cc-safe-setup 2.0.1 → 2.0.3

package/README.md

@@ -155,11 +155,13 @@ Or browse all available examples in [`examples/`](examples/):
 - **network-guard.sh** — Warn on suspicious network commands sending file contents ([#37420](https://github.com/anthropics/claude-code/issues/37420))
 - **test-before-push.sh** — Block `git push` when tests haven't been run ([#36970](https://github.com/anthropics/claude-code/issues/36970))
 - **large-file-guard.sh** — Warn when Write tool creates files over 500KB
+- **commit-message-check.sh** — Warn on non-conventional commit messages (feat:, fix:, docs:, etc.)
+- **env-var-check.sh** — Block hardcoded API keys (sk-, ghp_, glpat-) in export commands
 
 ## Learn More
 
 - [Official Hooks Reference](https://code.claude.com/docs/en/hooks) — Claude Code hooks documentation
-- [Hooks Cookbook](https://github.com/yurukusa/claude-code-hooks/blob/main/COOKBOOK.md) — 16 ready-to-use recipes from real GitHub Issues
+- [Hooks Cookbook](https://github.com/yurukusa/claude-code-hooks/blob/main/COOKBOOK.md) — 17 ready-to-use recipes from real GitHub Issues
 - [Japanese guide (Qiita)](https://qiita.com/yurukusa/items/a9714b33f5d974e8f1e8) — この記事の日本語解説
 - [The incident that inspired this tool](https://github.com/anthropics/claude-code/issues/36339) — NTFS junction rm -rf
 

package/examples/README.md

@@ -19,11 +19,13 @@ npx cc-safe-setup --examples
 | **allowlist.sh** | Block everything not explicitly approved | [#37471](https://github.com/anthropics/claude-code/issues/37471) |
 | **block-database-wipe.sh** | Block migrate:fresh, DROP DATABASE, Prisma reset | [#37405](https://github.com/anthropics/claude-code/issues/37405) |
 | **deploy-guard.sh** | Block deploy with uncommitted changes | [#37314](https://github.com/anthropics/claude-code/issues/37314) |
+| **env-var-check.sh** | Block hardcoded API keys in export commands | |
 | **git-config-guard.sh** | Block git config --global | [#37201](https://github.com/anthropics/claude-code/issues/37201) |
 | **network-guard.sh** | Warn on suspicious network commands | [#37420](https://github.com/anthropics/claude-code/issues/37420) |
 | **protect-dotfiles.sh** | Block changes to ~/.bashrc, ~/.aws/, ~/.ssh/ | [#37478](https://github.com/anthropics/claude-code/issues/37478) |
 | **scope-guard.sh** | Block operations outside project directory | [#36233](https://github.com/anthropics/claude-code/issues/36233) |
 | **test-before-push.sh** | Block git push without tests | [#36970](https://github.com/anthropics/claude-code/issues/36970) |
+| **timeout-guard.sh** | Warn before long-running commands (servers, watchers) | |
 
 ## Auto-Approve
 

package/examples/env-var-check.sh

@@ -0,0 +1,38 @@
+#!/bin/bash
+# env-var-check.sh — Warn when setting environment variables with secrets
+#
+# Solves: Claude hardcoding API keys or passwords into export commands
+# that end up in shell history and process environment.
+#
+# Usage: Add to settings.json as a PreToolUse hook
+#
+# {
+#   "hooks": {
+#     "PreToolUse": [{
+#       "matcher": "Bash",
+#       "hooks": [{ "type": "command", "command": "~/.claude/hooks/env-var-check.sh" }]
+#     }]
+#   }
+# }
+
+INPUT=$(cat)
+COMMAND=$(echo "$INPUT" | jq -r '.tool_input.command // empty' 2>/dev/null)
+
+[[ -z "$COMMAND" ]] && exit 0
+
+# Check for export/set with sensitive-looking values
+if echo "$COMMAND" | grep -qiE 'export\s+(API_KEY|SECRET|TOKEN|PASSWORD|CREDENTIALS|AUTH)='; then
+    echo "" >&2
+    echo "⚠ SECURITY: Setting sensitive environment variable in shell" >&2
+    echo "This will appear in shell history. Use .env files or secret managers instead." >&2
+    echo "Command: $COMMAND" >&2
+fi
+
+# Check for hardcoded key patterns (sk-, pk-, ghp_, etc.)
+if echo "$COMMAND" | grep -qE 'export\s+\w+=.*(sk-[a-zA-Z0-9]{20,}|ghp_[a-zA-Z0-9]{36}|gho_[a-zA-Z0-9]{36}|glpat-[a-zA-Z0-9]{20,})'; then
+    echo "BLOCKED: Hardcoded API key detected in export command" >&2
+    echo "Use: export VAR=\$(cat ~/.credentials/key)" >&2
+    exit 2
+fi
+
+exit 0

package/examples/timeout-guard.sh

@@ -0,0 +1,63 @@
+#!/bin/bash
+# timeout-guard.sh — Warn before long-running commands
+#
+# Solves: Claude running commands that hang indefinitely
+# (e.g., servers, watchers, interactive tools) without
+# using run_in_background.
+#
+# Usage: Add to settings.json as a PreToolUse hook
+#
+# {
+#   "hooks": {
+#     "PreToolUse": [{
+#       "matcher": "Bash",
+#       "hooks": [{ "type": "command", "command": "~/.claude/hooks/timeout-guard.sh" }]
+#     }]
+#   }
+# }
+
+INPUT=$(cat)
+COMMAND=$(echo "$INPUT" | jq -r '.tool_input.command // empty' 2>/dev/null)
+
+[[ -z "$COMMAND" ]] && exit 0
+
+# Detect commands that typically run forever
+FOREVER_PATTERNS=(
+    "npm start"
+    "npm run dev"
+    "npm run serve"
+    "yarn start"
+    "yarn dev"
+    "python -m http.server"
+    "python manage.py runserver"
+    "flask run"
+    "uvicorn"
+    "nodemon"
+    "webpack serve"
+    "vite"
+    "next dev"
+    "ng serve"
+    "rails server"
+    "rails s"
+    "php artisan serve"
+    "cargo watch"
+    "go run.*server"
+    "docker-compose up$"
+    "tail -f"
+    "watch "
+    "inotifywait"
+)
+
+for pattern in "${FOREVER_PATTERNS[@]}"; do
+    if echo "$COMMAND" | grep -qiE "$pattern"; then
+        RUN_BG=$(echo "$INPUT" | jq -r '.tool_input.run_in_background // false' 2>/dev/null)
+        if [[ "$RUN_BG" != "true" ]]; then
+            echo "" >&2
+            echo "WARNING: This command may run indefinitely: $pattern" >&2
+            echo "Consider using run_in_background: true" >&2
+        fi
+        break
+    fi
+done
+
+exit 0

package/index.mjs

@@ -183,7 +183,7 @@ function status() {
   const exampleFiles = [
     'allowlist.sh', 'auto-approve-build.sh', 'auto-approve-docker.sh',
     'auto-approve-git-read.sh', 'auto-approve-python.sh', 'auto-approve-ssh.sh',
-    'auto-checkpoint.sh', 'auto-snapshot.sh', 'block-database-wipe.sh',
+    'auto-checkpoint.sh', 'auto-snapshot.sh', 'block-database-wipe.sh', 'commit-message-check.sh', 'env-var-check.sh',
     'deploy-guard.sh', 'edit-guard.sh', 'enforce-tests.sh', 'git-config-guard.sh',
     'large-file-guard.sh', 'network-guard.sh', 'notify-waiting.sh',
     'protect-dotfiles.sh', 'scope-guard.sh', 'test-before-push.sh',
@@ -281,10 +281,12 @@ function examples() {
       'allowlist.sh': 'Block everything not in allowlist (inverse permission model)',
       'block-database-wipe.sh': 'Block destructive DB commands (migrate:fresh, DROP DATABASE, Prisma)',
       'deploy-guard.sh': 'Block deploy when uncommitted changes exist',
+      'env-var-check.sh': 'Block hardcoded API keys in export commands',
       'network-guard.sh': 'Warn on suspicious network commands (data exfiltration)',
       'protect-dotfiles.sh': 'Block modifications to ~/.bashrc, ~/.aws/, ~/.ssh/',
       'scope-guard.sh': 'Block file operations outside project directory',
       'test-before-push.sh': 'Block git push when tests have not passed',
+      'timeout-guard.sh': 'Warn before long-running commands (servers, watchers)',
       'git-config-guard.sh': 'Block git config --global modifications',
     },
     'Auto-Approve': {
@@ -311,7 +313,7 @@ function examples() {
 
   console.log();
   console.log(c.bold + '  cc-safe-setup --examples' + c.reset);
-  console.log(c.dim + '  19 hooks beyond the 8 built-in ones' + c.reset);
+  console.log(c.dim + '  22 hooks beyond the 8 built-in ones' + c.reset);
   console.log();
 
   for (const [cat, hooks] of Object.entries(CATEGORIES)) {

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "cc-safe-setup",
-  "version": "2.0.1",
-  "description": "One command to make Claude Code safe for autonomous operation. 8 built-in hooks + 20 installable examples. Destructive blocker, branch guard, database wipe protection, dotfile guard, and more.",
+  "version": "2.0.3",
+  "description": "One command to make Claude Code safe for autonomous operation. 8 built-in hooks + 22 installable examples. Destructive blocker, branch guard, database wipe protection, dotfile guard, and more.",
   "main": "index.mjs",
   "bin": {
     "cc-safe-setup": "index.mjs"