.md

@@ -13,8 +13,10 @@ Custom hooks beyond the 8 built-in ones. Copy any file to `~/.claude/hooks/` and
 | **auto-approve-ssh.sh** | Auto-approve safe SSH commands (uptime, whoami) | |
 | **auto-snapshot.sh** | Save file snapshots before edits (rollback protection) | [#37386](https://github.com/anthropics/claude-code/issues/37386) |
 | **block-database-wipe.sh** | Block destructive DB commands (Laravel, Django, Rails) | [#37405](https://github.com/anthropics/claude-code/issues/37405) |
+| **deploy-guard.sh** | Block deploy when uncommitted changes exist | [#37314](https://github.com/anthropics/claude-code/issues/37314) |
 | **edit-guard.sh** | Block Edit/Write to protected files | [#37210](https://github.com/anthropics/claude-code/issues/37210) |
 | **enforce-tests.sh** | Warn when source changes without test changes | |
+| **git-config-guard.sh** | Block git config --global modifications | [#37201](https://github.com/anthropics/claude-code/issues/37201) |
 | **notify-waiting.sh** | Desktop notification when Claude waits for input | |
 | **protect-dotfiles.sh** | Block modifications to ~/.bashrc, ~/.aws/, ~/.ssh/ | [#37478](https://github.com/anthropics/claude-code/issues/37478) |
 | **scope-guard.sh** | Block file operations outside project directory | [#36233](https://github.com/anthropics/claude-code/issues/36233) |

package/examples/deploy-guard.sh

@@ -0,0 +1,46 @@
+#!/bin/bash
+# deploy-guard.sh — Block deploy commands when uncommitted changes exist
+#
+# Solves: Claude deploying without committing, causing changes to
+# silently revert on next sync (#37314, #34674)
+#
+# Detects: rsync, scp, deploy scripts, firebase deploy, vercel,
+# netlify deploy, fly deploy, railway, heroku push
+#
+# Usage: Add to settings.json as a PreToolUse hook
+#
+# {
+#   "hooks": {
+#     "PreToolUse": [{
+#       "matcher": "Bash",
+#       "hooks": [{ "type": "command", "command": "~/.claude/hooks/deploy-guard.sh" }]
+#     }]
+#   }
+# }
+
+INPUT=$(cat)
+COMMAND=$(echo "$INPUT" | jq -r '.tool_input.command // empty' 2>/dev/null)
+
+[[ -z "$COMMAND" ]] && exit 0
+
+# Detect deploy commands
+if ! echo "$COMMAND" | grep -qiE '(rsync|scp|deploy|firebase\s+deploy|vercel|netlify\s+deploy|fly\s+deploy|railway\s+up|git\s+push\s+heroku)'; then
+    exit 0
+fi
+
+# Must be in a git repo
+git rev-parse --git-dir &>/dev/null || exit 0
+
+# Check for uncommitted changes
+DIRTY=$(git status --porcelain 2>/dev/null | head -1)
+if [[ -n "$DIRTY" ]]; then
+    echo "BLOCKED: Uncommitted changes detected. Commit before deploying." >&2
+    echo "" >&2
+    echo "Dirty files:" >&2
+    git status --short 2>/dev/null | head -10 >&2
+    echo "" >&2
+    echo "Run: git add -A && git commit -m 'pre-deploy checkpoint'" >&2
+    exit 2
+fi
+
+exit 0

package/examples/git-config-guard.sh

@@ -0,0 +1,36 @@
+#!/bin/bash
+# git-config-guard.sh — Block git config --global modifications
+#
+# Solves: Claude modifying global git config (user.email, user.name)
+# without user consent (#37201)
+#
+# Usage: Add to settings.json as a PreToolUse hook
+#
+# {
+#   "hooks": {
+#     "PreToolUse": [{
+#       "matcher": "Bash",
+#       "hooks": [{ "type": "command", "command": "~/.claude/hooks/git-config-guard.sh" }]
+#     }]
+#   }
+# }
+
+INPUT=$(cat)
+COMMAND=$(echo "$INPUT" | jq -r '.tool_input.command // empty' 2>/dev/null)
+
+[[ -z "$COMMAND" ]] && exit 0
+
+# Block git config --global (any subcommand)
+if echo "$COMMAND" | grep -qE '\bgit\s+config\s+--global\b'; then
+    echo "BLOCKED: git config --global is not allowed" >&2
+    echo "Use --local for project-specific config instead" >&2
+    exit 2
+fi
+
+# Block git config --system
+if echo "$COMMAND" | grep -qE '\bgit\s+config\s+--system\b'; then
+    echo "BLOCKED: git config --system is not allowed" >&2
+    exit 2
+fi
+
+exit 0

package/index.mjs

@@ -184,8 +184,8 @@ function status() {
     'allowlist.sh', 'auto-approve-build.sh', 'auto-approve-docker.sh',
     'auto-approve-git-read.sh', 'auto-approve-python.sh', 'auto-approve-ssh.sh',
     'auto-checkpoint.sh', 'auto-snapshot.sh', 'block-database-wipe.sh',
-    'edit-guard.sh', 'enforce-tests.sh', 'notify-waiting.sh',
-    'protect-dotfiles.sh', 'scope-guard.sh',
+    'deploy-guard.sh', 'edit-guard.sh', 'enforce-tests.sh', 'git-config-guard.sh',
+    'notify-waiting.sh', 'protect-dotfiles.sh', 'scope-guard.sh',
   ];
   const installedExamples = exampleFiles.filter(f => existsSync(join(HOOKS_DIR, f)));
   if (installedExamples.length > 0) {
@@ -290,6 +290,8 @@ function examples() {
     'protect-dotfiles.sh': 'Block modifications to ~/.bashrc, ~/.aws/, ~/.ssh/',
     'scope-guard.sh': 'Block file operations outside project directory',
     'auto-checkpoint.sh': 'Auto-commit after edits for rollback protection',
+    'git-config-guard.sh': 'Block git config --global modifications',
+    'deploy-guard.sh': 'Block deploy when uncommitted changes exist',
   };
 
   console.log();
@@ -400,6 +402,8 @@ async function main() {
   console.log(c.red + '  x' + c.reset + ' Syntax errors cascading through 30+ files');
   console.log(c.red + '  x' + c.reset + ' Sessions losing all context with no warning');
   console.log(c.red + '  x' + c.reset + ' git checkout --force discarding uncommitted changes');
+  console.log(c.red + '  x' + c.reset + ' Remove-Item -Recurse -Force destroying unpushed source code');
+  console.log(c.red + '  x' + c.reset + ' prisma migrate reset / migrate:fresh wiping databases');
   console.log();
 
   console.log(c.bold + '  Hooks to install:' + c.reset);

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "cc-safe-setup",
-  "version": "1.9.2",
-  "description": "One command to make Claude Code safe for autonomous operation. 8 hooks: destructive blocker, branch guard, force-push protection, secret leak prevention, syntax checks, and more.",
+  "version": "1.9.4",
+  "description": "One command to make Claude Code safe for autonomous operation. 8 built-in hooks + 16 installable examples. Destructive blocker, branch guard, database wipe protection, dotfile guard, and more.",
   "main": "index.mjs",
   "bin": {
     "cc-safe-setup": "index.mjs"