cc-safe-setup 2.0.5 → 2.0.7

package/README.md

@@ -159,11 +159,13 @@ Or browse all available examples in [`examples/`](examples/):
 - **env-var-check.sh** — Block hardcoded API keys (sk-, ghp_, glpat-) in export commands
 - **timeout-guard.sh** — Warn before long-running commands (npm start, rails s, docker-compose up)
 - **branch-name-check.sh** — Warn on non-conventional branch names (feature/, fix/, etc.)
+- **todo-check.sh** — Warn when committing files with TODO/FIXME/HACK markers
+- **path-traversal-guard.sh** — Block Edit/Write with `../../` path traversal and system directories
 
 ## Learn More
 
 - [Official Hooks Reference](https://code.claude.com/docs/en/hooks) — Claude Code hooks documentation
-- [Hooks Cookbook](https://github.com/yurukusa/claude-code-hooks/blob/main/COOKBOOK.md) — 17 ready-to-use recipes from real GitHub Issues
+- [Hooks Cookbook](https://github.com/yurukusa/claude-code-hooks/blob/main/COOKBOOK.md) — 18 ready-to-use recipes from real GitHub Issues
 - [Japanese guide (Qiita)](https://qiita.com/yurukusa/items/a9714b33f5d974e8f1e8) — この記事の日本語解説
 - [The incident that inspired this tool](https://github.com/anthropics/claude-code/issues/36339) — NTFS junction rm -rf
 

package/examples/README.md

@@ -1,6 +1,6 @@
 # Example Hooks
 
-19 hooks beyond the 8 built-in ones, organized by category.
+25 hooks beyond the 8 built-in ones, organized by category.
 
 ## Quick Start
 
@@ -22,6 +22,7 @@ npx cc-safe-setup --examples
 | **env-var-check.sh** | Block hardcoded API keys in export commands | |
 | **git-config-guard.sh** | Block git config --global | [#37201](https://github.com/anthropics/claude-code/issues/37201) |
 | **network-guard.sh** | Warn on suspicious network commands | [#37420](https://github.com/anthropics/claude-code/issues/37420) |
+| **path-traversal-guard.sh** | Block Edit/Write with ../ path traversal | |
 | **protect-dotfiles.sh** | Block changes to ~/.bashrc, ~/.aws/, ~/.ssh/ | [#37478](https://github.com/anthropics/claude-code/issues/37478) |
 | **scope-guard.sh** | Block operations outside project directory | [#36233](https://github.com/anthropics/claude-code/issues/36233) |
 | **test-before-push.sh** | Block git push without tests | [#36970](https://github.com/anthropics/claude-code/issues/36970) |

package/examples/block-database-wipe.sh

@@ -61,6 +61,12 @@ if echo "$COMMAND" | grep -qiE 'DROP\s+(DATABASE|TABLE|SCHEMA)|TRUNCATE\s+TABLE|
     exit 2
 fi
 
+# Symfony/Doctrine destructive commands
+if echo "$COMMAND" | grep -qiE 'doctrine:(fixtures:load|schema:drop|database:drop)' && ! echo "$COMMAND" | grep -qE '\-\-append'; then
+    echo "BLOCKED: Destructive Doctrine command (use --append for fixtures:load)" >&2
+    exit 2
+fi
+
 # Prisma destructive commands
 if echo "$COMMAND" | grep -qiE 'prisma\s+migrate\s+reset|prisma\s+db\s+push\s+--force-reset'; then
     echo "BLOCKED: Destructive Prisma database command" >&2

package/examples/path-traversal-guard.sh

@@ -0,0 +1,44 @@
+#!/bin/bash
+# path-traversal-guard.sh — Block path traversal in Edit/Write operations
+#
+# Solves: Claude writing files using ../../../ to escape the project
+# directory via Edit/Write tools (not caught by scope-guard which
+# only watches Bash commands).
+#
+# Usage: Add to settings.json as a PreToolUse hook
+#
+# {
+#   "hooks": {
+#     "PreToolUse": [{
+#       "matcher": "Edit|Write",
+#       "hooks": [{ "type": "command", "command": "~/.claude/hooks/path-traversal-guard.sh" }]
+#     }]
+#   }
+# }
+
+INPUT=$(cat)
+TOOL=$(echo "$INPUT" | jq -r '.tool_name // empty' 2>/dev/null)
+FILE=$(echo "$INPUT" | jq -r '.tool_input.file_path // empty' 2>/dev/null)
+
+[[ "$TOOL" != "Edit" && "$TOOL" != "Write" ]] && exit 0
+[[ -z "$FILE" ]] && exit 0
+
+# Block path traversal patterns
+if echo "$FILE" | grep -qE '\.\./\.\./|/\.\.\./'; then
+    echo "BLOCKED: Path traversal detected: $FILE" >&2
+    exit 2
+fi
+
+# Block writing to system directories
+if echo "$FILE" | grep -qE '^/(etc|usr|bin|sbin|var|boot|proc|sys)/'; then
+    echo "BLOCKED: Cannot write to system directory: $FILE" >&2
+    exit 2
+fi
+
+# Block writing to other users' home directories
+if echo "$FILE" | grep -qE '^/home/[^/]+/' && ! echo "$FILE" | grep -qE "^$HOME/"; then
+    echo "BLOCKED: Cannot write to another user's directory: $FILE" >&2
+    exit 2
+fi
+
+exit 0

package/index.mjs

@@ -79,7 +79,7 @@ if (HELP) {
     npx cc-safe-setup --verify     Test each hook with sample inputs
     npx cc-safe-setup --dry-run    Preview without installing
     npx cc-safe-setup --uninstall  Remove all installed hooks
-    npx cc-safe-setup --examples   List 19 example hooks (5 categories)
+    npx cc-safe-setup --examples   List 25 example hooks (5 categories)
     npx cc-safe-setup --install-example <name>  Install a specific example
     npx cc-safe-setup --help       Show this help
 
@@ -185,8 +185,8 @@ function status() {
     'auto-approve-git-read.sh', 'auto-approve-python.sh', 'auto-approve-ssh.sh',
     'auto-checkpoint.sh', 'auto-snapshot.sh', 'block-database-wipe.sh', 'branch-name-check.sh', 'commit-message-check.sh', 'env-var-check.sh',
     'deploy-guard.sh', 'edit-guard.sh', 'enforce-tests.sh', 'git-config-guard.sh',
-    'large-file-guard.sh', 'network-guard.sh', 'notify-waiting.sh',
-    'protect-dotfiles.sh', 'scope-guard.sh', 'test-before-push.sh', 'timeout-guard.sh',
+    'large-file-guard.sh', 'network-guard.sh', 'notify-waiting.sh', 'path-traversal-guard.sh',
+    'protect-dotfiles.sh', 'scope-guard.sh', 'test-before-push.sh', 'timeout-guard.sh', 'todo-check.sh',
   ];
   const installedExamples = exampleFiles.filter(f => existsSync(join(HOOKS_DIR, f)));
   if (installedExamples.length > 0) {
@@ -283,6 +283,7 @@ function examples() {
       'deploy-guard.sh': 'Block deploy when uncommitted changes exist',
       'env-var-check.sh': 'Block hardcoded API keys in export commands',
       'network-guard.sh': 'Warn on suspicious network commands (data exfiltration)',
+      'path-traversal-guard.sh': 'Block Edit/Write with path traversal (../../)',
       'protect-dotfiles.sh': 'Block modifications to ~/.bashrc, ~/.aws/, ~/.ssh/',
       'scope-guard.sh': 'Block file operations outside project directory',
       'test-before-push.sh': 'Block git push when tests have not passed',
@@ -315,7 +316,7 @@ function examples() {
 
   console.log();
   console.log(c.bold + '  cc-safe-setup --examples' + c.reset);
-  console.log(c.dim + '  24 hooks beyond the 8 built-in ones' + c.reset);
+  console.log(c.dim + '  25 hooks beyond the 8 built-in ones' + c.reset);
   console.log();
 
   for (const [cat, hooks] of Object.entries(CATEGORIES)) {

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "cc-safe-setup",
-  "version": "2.0.5",
-  "description": "One command to make Claude Code safe for autonomous operation. 8 built-in hooks + 24 installable examples. Destructive blocker, branch guard, database wipe protection, dotfile guard, and more.",
+  "version": "2.0.7",
+  "description": "One command to make Claude Code safe for autonomous operation. 8 built-in hooks + 25 installable examples. Destructive blocker, branch guard, database wipe protection, dotfile guard, and more.",
   "main": "index.mjs",
   "bin": {
     "cc-safe-setup": "index.mjs"