cc-safe-setup 11.7.0 → 11.8.0

package/docs/settings-reference.html

@@ -1,317 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-<meta charset="UTF-8">
-<meta name="viewport" content="width=device-width, initial-scale=1.0">
-<title>Claude Code settings.json Complete Reference</title>
-<meta name="description" content="Every settings.json field explained with examples. Hooks, permissions, env vars — the definitive reference.">
-<style>
-*{box-sizing:border-box;margin:0;padding:0}
-body{font-family:-apple-system,BlinkMacSystemFont,'Segoe UI',sans-serif;background:#0d1117;color:#c9d1d9;padding:1.5rem;line-height:1.6}
-.c{max-width:820px;margin:0 auto}
-h1{color:#f0f6fc;font-size:1.4rem;margin-bottom:.3rem}
-h2{color:#f0f6fc;font-size:1.05rem;margin:1.3rem 0 .4rem;padding-bottom:.3rem;border-bottom:1px solid #21262d}
-h3{color:#c9d1d9;font-size:.88rem;margin:.7rem 0 .2rem}
-.sub{color:#8b949e;font-size:.83rem;margin-bottom:1rem}
-a{color:#58a6ff;text-decoration:none}
-code{background:#161b22;padding:.12rem .25rem;border-radius:3px;font-size:.82rem}
-pre{background:#161b22;border:1px solid #30363d;border-radius:6px;padding:.6rem;font-size:.78rem;color:#e6edf3;overflow-x:auto;margin:.3rem 0;position:relative}
-.copy{position:absolute;top:.3rem;right:.3rem;background:#21262d;border:1px solid #30363d;color:#8b949e;padding:.15rem .4rem;border-radius:3px;cursor:pointer;font-size:.65rem}
-.copy:hover{color:#f0f6fc}
-table{width:100%;border-collapse:collapse;margin:.4rem 0;font-size:.8rem}
-th,td{padding:.35rem .5rem;border:1px solid #21262d;text-align:left}
-th{background:#161b22;color:#f0f6fc}
-.note{background:#161b22;border-left:3px solid #58a6ff;padding:.4rem .7rem;margin:.4rem 0;font-size:.8rem;color:#8b949e}
-.warn{border-left-color:#d29922}
-.field{background:#161b22;border:1px solid #30363d;border-radius:6px;padding:.6rem;margin:.4rem 0}
-.field-name{font-weight:700;color:#f0f6fc;font-family:monospace;font-size:.85rem}
-.field-type{color:#d29922;font-size:.7rem;margin-left:.4rem}
-.field-desc{color:#8b949e;font-size:.8rem;margin:.2rem 0}
-.footer{text-align:center;color:#484f58;font-size:.7rem;margin-top:2rem;padding-top:1rem;border-top:1px solid #21262d}
-.toc{columns:2;font-size:.8rem;margin:.5rem 0}
-.toc a{display:block;padding:.15rem 0}
-</style>
-</head>
-<body>
-<div class="c">
-
-<h1>settings.json Reference</h1>
-<p class="sub">Every field, every option, with practical examples. <a href="https://docs.anthropic.com/en/docs/claude-code/settings">Official docs</a></p>
-
-<div class="toc">
-<a href="#locations">File Locations</a>
-<a href="#hooks">hooks</a>
-<a href="#permissions">permissions</a>
-<a href="#env">env</a>
-<a href="#model">model</a>
-<a href="#projects">projects</a>
-<a href="#examples">Full Examples</a>
-</div>
-
-<h2 id="locations">File Locations</h2>
-
-<table>
-<tr><th>File</th><th>Scope</th><th>Priority</th></tr>
-<tr><td><code>~/.claude/settings.json</code></td><td>Global (all projects)</td><td>Lowest</td></tr>
-<tr><td><code>.claude/settings.json</code></td><td>Project (in repo)</td><td>Medium</td></tr>
-<tr><td><code>.claude/settings.local.json</code></td><td>Project local (gitignored)</td><td>Highest</td></tr>
-</table>
-
-<div class="note">
-Project settings merge with global. Higher priority files override lower ones for the same key. For hooks, they are <strong>combined</strong>, not replaced.
-</div>
-
-<h2 id="hooks">hooks</h2>
-
-<div class="field">
-<span class="field-name">hooks</span> <span class="field-type">object</span>
-<div class="field-desc">Shell scripts that run at lifecycle points. The core of safety configuration.</div>
-</div>
-
-<h3>Structure</h3>
-<pre><code>{
-  "hooks": {
-    "EVENT": [
-      {
-        "matcher": "REGEX",
-        "hooks": [
-          {
-            "type": "command",
-            "command": "bash path/to/hook.sh"
-          }
-        ]
-      }
-    ]
-  }
-}</code><button class="copy" onclick="cp(this)">Copy</button></pre>
-
-<h3>Events</h3>
-<table>
-<tr><th>Event</th><th>When</th><th>stdin JSON</th></tr>
-<tr><td><code>PreToolUse</code></td><td>Before tool executes</td><td><code>tool_name</code>, <code>tool_input</code></td></tr>
-<tr><td><code>PostToolUse</code></td><td>After tool completes</td><td><code>tool_name</code>, <code>tool_input</code>, <code>tool_result</code></td></tr>
-<tr><td><code>Stop</code></td><td>Claude finishes responding</td><td><code>stop_reason</code></td></tr>
-<tr><td><code>SubagentStop</code></td><td>Subagent finishes</td><td>Subagent context</td></tr>
-<tr><td><code>UserPromptSubmit</code></td><td>User sends a message</td><td>Prompt content</td></tr>
-</table>
-
-<h3>Matcher</h3>
-<table>
-<tr><th>Value</th><th>Matches</th></tr>
-<tr><td><code>""</code></td><td>All tools</td></tr>
-<tr><td><code>"Bash"</code></td><td>Shell commands only</td></tr>
-<tr><td><code>"Edit"</code></td><td>File edits only</td></tr>
-<tr><td><code>"Write"</code></td><td>File writes only</td></tr>
-<tr><td><code>"Read"</code></td><td>File reads only</td></tr>
-<tr><td><code>"Edit|Write"</code></td><td>Any file modification</td></tr>
-<tr><td><code>"Bash|Edit|Write"</code></td><td>Multiple tools (regex OR)</td></tr>
-</table>
-
-<h3>Exit Codes</h3>
-<table>
-<tr><th>Code</th><th>Effect</th></tr>
-<tr><td><code>0</code></td><td>Allow (default)</td></tr>
-<tr><td><code>2</code></td><td>Block the action</td></tr>
-<tr><td><code>1</code></td><td>Hook error (ignored, action proceeds)</td></tr>
-</table>
-
-<h3>stdout Override</h3>
-<pre><code>// Auto-approve
-echo '{"decision":"approve","reason":"Safe command"}'
-
-// Block with reason
-echo '{"decision":"block","reason":"Too dangerous"}'</code></pre>
-
-<h3>Practical Example</h3>
-<pre><code>{
-  "hooks": {
-    "PreToolUse": [
-      {
-        "matcher": "Bash",
-        "hooks": [
-          {"type": "command", "command": "bash ~/.claude/hooks/destructive-guard.sh"},
-          {"type": "command", "command": "bash ~/.claude/hooks/branch-guard.sh"},
-          {"type": "command", "command": "bash ~/.claude/hooks/secret-guard.sh"}
-        ]
-      },
-      {
-        "matcher": "Edit|Write",
-        "hooks": [
-          {"type": "command", "command": "bash ~/.claude/hooks/scope-guard.sh"}
-        ]
-      }
-    ],
-    "PostToolUse": [
-      {
-        "matcher": "Edit|Write",
-        "hooks": [
-          {"type": "command", "command": "bash ~/.claude/hooks/syntax-check.sh"}
-        ]
-      },
-      {
-        "matcher": "",
-        "hooks": [
-          {"type": "command", "command": "bash ~/.claude/hooks/context-monitor.sh"}
-        ]
-      }
-    ],
-    "Stop": [
-      {
-        "matcher": "",
-        "hooks": [
-          {"type": "command", "command": "bash ~/.claude/hooks/api-error-alert.sh"}
-        ]
-      }
-    ]
-  }
-}</code><button class="copy" onclick="cp(this)">Copy</button></pre>
-
-<h2 id="permissions">permissions</h2>
-
-<div class="field">
-<span class="field-name">permissions</span> <span class="field-type">object</span>
-<div class="field-desc">Allow/deny rules for tool usage without prompting.</div>
-</div>
-
-<pre><code>{
-  "permissions": {
-    "allow": [
-      "Bash(npm test)",
-      "Bash(git status)",
-      "Bash(git log *)",
-      "Read(*)",
-      "Bash(ls *)"
-    ],
-    "deny": [
-      "Bash(rm -rf *)",
-      "Bash(sudo *)",
-      "Bash(git push * --force)"
-    ]
-  }
-}</code><button class="copy" onclick="cp(this)">Copy</button></pre>
-
-<div class="note warn">
-<strong>Gotcha:</strong> Permissions use glob patterns, not regex. <code>*</code> matches anything. Claude adds flags like <code>-C /path</code> that can break exact matches — use hooks for reliable blocking.
-</div>
-
-<h2 id="env">env</h2>
-
-<div class="field">
-<span class="field-name">env</span> <span class="field-type">object</span>
-<div class="field-desc">Environment variables passed to Claude Code and hooks.</div>
-</div>
-
-<pre><code>{
-  "env": {
-    "CC_TOKEN_BUDGET": "20",
-    "CC_MAX_LINE_LENGTH": "120",
-    "CC_DISK_WARN_PCT": "90",
-    "CC_ALLOWLIST_FILE": "~/.claude/allowlist.txt"
-  }
-}</code><button class="copy" onclick="cp(this)">Copy</button></pre>
-
-<h2 id="model">model</h2>
-
-<div class="field">
-<span class="field-name">model</span> <span class="field-type">string</span>
-<div class="field-desc">Default model for Claude Code sessions.</div>
-</div>
-
-<pre><code>{
-  "model": "claude-sonnet-4-6"
-}</code></pre>
-
-<table>
-<tr><th>Model</th><th>Best for</th></tr>
-<tr><td><code>claude-opus-4-6</code></td><td>Complex reasoning, architecture</td></tr>
-<tr><td><code>claude-sonnet-4-6</code></td><td>Fast daily coding (default)</td></tr>
-<tr><td><code>claude-haiku-4-5</code></td><td>Quick tasks, high volume</td></tr>
-</table>
-
-<h2 id="projects">Project-Level Settings</h2>
-
-<pre><code>// .claude/settings.json (commit to repo)
-{
-  "hooks": {
-    "PreToolUse": [{
-      "matcher": "Bash",
-      "hooks": [{
-        "type": "command",
-        "command": "bash .claude/hooks/guard.sh"
-      }]
-    }]
-  }
-}
-
-// .claude/settings.local.json (gitignored, personal)
-{
-  "permissions": {
-    "allow": ["Bash(npm test)"]
-  }
-}</code><button class="copy" onclick="cp(this)">Copy</button></pre>
-
-<div class="note">
-Use relative paths in project settings (<code>.claude/hooks/guard.sh</code>) so they work for all team members. Use <code>npx cc-safe-setup --team</code> to set this up automatically.
-</div>
-
-<h2 id="examples">Full Working Examples</h2>
-
-<h3>Minimal Safe Setup</h3>
-<pre><code>{
-  "hooks": {
-    "PreToolUse": [{
-      "matcher": "Bash",
-      "hooks": [
-        {"type": "command", "command": "bash ~/.claude/hooks/destructive-guard.sh"},
-        {"type": "command", "command": "bash ~/.claude/hooks/branch-guard.sh"},
-        {"type": "command", "command": "bash ~/.claude/hooks/secret-guard.sh"}
-      ]
-    }]
-  }
-}</code><button class="copy" onclick="cp(this)">Copy</button></pre>
-
-<h3>Node.js Project</h3>
-<pre><code>{
-  "hooks": {
-    "PreToolUse": [
-      {"matcher": "Bash", "hooks": [
-        {"type": "command", "command": "bash ~/.claude/hooks/destructive-guard.sh"},
-        {"type": "command", "command": "bash ~/.claude/hooks/branch-guard.sh"},
-        {"type": "command", "command": "bash ~/.claude/hooks/secret-guard.sh"},
-        {"type": "command", "command": "bash ~/.claude/hooks/auto-approve-build.sh"}
-      ]},
-      {"matcher": "Edit|Write", "hooks": [
-        {"type": "command", "command": "bash ~/.claude/hooks/syntax-check.sh"}
-      ]}
-    ]
-  },
-  "permissions": {
-    "allow": ["Bash(npm test)", "Bash(npm run lint)", "Read(*)"]
-  }
-}</code><button class="copy" onclick="cp(this)">Copy</button></pre>
-
-<h3>Maximum Safety (Autonomous)</h3>
-<pre><code>// Generated by: npx cc-safe-setup --profile strict
-// 33 hooks for autonomous/production use
-// Run: npx cc-safe-setup --shield</code></pre>
-
-<div class="footer">
-  <a href="hooks-cheatsheet.html">Cheat Sheet</a> ·
-  <a href="builder.html">Builder</a> ·
-  <a href="faq.html">FAQ</a> ·
-  <a href="by-example.html">Examples</a> ·
-  <a href="migration-guide.html">Migration</a> ·
-  <a href="https://github.com/yurukusa/cc-safe-setup">GitHub</a>
-</div>
-</div>
-
-<script>
-function cp(btn) {
-  const code = btn.parentElement.querySelector('code').textContent;
-  navigator.clipboard.writeText(code);
-  btn.textContent = 'Copied!';
-  setTimeout(() => btn.textContent = 'Copy', 1500);
-}
-</script>
-</body>
-</html>

package/docs/troubleshooting.html

@@ -1,189 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-<meta charset="UTF-8">
-<meta name="viewport" content="width=device-width, initial-scale=1.0">
-<title>Claude Code Troubleshooting — Fix Any Problem in 2 Minutes</title>
-<meta name="description" content="Hook not firing? Claude ignoring rules? Permission prompt spam? Fix every common Claude Code problem.">
-<style>
-*{box-sizing:border-box;margin:0;padding:0}
-body{font-family:-apple-system,BlinkMacSystemFont,'Segoe UI',sans-serif;background:#0d1117;color:#c9d1d9;padding:1.5rem;line-height:1.6}
-.c{max-width:800px;margin:0 auto}
-h1{color:#f0f6fc;font-size:1.4rem;margin-bottom:.3rem}
-h2{color:#f0f6fc;font-size:1rem;margin:1.2rem 0 .4rem}
-.sub{color:#8b949e;font-size:.83rem;margin-bottom:1rem}
-a{color:#58a6ff;text-decoration:none}
-code{background:#161b22;padding:.12rem .25rem;border-radius:3px;font-size:.82rem}
-pre{background:#161b22;border:1px solid #30363d;border-radius:6px;padding:.5rem;font-size:.78rem;color:#e6edf3;overflow-x:auto;margin:.3rem 0}
-.problem{background:#161b22;border:1px solid #30363d;border-radius:8px;margin:.6rem 0;overflow:hidden}
-.problem-header{padding:.6rem .8rem;cursor:pointer;font-weight:600;color:#f0f6fc;font-size:.88rem;display:flex;align-items:center;gap:.5rem}
-.problem-header:hover{background:#21262d}
-.problem-icon{font-size:1rem}
-.problem-body{padding:0 .8rem .6rem;font-size:.82rem;display:none}
-.problem.open .problem-body{display:block}
-.step{background:#0d1117;border-radius:4px;padding:.4rem .6rem;margin:.3rem 0;border-left:3px solid #30363d}
-.step-yes{border-left-color:#238636}
-.step-no{border-left-color:#da3633}
-.step-fix{border-left-color:#58a6ff}
-.footer{text-align:center;color:#484f58;font-size:.7rem;margin-top:2rem;padding-top:1rem;border-top:1px solid #21262d}
-.quick{background:#161b22;border:1px solid #30363d;border-radius:6px;padding:.6rem;margin:.5rem 0;font-size:.82rem}
-</style>
-</head>
-<body>
-<div class="c">
-
-<h1>Troubleshooting</h1>
-<p class="sub">Click your problem. Follow the steps. Fixed in 2 minutes.</p>
-
-<div class="quick">
-<strong>Quick fix for most problems:</strong> <code>npx cc-safe-setup --quickfix</code>
-</div>
-
-<div class="problem" onclick="this.classList.toggle('open')">
-<div class="problem-header"><span class="problem-icon">🔇</span> My hook doesn't fire</div>
-<div class="problem-body">
-<div class="step">1. Is the hook file executable? <code>ls -la ~/.claude/hooks/your-hook.sh</code></div>
-<div class="step-fix">Fix: <code>chmod +x ~/.claude/hooks/your-hook.sh</code></div>
-
-<div class="step">2. Does it have a shebang? First line must be <code>#!/bin/bash</code></div>
-<div class="step-fix">Fix: Add <code>#!/bin/bash</code> as the very first line</div>
-
-<div class="step">3. Is it registered in settings.json?</div>
-<pre>cat ~/.claude/settings.json | python3 -m json.tool | grep your-hook</pre>
-<div class="step-fix">Fix: <code>npx cc-safe-setup --shield</code> (auto-registers all hooks)</div>
-
-<div class="step">4. Is the matcher correct? <code>"Bash"</code> won't fire for Edit/Write</div>
-<div class="step-fix">Use <code>""</code> (empty) to match all tools, or <code>"Edit|Write"</code> for file ops</div>
-
-<div class="step">5. Is jq installed? <code>which jq</code></div>
-<div class="step-fix">Install: <code>brew install jq</code> (macOS) or <code>sudo apt install jq</code> (Linux)</div>
-
-<div class="step">6. Test it manually:</div>
-<pre>echo '{"tool_input":{"command":"rm -rf /"}}' | bash ~/.claude/hooks/your-hook.sh; echo "Exit: $?"</pre>
-</div>
-</div>
-
-<div class="problem" onclick="this.classList.toggle('open')">
-<div class="problem-header"><span class="problem-icon">🚫</span> My hook blocks everything</div>
-<div class="problem-body">
-<div class="step">Your regex pattern is too broad. Test with a safe command:</div>
-<pre>echo '{"tool_input":{"command":"ls -la"}}' | bash ~/.claude/hooks/your-hook.sh; echo "Exit: $?"</pre>
-<div class="step">If it exits 2 for <code>ls</code>, your grep pattern matches too much.</div>
-<div class="step-fix">Check the <code>grep -qE</code> pattern in your hook. Add <code>\b</code> word boundaries.</div>
-<div class="step-fix">Example: <code>grep -qE '\brm\s+.*-rf\s+/'</code> instead of <code>grep -q 'rm'</code></div>
-</div>
-</div>
-
-<div class="problem" onclick="this.classList.toggle('open')">
-<div class="problem-header"><span class="problem-icon">📋</span> Claude ignores CLAUDE.md rules</div>
-<div class="problem-body">
-<div class="step">This is normal — CLAUDE.md rules degrade as context fills up.</div>
-<div class="step-fix"><strong>Solution: Convert critical rules to hooks.</strong></div>
-<pre># Example: "Don't push to main" as a hook instead of a rule
-npx cc-safe-setup  # Installs branch-guard</pre>
-<div class="step">For any rule that must be enforced 100%, create a hook:</div>
-<pre>npx cc-safe-setup --create "your rule in plain English"</pre>
-<div class="step-fix">CLAUDE.md is for guidelines. Hooks are for hard constraints. Use both.</div>
-</div>
-</div>
-
-<div class="problem" onclick="this.classList.toggle('open')">
-<div class="problem-header"><span class="problem-icon">🔔</span> Too many permission prompts</div>
-<div class="problem-body">
-<div class="step">Install auto-approve hooks for safe commands:</div>
-<pre>npx cc-safe-setup --install-example auto-approve-build    # npm test, cargo build
-npx cc-safe-setup --install-example auto-approve-python   # pytest, mypy
-npx cc-safe-setup --install-example auto-approve-git-read # git status, git log
-npx cc-safe-setup --install-example compound-command-approver # cd && git log</pre>
-<div class="step">Or add permissions in settings.json:</div>
-<pre>"permissions": {"allow": ["Bash(npm test)", "Bash(git status)", "Read(*)"]}</pre>
-<div class="step-fix">The <code>--profile standard</code> includes auto-approve hooks for common commands.</div>
-</div>
-</div>
-
-<div class="problem" onclick="this.classList.toggle('open')">
-<div class="problem-header"><span class="problem-icon">💾</span> settings.json won't parse</div>
-<div class="problem-body">
-<div class="step">Validate:</div>
-<pre>python3 -c "import json; json.load(open('$HOME/.claude/settings.json'))"</pre>
-<div class="step-fix">Common causes: trailing commas, comments (JSON doesn't allow them), unescaped quotes</div>
-<div class="step">Auto-fix:</div>
-<pre>npx cc-safe-setup --quickfix</pre>
-<div class="step-fix">If totally broken: <code>echo '{}' > ~/.claude/settings.json</code> then re-run setup</div>
-</div>
-</div>
-
-<div class="problem" onclick="this.classList.toggle('open')">
-<div class="problem-header"><span class="problem-icon">🔄</span> Claude keeps retrying the same failed command</div>
-<div class="problem-body">
-<div class="step">Install the error memory guard:</div>
-<pre>npx cc-safe-setup --install-example error-memory-guard</pre>
-<div class="step-fix">After 3 failures of the same command, it blocks and says "try a different approach".</div>
-<div class="step">Also useful: loop detector</div>
-<pre>npx cc-safe-setup --install-example loop-detector</pre>
-</div>
-</div>
-
-<div class="problem" onclick="this.classList.toggle('open')">
-<div class="problem-header"><span class="problem-icon">💸</span> Session costs too much</div>
-<div class="problem-body">
-<div class="step">Install token budget guard:</div>
-<pre>npx cc-safe-setup --install-example token-budget-guard</pre>
-<div class="step-fix">Warns at $10, blocks at $50 (configurable via <code>CC_TOKEN_BUDGET</code> and <code>CC_TOKEN_BLOCK</code>)</div>
-<div class="step">Monitor with:</div>
-<pre>npx cc-safe-setup --analyze</pre>
-</div>
-</div>
-
-<div class="problem" onclick="this.classList.toggle('open')">
-<div class="problem-header"><span class="problem-icon">🧠</span> Context fills up too fast</div>
-<div class="problem-body">
-<div class="step">Three hooks help:</div>
-<pre>npx cc-safe-setup --install-example output-length-guard   # Warn on large outputs
-npx cc-safe-setup --install-example large-read-guard      # Warn before cat on large files
-npx cc-safe-setup --install-example compact-reminder      # Suggest /compact after N calls</pre>
-<div class="step-fix">The context-monitor hook (installed by default) warns at 40%, 25%, 20%, 15%.</div>
-</div>
-</div>
-
-<div class="problem" onclick="this.classList.toggle('open')">
-<div class="problem-header"><span class="problem-icon">👥</span> Team members have different hook setups</div>
-<div class="problem-body">
-<div class="step">Use project-level hooks:</div>
-<pre>npx cc-safe-setup --team
-git add .claude/
-git commit -m "chore: add team safety hooks"</pre>
-<div class="step-fix">Hooks are copied to <code>.claude/hooks/</code> with relative paths. Works on any machine.</div>
-<div class="step">Generate CI to enforce:</div>
-<pre>npx cc-safe-setup --generate-ci</pre>
-</div>
-</div>
-
-<div class="problem" onclick="this.classList.toggle('open')">
-<div class="problem-header"><span class="problem-icon">🔀</span> Hooks from different tools conflict</div>
-<div class="problem-body">
-<div class="step">Analyze what you have:</div>
-<pre>npx cc-safe-setup --migrate-from manual  # See all existing hooks
-npx cc-safe-setup --health               # Check hook health</pre>
-<div class="step-fix">Hooks in the same group run sequentially. If one consumes stdin, the next gets nothing.</div>
-<div class="step">Fix: Put each hook in a separate matcher group in settings.json.</div>
-</div>
-</div>
-
-<div class="quick" style="margin-top:1rem">
-<strong>Still stuck?</strong>
-<code>npx cc-safe-setup --doctor</code> — full diagnosis<br>
-<code>npx cc-safe-setup --quickfix</code> — auto-fix common issues<br>
-<a href="faq.html">FAQ</a> — 15 questions answered
-</div>
-
-<div class="footer">
-  <a href="hooks-cheatsheet.html">Cheat Sheet</a> ·
-  <a href="builder.html">Builder</a> ·
-  <a href="faq.html">FAQ</a> ·
-  <a href="settings-reference.html">Settings Ref</a> ·
-  <a href="https://github.com/yurukusa/cc-safe-setup">GitHub</a>
-</div>
-</div>
-</body>
-</html>

package/examples/go/destructive_guard.go

@@ -1,69 +0,0 @@
-// destructive_guard.go — Claude Code PreToolUse hook in Go
-//
-// Blocks rm -rf /, git reset --hard, git clean -fd, and similar
-// destructive commands. Exit code 2 = block, 0 = allow.
-//
-// Build: go build -o destructive-guard destructive_guard.go
-// Usage in settings.json:
-//   {"type": "command", "command": "/path/to/destructive-guard"}
-package main
-
-import (
-	"encoding/json"
-	"fmt"
-	"io"
-	"os"
-	"regexp"
-	"strings"
-)
-
-type HookInput struct {
-	ToolInput struct {
-		Command string `json:"command"`
-	} `json:"tool_input"`
-}
-
-var dangerousPatterns = []*regexp.Regexp{
-	regexp.MustCompile(`\brm\s+.*-rf\s+(/|~/?\s*$|\.\./)`),
-	regexp.MustCompile(`\bgit\s+reset\s+--hard`),
-	regexp.MustCompile(`\bgit\s+clean\s+-[a-zA-Z]*f`),
-	regexp.MustCompile(`\bgit\s+checkout\s+--force`),
-	regexp.MustCompile(`\bchmod\s+(-R\s+)?777\s+/`),
-	regexp.MustCompile(`\bfind\s+/\s+-delete`),
-	regexp.MustCompile(`Remove-Item.*-Recurse.*-Force`),
-	regexp.MustCompile(`--no-preserve-root`),
-	regexp.MustCompile(`\bsudo\s+mkfs\b`),
-}
-
-func main() {
-	data, err := io.ReadAll(os.Stdin)
-	if err != nil {
-		os.Exit(0) // Don't block on read error
-	}
-
-	var input HookInput
-	if err := json.Unmarshal(data, &input); err != nil {
-		os.Exit(0) // Don't block on parse error
-	}
-
-	cmd := input.ToolInput.Command
-	if cmd == "" {
-		os.Exit(0)
-	}
-
-	// Skip if command is in an echo/printf context
-	lower := strings.ToLower(cmd)
-	if strings.HasPrefix(strings.TrimSpace(lower), "echo ") ||
-		strings.HasPrefix(strings.TrimSpace(lower), "printf ") {
-		os.Exit(0)
-	}
-
-	for _, pattern := range dangerousPatterns {
-		if pattern.MatchString(cmd) {
-			fmt.Fprintf(os.Stderr, "BLOCKED: Dangerous command detected\nCommand: %s\n", cmd)
-			os.Exit(2)
-		}
-	}
-
-	os.Exit(0)
-}

package/examples/rust/destructive_guard.rs

@@ -1,72 +0,0 @@
-// destructive_guard.rs — Claude Code PreToolUse hook in Rust
-//
-// Blocks rm -rf /, git reset --hard, git clean -fd, and similar
-// destructive commands. Exit code 2 = block, 0 = allow.
-//
-// Build: rustc destructive_guard.rs -o destructive-guard
-// Usage: {"type": "command", "command": "/path/to/destructive-guard"}
-
-use std::io::{self, Read};
-use std::process;
-
-fn main() {
-    let mut input = String::new();
-    if io::stdin().read_to_string(&mut input).is_err() {
-        process::exit(0);
-    }
-
-    // Simple JSON parsing without serde (zero dependencies)
-    let cmd = extract_command(&input);
-    if cmd.is_empty() {
-        process::exit(0);
-    }
-
-    // Skip echo/printf context
-    let trimmed = cmd.trim_start().to_lowercase();
-    if trimmed.starts_with("echo ") || trimmed.starts_with("printf ") {
-        process::exit(0);
-    }
-
-    let patterns: &[&str] = &[
-        "rm -rf /",
-        "rm -rf ~/",
-        "rm -rf ../",
-        "rm -rf .",
-        "git reset --hard",
-        "git clean -f",
-        "git checkout --force",
-        "chmod 777 /",
-        "find / -delete",
-        "--no-preserve-root",
-        "sudo mkfs",
-    ];
-
-    for pattern in patterns {
-        if cmd.to_lowercase().contains(&pattern.to_lowercase()) {
-            eprintln!("BLOCKED: Dangerous command detected");
-            eprintln!("Command: {}", cmd);
-            process::exit(2);
-        }
-    }
-
-    process::exit(0);
-}
-
-fn extract_command(json: &str) -> String {
-    // Extract .tool_input.command from JSON without a parser
-    if let Some(pos) = json.find("\"command\"") {
-        let rest = &json[pos + 9..];
-        if let Some(start) = rest.find('"') {
-            let value_start = start + 1;
-            let mut end = value_start;
-            let bytes = rest.as_bytes();
-            while end < bytes.len() {
-                if bytes[end] == b'"' && (end == 0 || bytes[end - 1] != b'\\') {
-                    return rest[value_start..end].replace("\\\"", "\"").replace("\\\\", "\\");
-                }
-                end += 1;
-            }
-        }
-    }
-    String::new()
-}