cc-safe-setup 11.8.0 → 12.1.0

package/README.md

@@ -6,7 +6,7 @@
 
 **One command to make Claude Code safe for autonomous operation.** [日本語](docs/README.ja.md)
 
-8 built-in + 104 examples = **118 hooks**. 41 CLI commands. 561 tests. 5 languages. [**Hub**](https://yurukusa.github.io/cc-safe-setup/hub.html) · [Cheat Sheet](https://yurukusa.github.io/cc-safe-setup/hooks-cheatsheet.html) · [Builder](https://yurukusa.github.io/cc-safe-setup/builder.html) · [FAQ](https://yurukusa.github.io/cc-safe-setup/faq.html) · [Examples](https://yurukusa.github.io/cc-safe-setup/by-example.html) · [Matrix](https://yurukusa.github.io/cc-safe-setup/matrix.html) · [Playground](https://yurukusa.github.io/cc-hook-registry/playground.html)
+8 built-in + 104 examples = **118 hooks**. 42 CLI commands. 561 tests. 5 languages. [**Hub**](https://yurukusa.github.io/cc-safe-setup/hub.html) · [Cheat Sheet](https://yurukusa.github.io/cc-safe-setup/hooks-cheatsheet.html) · [Builder](https://yurukusa.github.io/cc-safe-setup/builder.html) · [FAQ](https://yurukusa.github.io/cc-safe-setup/faq.html) · [Examples](https://yurukusa.github.io/cc-safe-setup/by-example.html) · [Matrix](https://yurukusa.github.io/cc-safe-setup/matrix.html) · [Playground](https://yurukusa.github.io/cc-hook-registry/playground.html)
 
 ```bash
 npx cc-safe-setup
@@ -109,6 +109,21 @@ Each hook exists because a real incident happened without it.
 | `--diff-hooks [path]` | Compare hook configurations |
 | `--help` | Show help |
 
+## Quick Start by Scenario
+
+| I want to... | Command |
+|---|---|
+| Make Claude Code safe right now | `npx cc-safe-setup --shield` |
+| Stop permission prompt spam | `npx cc-safe-setup --install-example auto-approve-readonly` |
+| Enforce a rule instantly | `npx cc-safe-setup --guard "never delete production data"` |
+| See what risks my project has | `npx cc-safe-setup --suggest` |
+| Convert CLAUDE.md rules to hooks | `npx cc-safe-setup --from-claudemd` |
+| Share hooks with my team | `npx cc-safe-setup --team && git add .claude/` |
+| Choose a safety level | `npx cc-safe-setup --profile strict` |
+| See what Claude blocked today | `npx cc-safe-setup --replay` |
+| Know why a hook exists | `npx cc-safe-setup --why destructive-guard` |
+| Migrate from Cursor/Windsurf | [Migration Guide](https://yurukusa.github.io/cc-safe-setup/migration-guide.html) |
+
 ## How It Works
 
 1. Writes hook scripts to `~/.claude/hooks/`

package/examples/git-remote-guard.sh

@@ -0,0 +1,32 @@
+#!/bin/bash
+# ================================================================
+# git-remote-guard.sh — Block push/fetch to unknown git remotes
+# ================================================================
+# PURPOSE:
+#   Claude might add a new git remote and push code to it.
+#   This hook warns when git push/fetch targets a remote that
+#   wasn't in the original repo configuration.
+#
+# TRIGGER: PreToolUse  MATCHER: "Bash"
+# ================================================================
+
+COMMAND=$(cat | jq -r '.tool_input.command // empty' 2>/dev/null)
+[ -z "$COMMAND" ] && exit 0
+
+# Check for git remote add
+if echo "$COMMAND" | grep -qE '\bgit\s+remote\s+add\b'; then
+    echo "WARNING: Adding a new git remote." >&2
+    echo "Command: $COMMAND" >&2
+    echo "Verify this is a trusted repository." >&2
+fi
+
+# Check for push to non-origin remote
+if echo "$COMMAND" | grep -qE '\bgit\s+push\s+(?!origin\b)\w'; then
+    REMOTE=$(echo "$COMMAND" | grep -oE 'git\s+push\s+(\S+)' | awk '{print $3}')
+    if [ -n "$REMOTE" ] && [ "$REMOTE" != "origin" ]; then
+        echo "WARNING: Pushing to non-origin remote: $REMOTE" >&2
+        echo "Verify this remote is trusted." >&2
+    fi
+fi
+
+exit 0

package/examples/subagent-scope-guard.sh

@@ -0,0 +1,33 @@
+#!/bin/bash
+# ================================================================
+# subagent-scope-guard.sh — Limit subagent file access scope
+# ================================================================
+# PURPOSE:
+#   In multi-agent setups, subagents should only modify files
+#   within their assigned directory. This hook reads a scope
+#   file (.claude/agent-scope.txt) and blocks writes outside it.
+#
+# TRIGGER: PreToolUse  MATCHER: "Edit|Write"
+#
+# Setup: echo "src/auth/" > .claude/agent-scope.txt
+# ================================================================
+
+INPUT=$(cat)
+FILE=$(echo "$INPUT" | jq -r '.tool_input.file_path // empty' 2>/dev/null)
+[ -z "$FILE" ] && exit 0
+
+SCOPE_FILE=".claude/agent-scope.txt"
+[ -f "$SCOPE_FILE" ] || exit 0
+
+SCOPE=$(cat "$SCOPE_FILE" | head -1 | tr -d '\n')
+[ -z "$SCOPE" ] && exit 0
+
+# Check if file is within scope
+case "$FILE" in
+    ${SCOPE}*) exit 0 ;;  # Within scope
+    *)
+        echo "BLOCKED: File $FILE is outside agent scope ($SCOPE)." >&2
+        echo "This agent should only modify files under $SCOPE" >&2
+        exit 2
+        ;;
+esac

package/index.mjs

@@ -111,6 +111,8 @@ const SAVE_PROFILE = SAVE_PROFILE_IDX !== -1 ? process.argv[SAVE_PROFILE_IDX + 1
 const CREATE_IDX = process.argv.findIndex(a => a === '--create');
 const CREATE_DESC = CREATE_IDX !== -1 ? process.argv.slice(CREATE_IDX + 1).join(' ') : null;
 const SUGGEST = process.argv.includes('--suggest');
+const TEST_HOOK_IDX = process.argv.findIndex(a => a === '--test-hook');
+const TEST_HOOK = TEST_HOOK_IDX !== -1 ? process.argv[TEST_HOOK_IDX + 1] : null;
 const WHY_IDX = process.argv.findIndex(a => a === '--why');
 const WHY_HOOK = WHY_IDX !== -1 ? process.argv[WHY_IDX + 1] : null;
 
@@ -144,6 +146,7 @@ if (HELP) {
     npx cc-safe-setup --doctor     Diagnose why hooks aren't working
     npx cc-safe-setup --watch      Live dashboard of blocked commands
     npx cc-safe-setup --create "<desc>"  Generate a custom hook from description
+    npx cc-safe-setup --test-hook <name>  Test a specific hook with sample inputs
     npx cc-safe-setup --save-profile <name>  Save current hooks as a named profile
     npx cc-safe-setup --suggest        Analyze project and predict risks → suggest hooks
     npx cc-safe-setup --why <hook>     Why this hook exists (real incident + issue link)
@@ -931,6 +934,81 @@ async function fullSetup() {
   console.log();
 }
 
+async function testHook(hookName) {
+  const { execSync } = await import('child_process');
+  console.log();
+
+  if (!hookName) {
+    console.log(c.bold + '  cc-safe-setup --test-hook <name>' + c.reset);
+    console.log(c.dim + '  Test any hook with sample inputs.' + c.reset);
+    console.log();
+    console.log('  Example: npx cc-safe-setup --test-hook destructive-guard');
+    return;
+  }
+
+  const name = hookName.replace('.sh', '');
+  // Find the hook
+  let hookPath = join(HOOKS_DIR, `${name}.sh`);
+  if (!existsSync(hookPath)) hookPath = join(__dirname, 'examples', `${name}.sh`);
+  if (!existsSync(hookPath)) {
+    console.log(c.red + `  Hook "${name}" not found.` + c.reset);
+    return;
+  }
+
+  console.log(c.bold + `  Testing: ${name}` + c.reset);
+  console.log(c.dim + `  File: ${hookPath}` + c.reset);
+  console.log();
+
+  // Sample inputs per hook type
+  const SAMPLES = {
+    'should-block': [
+      { desc: 'dangerous rm', input: '{"tool_input":{"command":"rm -rf /"}}' },
+      { desc: 'git reset hard', input: '{"tool_input":{"command":"git reset --hard"}}' },
+      { desc: 'force push', input: '{"tool_input":{"command":"git push origin main --force"}}' },
+      { desc: 'git add .env', input: '{"tool_input":{"command":"git add .env"}}' },
+      { desc: 'sudo command', input: '{"tool_input":{"command":"sudo rm -rf /home"}}' },
+      { desc: 'drop database', input: '{"tool_input":{"command":"DROP DATABASE production"}}' },
+    ],
+    'should-allow': [
+      { desc: 'safe ls', input: '{"tool_input":{"command":"ls -la"}}' },
+      { desc: 'git status', input: '{"tool_input":{"command":"git status"}}' },
+      { desc: 'npm test', input: '{"tool_input":{"command":"npm test"}}' },
+      { desc: 'cat file', input: '{"tool_input":{"command":"cat README.md"}}' },
+      { desc: 'empty input', input: '{}' },
+    ],
+  };
+
+  let pass = 0, total = 0;
+
+  for (const [category, samples] of Object.entries(SAMPLES)) {
+    console.log(c.dim + `  ${category}:` + c.reset);
+    for (const sample of samples) {
+      total++;
+      try {
+        execSync(`echo '${sample.input}' | bash "${hookPath}"`, { stdio: 'pipe', timeout: 5000 });
+        // Exit 0 = allowed
+        const icon = category === 'should-allow' ? c.green + '✓' : c.yellow + '·';
+        console.log(`    ${icon}${c.reset} ${sample.desc} → allowed (exit 0)`);
+        if (category === 'should-allow') pass++;
+      } catch (e) {
+        const code = e.status;
+        if (code === 2) {
+          // Blocked
+          const icon = category === 'should-block' ? c.green + '✓' : c.red + '✗';
+          console.log(`    ${icon}${c.reset} ${sample.desc} → ${c.red}BLOCKED${c.reset} (exit 2)`);
+          if (category === 'should-block') pass++;
+        } else {
+          console.log(`    ${c.yellow}?${c.reset} ${sample.desc} → exit ${code}`);
+        }
+      }
+    }
+  }
+
+  console.log();
+  console.log(`  ${pass}/${total} samples matched expected behavior`);
+  console.log();
+}
+
 async function saveProfile(name) {
   const { readdirSync } = await import('fs');
   const profilesDir = join(HOME, '.claude', 'profiles');
@@ -4340,6 +4418,7 @@ async function main() {
   if (FULL) return fullSetup();
   if (DOCTOR) return doctor();
   if (WATCH) return watch();
+  if (TEST_HOOK_IDX !== -1) return testHook(TEST_HOOK);
   if (SAVE_PROFILE_IDX !== -1) return saveProfile(SAVE_PROFILE);
   if (SUGGEST) return suggest();
   if (WHY_IDX !== -1) return why(WHY_HOOK);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cc-safe-setup",
-  "version": "11.8.0",
+  "version": "12.1.0",
   "description": "One command to make Claude Code safe. 59 hooks (8 built-in + 51 examples). 26 CLI commands: dashboard, create, audit, lint, diff, migrate, compare, generate-ci. 284 tests.",
   "main": "index.mjs",
   "bin": {