cc-safe-setup 7.2.0 → 7.4.0

package/examples/disk-space-guard.sh

@@ -0,0 +1,28 @@
+#!/bin/bash
+# ================================================================
+# disk-space-guard.sh — Warn when disk space is running low
+# ================================================================
+# PURPOSE:
+#   Long Claude Code sessions can generate large files, logs, and
+#   build artifacts. This hook warns before writes when disk space
+#   is below a threshold.
+#
+# TRIGGER: PreToolUse  MATCHER: "Write|Bash"
+#
+# CONFIG:
+#   CC_DISK_WARN_PCT=90  (warn at this percentage used)
+# ================================================================
+
+WARN_PCT="${CC_DISK_WARN_PCT:-90}"
+
+# Check disk usage (percentage used on the working directory's partition)
+USAGE=$(df --output=pcent . 2>/dev/null | tail -1 | tr -d ' %')
+[ -z "$USAGE" ] && exit 0
+
+if [ "$USAGE" -ge "$WARN_PCT" ]; then
+    AVAIL=$(df -h --output=avail . 2>/dev/null | tail -1 | tr -d ' ')
+    echo "WARNING: Disk usage is ${USAGE}% (${AVAIL} available)." >&2
+    echo "Consider cleaning up build artifacts, logs, or /tmp files." >&2
+fi
+
+exit 0

package/examples/memory-write-guard.sh

@@ -0,0 +1,40 @@
+#!/bin/bash
+# ================================================================
+# memory-write-guard.sh — Log writes to ~/.claude/ directory
+# ================================================================
+# PURPOSE:
+#   Claude auto-writes to ~/.claude/projects/*/memory/ without
+#   user visibility. This hook logs all writes to ~/.claude/ paths
+#   so users know what's being stored.
+#
+# TRIGGER: PreToolUse  MATCHER: "Write|Edit"
+#
+# Born from: https://github.com/anthropics/claude-code/issues/38040
+#   "No way to enforce approval on all file modifications"
+# ================================================================
+
+INPUT=$(cat)
+FILE=$(echo "$INPUT" | jq -r '.tool_input.file_path // empty' 2>/dev/null)
+[ -z "$FILE" ] && exit 0
+
+# Check if targeting ~/.claude/
+case "$FILE" in
+    */.claude/*|~/.claude/*)
+        # Log the write
+        LOG="$HOME/.claude/memory-writes.log"
+        echo "[$(date -Iseconds)] Write to: $FILE" >> "$LOG" 2>/dev/null
+
+        # Only warn (don't block) — memory writes are usually intentional
+        echo "NOTE: Writing to Claude config directory: $FILE" >&2
+
+        # Block writes to settings.json unless explicitly allowed
+        case "$FILE" in
+            */settings.json|*/settings.local.json)
+                echo "WARNING: Modifying Claude Code settings file." >&2
+                echo "Verify this change is intentional." >&2
+                ;;
+        esac
+        ;;
+esac
+
+exit 0

package/examples/output-length-guard.sh

@@ -0,0 +1,14 @@
+#!/bin/bash
+# output-length-guard.sh — Warn when tool output is very large
+# TRIGGER: PostToolUse  MATCHER: ""
+# Checks tool output size and warns when it's consuming too much context
+INPUT=$(cat)
+OUTPUT=$(echo "$INPUT" | jq -r '.tool_result // empty' 2>/dev/null)
+if [ -n "$OUTPUT" ]; then
+    LEN=${#OUTPUT}
+    if [ "$LEN" -gt 50000 ]; then
+        echo "WARNING: Tool output is ${LEN} chars. Large outputs consume context rapidly." >&2
+        echo "Consider using head/tail/grep to limit output, or redirect to a file." >&2
+    fi
+fi
+exit 0

package/examples/overwrite-guard.sh

@@ -0,0 +1,32 @@
+#!/bin/bash
+# ================================================================
+# overwrite-guard.sh — Warn before overwriting existing files
+# ================================================================
+# PURPOSE:
+#   Claude's Write tool can silently overwrite files without
+#   confirmation. This hook warns when a Write targets a file
+#   that already exists, giving visibility into potential data loss.
+#
+# TRIGGER: PreToolUse  MATCHER: "Write"
+#
+# Born from: https://github.com/anthropics/claude-code/issues/37595
+#   "/export overwrites existing files without warning"
+# ================================================================
+
+INPUT=$(cat)
+FILE=$(echo "$INPUT" | jq -r '.tool_input.file_path // empty' 2>/dev/null)
+[ -z "$FILE" ] && exit 0
+
+# Expand ~ to home directory
+FILE="${FILE/#\~/$HOME}"
+
+if [ -f "$FILE" ]; then
+    SIZE=$(wc -c < "$FILE" 2>/dev/null || echo 0)
+    if [ "$SIZE" -gt 0 ]; then
+        LINES=$(wc -l < "$FILE" 2>/dev/null || echo 0)
+        echo "WARNING: Overwriting existing file: $FILE ($LINES lines, $SIZE bytes)" >&2
+        echo "Use Edit tool instead to make targeted changes." >&2
+    fi
+fi
+
+exit 0

package/examples/prompt-injection-guard.sh

@@ -0,0 +1,51 @@
+#!/bin/bash
+# ================================================================
+# prompt-injection-guard.sh — Detect prompt injection in tool output
+# ================================================================
+# PURPOSE:
+#   When Claude reads files or fetches web content, malicious
+#   instructions can be injected. This hook warns when tool output
+#   contains common prompt injection patterns.
+#
+# TRIGGER: PostToolUse  MATCHER: ""
+#
+# Born from: https://github.com/anthropics/claude-code/issues/38046
+#   "Prompt Injection in /insights output"
+# ================================================================
+
+INPUT=$(cat)
+OUTPUT=$(echo "$INPUT" | jq -r '.tool_result // empty' 2>/dev/null)
+[ -z "$OUTPUT" ] && exit 0
+
+# Check for common prompt injection patterns
+SUSPICIOUS=0
+
+# "Ignore previous instructions" pattern
+if echo "$OUTPUT" | grep -qiE 'ignore\s+(all\s+)?previous\s+instructions'; then
+    echo "WARNING: Possible prompt injection detected: 'ignore previous instructions'" >&2
+    SUSPICIOUS=1
+fi
+
+# "You are now" role reassignment
+if echo "$OUTPUT" | grep -qiE 'you\s+are\s+now\s+(a|an)\s+'; then
+    echo "WARNING: Possible prompt injection detected: role reassignment" >&2
+    SUSPICIOUS=1
+fi
+
+# "System prompt" manipulation
+if echo "$OUTPUT" | grep -qiE '(new|updated|override)\s+system\s+prompt'; then
+    echo "WARNING: Possible prompt injection detected: system prompt override" >&2
+    SUSPICIOUS=1
+fi
+
+# Hidden instructions in HTML comments or zero-width chars
+if echo "$OUTPUT" | grep -qP '<!--.*(?:execute|run|delete|remove).*-->'; then
+    echo "WARNING: Possible prompt injection in HTML comment" >&2
+    SUSPICIOUS=1
+fi
+
+if [ "$SUSPICIOUS" -eq 1 ]; then
+    echo "Review the output carefully before acting on it." >&2
+fi
+
+exit 0

package/examples/test-deletion-guard.sh

@@ -0,0 +1,48 @@
+#!/bin/bash
+# ================================================================
+# test-deletion-guard.sh — Block deletion of test assertions
+# ================================================================
+# PURPOSE:
+#   Claude sometimes deletes or comments out failing tests instead
+#   of fixing the underlying code. This hook detects when an Edit
+#   to a test file removes test assertions.
+#
+# TRIGGER: PreToolUse  MATCHER: "Edit"
+#
+# Born from: https://github.com/anthropics/claude-code/issues/38050
+#   "Claude skips/deletes tests instead of fixing them"
+# ================================================================
+
+INPUT=$(cat)
+FILE=$(echo "$INPUT" | jq -r '.tool_input.file_path // empty' 2>/dev/null)
+[ -z "$FILE" ] && exit 0
+
+# Only check test files
+case "$FILE" in
+    *test*|*spec*|*__tests__*|*_test.go|*_test.py|*Test.java|*Test.kt)
+        ;;
+    *)
+        exit 0
+        ;;
+esac
+
+OLD=$(echo "$INPUT" | jq -r '.tool_input.old_string // empty' 2>/dev/null)
+NEW=$(echo "$INPUT" | jq -r '.tool_input.new_string // empty' 2>/dev/null)
+[ -z "$OLD" ] && exit 0
+
+# Count test assertions in old vs new
+count_tests() {
+    echo "$1" | grep -cE '(it\(|test\(|describe\(|def test_|#\[test\]|@Test|assert|expect\(|should\b)' 2>/dev/null || echo 0
+}
+
+OLD_COUNT=$(count_tests "$OLD")
+NEW_COUNT=$(count_tests "$NEW")
+
+if [ "$OLD_COUNT" -gt 0 ] && [ "$NEW_COUNT" -lt "$OLD_COUNT" ]; then
+    REMOVED=$((OLD_COUNT - NEW_COUNT))
+    echo "WARNING: This edit removes $REMOVED test assertion(s) from $FILE." >&2
+    echo "If tests are failing, fix the code instead of deleting tests." >&2
+    echo "Old assertions: $OLD_COUNT → New assertions: $NEW_COUNT" >&2
+fi
+
+exit 0

package/examples/uncommitted-work-guard.sh

@@ -0,0 +1,45 @@
+#!/bin/bash
+# ================================================================
+# uncommitted-work-guard.sh — Block destructive git when dirty
+# ================================================================
+# PURPOSE:
+#   Claude sometimes runs git checkout --, git reset --hard, or
+#   git stash drop when there are uncommitted changes, destroying
+#   hours of work. This hook checks git status before allowing
+#   destructive git commands.
+#
+# TRIGGER: PreToolUse  MATCHER: "Bash"
+#
+# Born from: https://github.com/anthropics/claude-code/issues/37888
+#   "Claude runs forbidden destructive git commands, destroys work twice"
+# ================================================================
+
+COMMAND=$(cat | jq -r '.tool_input.command // empty' 2>/dev/null)
+[ -z "$COMMAND" ] && exit 0
+
+# Only check destructive git commands
+DESTRUCTIVE=0
+echo "$COMMAND" | grep -qE '\bgit\s+checkout\s+--\s' && DESTRUCTIVE=1
+echo "$COMMAND" | grep -qE '\bgit\s+checkout\s+\.\s*$' && DESTRUCTIVE=1
+echo "$COMMAND" | grep -qE '\bgit\s+restore\s+--staged\s+\.' && DESTRUCTIVE=1
+echo "$COMMAND" | grep -qE '\bgit\s+restore\s+\.\s*$' && DESTRUCTIVE=1
+echo "$COMMAND" | grep -qE '\bgit\s+reset\s+--hard' && DESTRUCTIVE=1
+echo "$COMMAND" | grep -qE '\bgit\s+clean\s+-[a-zA-Z]*f' && DESTRUCTIVE=1
+echo "$COMMAND" | grep -qE '\bgit\s+stash\s+drop' && DESTRUCTIVE=1
+
+[ "$DESTRUCTIVE" -eq 0 ] && exit 0
+
+# Check for uncommitted changes
+DIRTY=$(git status --porcelain 2>/dev/null | head -20)
+if [ -n "$DIRTY" ]; then
+    COUNT=$(echo "$DIRTY" | wc -l)
+    echo "BLOCKED: Destructive git command with $COUNT uncommitted change(s)." >&2
+    echo "Changes that would be lost:" >&2
+    echo "$DIRTY" | head -10 | sed 's/^/  /' >&2
+    [ "$COUNT" -gt 10 ] && echo "  ... and $((COUNT-10)) more" >&2
+    echo "" >&2
+    echo "Commit or stash your changes first, then retry." >&2
+    exit 2
+fi
+
+exit 0

package/examples/verify-before-done.sh

@@ -0,0 +1,43 @@
+#!/bin/bash
+# ================================================================
+# verify-before-done.sh — Warn when committing without running tests
+# ================================================================
+# PURPOSE:
+#   Claude Code often declares fixes "done" and commits without
+#   verifying the fix actually works. This hook warns when a commit
+#   is made in a project that has tests, but no test command was
+#   run recently in the session.
+#
+# TRIGGER: PreToolUse  MATCHER: "Bash"
+#
+# Born from: https://github.com/anthropics/claude-code/issues/37818
+#   "Claude repeatedly declares fixes done without verification"
+# ================================================================
+
+COMMAND=$(cat | jq -r '.tool_input.command // empty' 2>/dev/null)
+[ -z "$COMMAND" ] && exit 0
+
+# Only check on git commit
+echo "$COMMAND" | grep -qE '^\s*git\s+commit' || exit 0
+
+# Track test execution via state file
+STATE="/tmp/cc-tests-ran-$(pwd | md5sum | cut -c1-8)"
+
+# Check if tests were run in this session
+if [ ! -f "$STATE" ]; then
+    # Detect if project has tests
+    HAS_TESTS=0
+    [ -f "package.json" ] && grep -q '"test"' package.json 2>/dev/null && HAS_TESTS=1
+    [ -f "pytest.ini" ] || [ -f "setup.cfg" ] || [ -f "pyproject.toml" ] && HAS_TESTS=1
+    [ -f "Cargo.toml" ] && HAS_TESTS=1
+    [ -f "go.mod" ] && HAS_TESTS=1
+    [ -f "Makefile" ] && grep -q 'test:' Makefile 2>/dev/null && HAS_TESTS=1
+
+    if [ "$HAS_TESTS" -eq 1 ]; then
+        echo "WARNING: Committing without running tests first." >&2
+        echo "Run your test suite before committing to verify changes work." >&2
+        echo "To suppress: touch $STATE" >&2
+    fi
+fi
+
+exit 0

package/index.mjs

@@ -89,6 +89,7 @@ const ISSUES = process.argv.includes('--issues');
 const MIGRATE = process.argv.includes('--migrate');
 const GENERATE_CI = process.argv.includes('--generate-ci');
 const REPORT = process.argv.includes('--report');
+const QUICKFIX = process.argv.includes('--quickfix');
 const COMPARE_IDX = process.argv.findIndex(a => a === '--compare');
 const COMPARE = COMPARE_IDX !== -1 ? { a: process.argv[COMPARE_IDX + 1], b: process.argv[COMPARE_IDX + 2] } : null;
 const CREATE_IDX = process.argv.findIndex(a => a === '--create');
@@ -124,6 +125,7 @@ if (HELP) {
     npx cc-safe-setup --doctor     Diagnose why hooks aren't working
     npx cc-safe-setup --watch      Live dashboard of blocked commands
     npx cc-safe-setup --create "<desc>"  Generate a custom hook from description
+    npx cc-safe-setup --quickfix   Auto-detect and fix common Claude Code problems
     npx cc-safe-setup --stats      Block statistics and patterns report
     npx cc-safe-setup --export     Export hooks config for team sharing
     npx cc-safe-setup --import <file>  Import hooks from exported config
@@ -829,6 +831,200 @@ async function fullSetup() {
   console.log();
 }
 
+async function quickfix() {
+  const { execSync } = await import('child_process');
+  console.log();
+  console.log(c.bold + '  cc-safe-setup --quickfix' + c.reset);
+  console.log(c.dim + '  Auto-detect and fix common Claude Code problems' + c.reset);
+  console.log();
+
+  let fixed = 0, warnings = 0, ok = 0;
+
+  // Check 1: jq installed
+  try {
+    execSync('which jq', { stdio: 'pipe' });
+    console.log(c.green + '  ✓' + c.reset + ' jq is installed');
+    ok++;
+  } catch {
+    console.log(c.red + '  ✗' + c.reset + ' jq is not installed — hooks cannot parse JSON');
+    console.log(c.dim + '    Fix: brew install jq (macOS) | sudo apt install jq (Linux)' + c.reset);
+    warnings++;
+  }
+
+  // Check 2: ~/.claude directory exists
+  const claudeDir = join(HOME, '.claude');
+  if (existsSync(claudeDir)) {
+    console.log(c.green + '  ✓' + c.reset + ' ~/.claude directory exists');
+    ok++;
+  } else {
+    mkdirSync(claudeDir, { recursive: true });
+    console.log(c.yellow + '  ⚡' + c.reset + ' Created ~/.claude directory');
+    fixed++;
+  }
+
+  // Check 3: hooks directory exists
+  if (existsSync(HOOKS_DIR)) {
+    console.log(c.green + '  ✓' + c.reset + ' ~/.claude/hooks directory exists');
+    ok++;
+  } else {
+    mkdirSync(HOOKS_DIR, { recursive: true });
+    console.log(c.yellow + '  ⚡' + c.reset + ' Created ~/.claude/hooks directory');
+    fixed++;
+  }
+
+  // Check 4: settings.json exists and is valid JSON
+  if (existsSync(SETTINGS_PATH)) {
+    try {
+      JSON.parse(readFileSync(SETTINGS_PATH, 'utf-8'));
+      console.log(c.green + '  ✓' + c.reset + ' settings.json is valid JSON');
+      ok++;
+    } catch (e) {
+      console.log(c.red + '  ✗' + c.reset + ' settings.json has invalid JSON: ' + e.message);
+      console.log(c.dim + '    This is the #1 cause of hooks not working.' + c.reset);
+      console.log(c.dim + '    Common fix: remove trailing commas, check for comments (JSONC not supported in all contexts)' + c.reset);
+      warnings++;
+    }
+  } else {
+    writeFileSync(SETTINGS_PATH, '{}');
+    console.log(c.yellow + '  ⚡' + c.reset + ' Created empty settings.json');
+    fixed++;
+  }
+
+  // Check 5: hooks have executable permission
+  if (existsSync(HOOKS_DIR)) {
+    const { readdirSync, statSync } = await import('fs');
+    const hooks = readdirSync(HOOKS_DIR).filter(f => f.endsWith('.sh'));
+    let nonExec = 0;
+    for (const h of hooks) {
+      const p = join(HOOKS_DIR, h);
+      const st = statSync(p);
+      if (!(st.mode & 0o111)) {
+        chmodSync(p, 0o755);
+        nonExec++;
+      }
+    }
+    if (nonExec > 0) {
+      console.log(c.yellow + '  ⚡' + c.reset + ` Fixed ${nonExec} hook(s) missing executable permission`);
+      fixed += nonExec;
+    } else if (hooks.length > 0) {
+      console.log(c.green + '  ✓' + c.reset + ` All ${hooks.length} hooks have executable permission`);
+      ok++;
+    }
+  }
+
+  // Check 6: hooks have correct shebang
+  if (existsSync(HOOKS_DIR)) {
+    const { readdirSync } = await import('fs');
+    const hooks = readdirSync(HOOKS_DIR).filter(f => f.endsWith('.sh'));
+    let badShebang = 0;
+    for (const h of hooks) {
+      const content = readFileSync(join(HOOKS_DIR, h), 'utf-8');
+      const firstLine = content.split('\n')[0];
+      if (!firstLine.startsWith('#!')) {
+        badShebang++;
+        console.log(c.red + '  ✗' + c.reset + ` ${h} missing shebang (#!/bin/bash)`);
+      }
+    }
+    if (badShebang === 0 && hooks.length > 0) {
+      console.log(c.green + '  ✓' + c.reset + ' All hooks have valid shebang lines');
+      ok++;
+    }
+    warnings += badShebang;
+  }
+
+  // Check 7: settings.json hooks reference existing files
+  if (existsSync(SETTINGS_PATH)) {
+    try {
+      const settings = JSON.parse(readFileSync(SETTINGS_PATH, 'utf-8'));
+      let broken = 0;
+      for (const [trigger, groups] of Object.entries(settings.hooks || {})) {
+        for (const group of groups) {
+          for (const hook of (group.hooks || [])) {
+            const cmd = hook.command || '';
+            // Extract script path from command
+            const match = cmd.match(/bash\s+"?([^"\s]+\.sh)/);
+            if (match && !existsSync(match[1])) {
+              console.log(c.red + '  ✗' + c.reset + ` Hook references missing file: ${match[1]}`);
+              broken++;
+            }
+          }
+        }
+      }
+      if (broken === 0) {
+        console.log(c.green + '  ✓' + c.reset + ' All hook file references are valid');
+        ok++;
+      }
+      warnings += broken;
+    } catch {}
+  }
+
+  // Check 8: No .env in git staging
+  try {
+    const staged = execSync('git diff --cached --name-only 2>/dev/null', { encoding: 'utf-8' });
+    if (/\.env/i.test(staged)) {
+      console.log(c.red + '  ✗' + c.reset + ' .env file is staged in git! Run: git reset HEAD .env');
+      warnings++;
+    } else {
+      console.log(c.green + '  ✓' + c.reset + ' No secret files in git staging area');
+      ok++;
+    }
+  } catch {
+    console.log(c.dim + '  · Not in a git repository (skipping git checks)' + c.reset);
+  }
+
+  // Check 9: CLAUDE.md exists in project
+  if (existsSync('CLAUDE.md')) {
+    console.log(c.green + '  ✓' + c.reset + ' CLAUDE.md found in project');
+    ok++;
+  } else {
+    console.log(c.yellow + '  △' + c.reset + ' No CLAUDE.md — consider creating one for project-specific rules');
+    warnings++;
+  }
+
+  // Check 10: Safety hooks installed
+  let safetyHooks = 0;
+  if (existsSync(SETTINGS_PATH)) {
+    try {
+      const s = JSON.parse(readFileSync(SETTINGS_PATH, 'utf-8'));
+      const allHookCmds = [];
+      for (const groups of Object.values(s.hooks || {})) {
+        for (const g of groups) {
+          for (const h of (g.hooks || [])) allHookCmds.push(h.command || '');
+        }
+      }
+      const critical = ['destructive-guard', 'branch-guard', 'secret-guard'];
+      for (const name of critical) {
+        if (allHookCmds.some(c => c.includes(name))) {
+          safetyHooks++;
+        } else {
+          console.log(c.yellow + '  △' + c.reset + ` Missing critical hook: ${name}`);
+          console.log(c.dim + '    Fix: npx cc-safe-setup' + c.reset);
+          warnings++;
+        }
+      }
+      if (safetyHooks === 3) {
+        console.log(c.green + '  ✓' + c.reset + ' All 3 critical safety hooks installed');
+        ok++;
+      }
+    } catch {}
+  }
+
+  console.log();
+  console.log(c.bold + '  Summary' + c.reset);
+  console.log(c.green + `  ${ok} OK` + c.reset + c.yellow + ` · ${fixed} fixed` + c.reset + c.red + ` · ${warnings} warnings` + c.reset);
+
+  if (fixed > 0) {
+    console.log();
+    console.log(c.green + `  ⚡ Auto-fixed ${fixed} issue(s)` + c.reset);
+  }
+  if (warnings > 0) {
+    console.log();
+    console.log(c.yellow + '  Run npx cc-safe-setup to install missing safety hooks' + c.reset);
+    console.log(c.yellow + '  Run npx cc-safe-setup --doctor for detailed diagnosis' + c.reset);
+  }
+  console.log();
+}
+
 async function report() {
   // Generate markdown safety report
   let hookCount = 0;
@@ -2640,6 +2836,7 @@ async function main() {
   if (FULL) return fullSetup();
   if (DOCTOR) return doctor();
   if (WATCH) return watch();
+  if (QUICKFIX) return quickfix();
   if (REPORT) return report();
   if (GENERATE_CI) return generateCI();
   if (MIGRATE) return migrate();

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cc-safe-setup",
-  "version": "7.2.0",
+  "version": "7.4.0",
   "description": "One command to make Claude Code safe. 59 hooks (8 built-in + 51 examples). 26 CLI commands: dashboard, create, audit, lint, diff, migrate, compare, generate-ci. 284 tests.",
   "main": "index.mjs",
   "bin": {