cc-safety-net 1.0.1 → 1.0.3

package/README.md

@@ -7,7 +7,7 @@
 [![Claude Code](https://img.shields.io/badge/Claude%20Code-D27656)](#claude-code-installation)
 [![Copilot CLI](https://img.shields.io/badge/Copilot%20CLI-4EA5C9)](#github-copilot-cli-installation)
 [![Gemini CLI](https://img.shields.io/badge/Gemini%20CLI-678AE3)](#gemini-cli-installation)
-[![Kimi CLI](https://img.shields.io/badge/Kimi%20CLI-5587FF)](#kimi-cli-installation)
+[![Kimi Code](https://img.shields.io/badge/Kimi%20Code-5587FF)](#kimi-code-installation)
 [![OpenCode](https://img.shields.io/badge/OpenCode-black)](#opencode-installation)
 [![Pi](https://img.shields.io/badge/Pi%20Coding-22262E)](#pi-installation)
 [![License: MIT](https://img.shields.io/badge/License-MIT-red.svg)](https://opensource.org/licenses/MIT)
@@ -31,7 +31,7 @@ A Coding Agent CLI plugin that acts as a safety net, catching destructive git an
   - [Claude Code Installation](#claude-code-installation)
   - [Gemini CLI Installation](#gemini-cli-installation)
   - [GitHub Copilot CLI Installation](#github-copilot-cli-installation)
-  - [Kimi CLI Installation](#kimi-cli-installation)
+  - [Kimi Code Installation](#kimi-code-installation)
   - [OpenCode Installation](#opencode-installation)
   - [Pi Installation](#pi-installation)
 - [Status Line Integration](#status-line-integration)
@@ -218,12 +218,12 @@ gemini extensions install https://github.com/kenryu42/gemini-safety-net
 
 ---
 
-### Kimi CLI Installation
+### Kimi Code Installation
 
-Install CC Safety Net into your Kimi CLI config:
+Install CC Safety Net into your Kimi Code config:
 
 ```bash
-npx -y cc-safety-net hook install --kimi-cli
+npx -y cc-safety-net hook install --kimi-code
 ```
 
 ---

package/dist/bin/cc-safety-net.js

@@ -3,13 +3,54 @@ var __commonJS = (cb, mod) => () => (mod || cb((mod = { exports: {} }).exports,
 
 // node_modules/shell-quote/quote.js
 var require_quote = __commonJS((exports, module) => {
+  var OPS = [
+    "||",
+    "&&",
+    ";;",
+    "|&",
+    "<(",
+    "<<<",
+    ">>",
+    ">&",
+    "<&",
+    "&",
+    ";",
+    "(",
+    ")",
+    "|",
+    "<",
+    ">"
+  ];
+  var LINE_TERMINATORS = /[\n\r\u2028\u2029]/;
+  var GLOB_SHELL_SPECIAL = /[\s#!"$&'():;<=>@\\^`|]/g;
   module.exports = function quote(xs) {
     return xs.map(function(s) {
       if (s === "") {
         return "''";
       }
       if (s && typeof s === "object") {
-        return s.op.replace(/(.)/g, "\\$1");
+        if (s.op === "glob") {
+          if (typeof s.pattern !== "string") {
+            throw new TypeError("glob token requires a string `pattern`");
+          }
+          if (LINE_TERMINATORS.test(s.pattern)) {
+            throw new TypeError("glob `pattern` must not contain line terminators");
+          }
+          return s.pattern.replace(GLOB_SHELL_SPECIAL, "\\$&");
+        }
+        if (typeof s.op === "string") {
+          if (OPS.indexOf(s.op) < 0) {
+            throw new TypeError("invalid `op` value: " + JSON.stringify(s.op));
+          }
+          return s.op.replace(/[\s\S]/g, "\\$&");
+        }
+        if (typeof s.comment === "string") {
+          if (LINE_TERMINATORS.test(s.comment)) {
+            throw new TypeError("`comment` must not contain line terminators");
+          }
+          return "#" + s.comment;
+        }
+        throw new TypeError("unrecognized object token shape");
       }
       if (/["\s\\]/.test(s) && !/'/.test(s)) {
         return "'" + s.replace(/(['])/g, "\\$1") + "'";
@@ -338,6 +379,10 @@ function dangerousInText(text) {
   return null;
 }
 
+// src/core/analyze/segment.ts
+import { realpathSync as realpathSync6 } from "node:fs";
+import { normalize as normalize3 } from "node:path";
+
 // src/core/analyze/awk.ts
 var AWK_INTERPRETERS = new Set(["awk", "gawk", "nawk", "mawk"]);
 var REASON_AWK_SYSTEM_DYNAMIC = "Detected awk system() call with dynamic command that cannot be safely analyzed.";
@@ -4143,8 +4188,7 @@ function analyzeParallelCommand(context) {
 }
 var CWD_CHANGE_REGEX = /^\s*(?:\$\(\s*)?[({]*\s*(?:command\s+|builtin\s+)?(?:cd|pushd|popd)(?:\s|$)/;
 function segmentChangesCwd(segment) {
-  const stripped = stripLeadingGrouping(segment);
-  const unwrapped = stripWrappers([...stripped]);
+  const unwrapped = getCwdChangeTokens(segment);
   if (unwrapped.length === 0) {
     return false;
   }
@@ -4163,6 +4207,32 @@ function segmentChangesCwd(segment) {
   const joined = segment.join(" ");
   return CWD_CHANGE_REGEX.test(joined);
 }
+function resolveCwdAfterSegment(segment, cwd) {
+  if (!segmentChangesCwd(segment)) {
+    return;
+  }
+  if (!cwd) {
+    return null;
+  }
+  const unwrapped = getCwdChangeTokens(segment, cwd);
+  const cdIndex = getCdCommandIndex(unwrapped);
+  if (cdIndex === -1 || unwrapped[cdIndex] !== "cd") {
+    return null;
+  }
+  const target = unwrapped[cdIndex + 1];
+  if (!target || target === "-" || target.includes("$") || target.includes("`")) {
+    return null;
+  }
+  try {
+    const resolved = resolveChdirTarget(cwd, target);
+    if (samePath(resolved, cwd)) {
+      return cwd;
+    }
+  } catch {
+    return null;
+  }
+  return null;
+}
 function getHeadAfterTimePrefix(tokens, startIndex) {
   let i = startIndex;
   while (tokens[i]?.startsWith("-")) {
@@ -4170,6 +4240,31 @@ function getHeadAfterTimePrefix(tokens, startIndex) {
   }
   return tokens[i] ?? "";
 }
+function getCdCommandIndex(tokens) {
+  let headIndex = 0;
+  if (tokens[0] === "builtin" && tokens.length > 1) {
+    headIndex = 1;
+  }
+  if (tokens[headIndex] !== "time") {
+    return headIndex;
+  }
+  let i = headIndex + 1;
+  while (tokens[i]?.startsWith("-")) {
+    i++;
+  }
+  return i;
+}
+function getCwdChangeTokens(segment, cwd) {
+  const stripped = stripLeadingGrouping(segment);
+  return stripWrappers([...stripped], cwd);
+}
+function samePath(a, b) {
+  try {
+    return normalize3(realpathSync6(a)) === normalize3(realpathSync6(b));
+  } catch {
+    return normalize3(a) === normalize3(b);
+  }
+}
 function stripLeadingGrouping(tokens) {
   let i = 0;
   while (i < tokens.length) {
@@ -4520,8 +4615,9 @@ function analyzeCommandInternal(command2, depth, options2) {
       if (textReason) {
         return { reason: textReason, segment: segmentStr };
       }
-      if (segmentChangesCwd(segment)) {
-        effectiveCwd = null;
+      const nextCwd2 = resolveCwdAfterSegment(segment, effectiveCwd);
+      if (nextCwd2 !== undefined) {
+        effectiveCwd = nextCwd2;
       }
       continue;
     }
@@ -4543,8 +4639,9 @@ function analyzeCommandInternal(command2, depth, options2) {
     if (reason) {
       return { reason, segment: segmentStr };
     }
-    if (segmentChangesCwd(segment)) {
-      effectiveCwd = null;
+    const nextCwd = resolveCwdAfterSegment(segment, effectiveCwd);
+    if (nextCwd !== undefined) {
+      effectiveCwd = nextCwd;
     }
     applyShellGitContextEnvSegment(segment, shellGitContextState);
   }
@@ -6331,8 +6428,8 @@ var CLAUDE_CODE_HOOK_EVENT = "PreToolUse";
 var CLAUDE_CODE_TOOL_NAME = "Bash";
 var GEMINI_CLI_HOOK_EVENT = "BeforeTool";
 var GEMINI_CLI_TOOL_NAME = "run_shell_command";
-var KIMI_CLI_HOOK_EVENT = "PreToolUse";
-var KIMI_CLI_TOOL_NAME = "Shell";
+var KIMI_CODE_HOOK_EVENT = "PreToolUse";
+var KIMI_CODE_TOOL_NAME = "Shell";
 
 // src/bin/hook/claude-code.ts
 async function runClaudeCodeHook() {
@@ -6381,8 +6478,8 @@ async function runGeminiCLIHook() {
   });
 }
 
-// src/bin/hook/kimi-cli.ts
-async function runKimiCliHook() {
+// src/bin/hook/kimi-code.ts
+async function runKimiCodeHook() {
   await runConfiguredHookAdapter({
     createDenyOutput: (message) => ({
       hookSpecificOutput: {
@@ -6391,7 +6488,7 @@ async function runKimiCliHook() {
         permissionDecisionReason: message
       }
     }),
-    isSupported: (input) => input.hook_event_name === KIMI_CLI_HOOK_EVENT && input.tool_name === KIMI_CLI_TOOL_NAME,
+    isSupported: (input) => input.hook_event_name === KIMI_CODE_HOOK_EVENT && input.tool_name === KIMI_CODE_TOOL_NAME,
     getCommand: (input) => input.tool_input?.command,
     getCwd: (input) => input.cwd,
     getSessionId: (input) => input.session_id
@@ -6439,12 +6536,12 @@ var integrationMetadata = [
     }
   },
   {
-    id: "kimi-cli",
-    displayName: "Kimi CLI",
+    id: "kimi-code",
+    displayName: "Kimi Code",
     doctorVisible: true,
     runtimeHook: {
-      flags: ["-kc", "--kimi-cli"],
-      description: "Run as Kimi CLI PreToolUse hook",
+      flags: ["-kc", "--kimi-code"],
+      description: "Run as Kimi Code PreToolUse hook",
       legacyTopLevel: false,
       order: 4
     }
@@ -6477,7 +6574,7 @@ var hookRunners = {
   "claude-code": runClaudeCodeHook,
   "copilot-cli": runCopilotCliHook,
   "gemini-cli": runGeminiCLIHook,
-  "kimi-cli": runKimiCliHook
+  "kimi-code": runKimiCodeHook
 };
 var hookIntegrations = runtimeHookIntegrationMetadata.map((integration) => ({
   ...integration,
@@ -6501,8 +6598,8 @@ var hookCommand = {
   description: "Run as an agent CLI hook (reads JSON from stdin)",
   usage: "hook <coding cli>",
   subcommands: [
-    { usage: "install --kimi-cli", description: "Install Kimi CLI hook config" },
-    { usage: "uninstall --kimi-cli", description: "Uninstall Kimi CLI hook config" }
+    { usage: "install --kimi-code", description: "Install Kimi Code hook config" },
+    { usage: "uninstall --kimi-code", description: "Uninstall Kimi Code hook config" }
   ],
   options: [
     ...platformOptions,
@@ -6511,7 +6608,7 @@ var hookCommand = {
       description: "Show this help"
     }
   ],
-  examples: [...platformExamples, "cc-safety-net hook install --kimi-cli"]
+  examples: [...platformExamples, "cc-safety-net hook install --kimi-code"]
 };
 
 // src/bin/commands/rule.ts
@@ -7160,7 +7257,7 @@ function formatSystemInfoTable(system) {
     { label: "Codex", value: system.codexCliVersion },
     { label: "Copilot CLI", value: system.copilotCliVersion },
     { label: "Gemini CLI", value: system.geminiCliVersion },
-    { label: "Kimi CLI", value: system.kimiCliVersion },
+    { label: "Kimi Code", value: system.kimiCodeVersion },
     { label: "OpenCode", value: system.openCodeVersion },
     { label: "Pi", value: system.piCliVersion },
     { label: "Node.js", value: system.nodeVersion },
@@ -7204,7 +7301,7 @@ var CLAUDE_PLUGIN_LIST_CONFIG_PATH = "claude plugin list";
 var CLAUDE_SAFETY_NET_PLUGIN_ID = "safety-net@cc-marketplace";
 var GEMINI_EXTENSIONS_LIST_CONFIG_PATH = "gemini extensions list";
 var GEMINI_SAFETY_NET_SOURCE = "https://github.com/kenryu42/gemini-safety-net";
-var KIMI_HOOK_COMMAND_PATTERN = /cc-safety-net\s+hook\s+(?:[^\s]+\s+)*--kimi-cli(\s|["']|$)/;
+var KIMI_HOOK_COMMAND_PATTERN = /cc-safety-net\s+hook\s+(?:[^\s]+\s+)*--kimi-code(\s|["']|$)/;
 var CODEX_PLUGIN_HOOKS_WARNING = "Codex plugin hooks are behind a feature flag. Add `plugin_hooks = true` under [features] in $CODEX_HOME/config.toml.";
 var CODEX_SAFETY_NET_PLUGIN_ID = "safety-net@cc-marketplace";
 var SELF_TEST_CASES = [
@@ -7436,25 +7533,25 @@ function detectGeminiCLI(extensionsListOutput) {
 function _getKimiConfigPath(homeDir) {
   return join10(process.env.KIMI_SHARE_DIR || join10(homeDir, ".kimi"), "config.toml");
 }
-function detectKimiCLI(homeDir) {
+function detectKimiCode(homeDir) {
   const configPath = _getKimiConfigPath(homeDir);
   if (!existsSync13(configPath)) {
-    return { platform: "kimi-cli", status: "n/a", configPath };
+    return { platform: "kimi-code", status: "n/a", configPath };
   }
   try {
     if (!KIMI_HOOK_COMMAND_PATTERN.test(readFileSync10(configPath, "utf-8"))) {
-      return { platform: "kimi-cli", status: "n/a", configPath };
+      return { platform: "kimi-code", status: "n/a", configPath };
     }
   } catch (e) {
     return {
-      platform: "kimi-cli",
+      platform: "kimi-code",
       status: "n/a",
       configPath,
       errors: [`Failed to read ${configPath}: ${e instanceof Error ? e.message : String(e)}`]
     };
   }
   return {
-    platform: "kimi-cli",
+    platform: "kimi-code",
     status: "configured",
     method: "hook config",
     configPath,
@@ -7813,8 +7910,8 @@ function detectAllHooks(cwd, options2) {
         return detectGeminiCLI(options2?.geminiExtensionsListOutput);
       case "copilot-cli":
         return detectCopilotCLI();
-      case "kimi-cli":
-        return detectKimiCLI(homeDir);
+      case "kimi-code":
+        return detectKimiCode(homeDir);
       case "pi":
         return detectPi(options2?.piSafetyNetProbe);
       case "codex":
@@ -7830,7 +7927,7 @@ import { existsSync as existsSync14 } from "node:fs";
 import { mkdtemp, readFile, rm, writeFile } from "node:fs/promises";
 import { tmpdir as tmpdir4 } from "node:os";
 import { delimiter, extname, join as join11 } from "node:path";
-var CURRENT_VERSION = "1.0.1";
+var CURRENT_VERSION = "1.0.3";
 var VERSION_FETCH_TIMEOUT_MS = 2000;
 var PI_PROBE_TIMEOUT_MS = 5000;
 var PI_SENTINEL_COMMAND = "cc-safety-net";
@@ -8193,7 +8290,7 @@ async function getSystemInfo(fetcher = defaultVersionFetcher, options2 = {}) {
     geminiCliVersion: parseVersion(geminiRaw),
     geminiExtensionsListOutput,
     copilotCliVersion: parseVersion(copilotRaw),
-    kimiCliVersion: parseVersion(kimiRaw),
+    kimiCodeVersion: parseVersion(kimiRaw),
     piCliVersion: parseVersion(piRaw),
     nodeVersion: parseVersion(nodeRaw),
     npmVersion: parseVersion(npmRaw),
@@ -8882,12 +8979,14 @@ function explainCommand2(command2, options2) {
         token: redactEnvAssignmentsInString(segment[0]),
         matched: false
       });
-      if (segmentChangesCwd(segment)) {
-        segmentSteps.push({
-          type: "cwd-change",
-          segment: redactEnvAssignmentsInString(segment.join(" ")),
-          effectiveCwdNowUnknown: true
-        });
+      const nextCwd2 = resolveCwdAfterSegment(segment, effectiveCwd);
+      if (nextCwd2 !== undefined) {
+        if (nextCwd2 !== null) {
+          effectiveCwd = nextCwd2;
+          trace.segments.push({ index: i, steps: segmentSteps });
+          continue;
+        }
+        segmentSteps.push(cwdChangeStep(segment));
         effectiveCwd = null;
       }
       trace.segments.push({ index: i, steps: segmentSteps });
@@ -8903,12 +9002,15 @@ function explainCommand2(command2, options2) {
       blockReason = result.reason;
       blockSegment = redactEnvAssignmentsInString(segment.join(" "));
     }
-    if (segmentChangesCwd(segment)) {
-      segmentSteps.push({
-        type: "cwd-change",
-        segment: redactEnvAssignmentsInString(segment.join(" ")),
-        effectiveCwdNowUnknown: true
-      });
+    const nextCwd = resolveCwdAfterSegment(segment, effectiveCwd);
+    if (nextCwd !== undefined) {
+      if (nextCwd !== null) {
+        effectiveCwd = nextCwd;
+        applyShellGitContextEnvSegment(segment, shellGitContextState);
+        trace.segments.push({ index: i, steps: segmentSteps });
+        continue;
+      }
+      segmentSteps.push(cwdChangeStep(segment));
       effectiveCwd = null;
     }
     applyShellGitContextEnvSegment(segment, shellGitContextState);
@@ -8924,6 +9026,13 @@ function explainCommand2(command2, options2) {
     configValid
   };
 }
+function cwdChangeStep(segment) {
+  return {
+    type: "cwd-change",
+    segment: redactEnvAssignmentsInString(segment.join(" ")),
+    effectiveCwdNowUnknown: true
+  };
+}
 function getCustomRuleMetadata(reason, options2, cwd) {
   const id = reason?.match(/^\[([^\]]+)]/)?.[1];
   if (!id)
@@ -9327,7 +9436,7 @@ function formatTraceJson(result) {
   return JSON.stringify(result, null, 2);
 }
 // src/bin/help.ts
-var version = "1.0.1";
+var version = "1.0.3";
 var INDENT = "  ";
 var PROGRAM_NAME = "cc-safety-net";
 function formatOptionFlags(option) {
@@ -9434,7 +9543,7 @@ function showCommandHelp(commandName) {
 // src/bin/hook/install.ts
 import { homedir as homedir6 } from "node:os";
 
-// src/bin/hook/install/kimi-cli.ts
+// src/bin/hook/install/kimi-code.ts
 import { existsSync as existsSync16, mkdirSync as mkdirSync4, readFileSync as readFileSync11, writeFileSync as writeFileSync3 } from "node:fs";
 import { dirname as dirname9, join as join12 } from "node:path";
 
@@ -9522,8 +9631,8 @@ function removeArrayRangeItem(content, item) {
   return `${content.slice(0, removeStart)}${content.slice(removeEnd)}`;
 }
 
-// src/bin/hook/install/kimi-cli.ts
-var KIMI_HOOK_COMMAND = "npx -y cc-safety-net hook --kimi-cli";
+// src/bin/hook/install/kimi-code.ts
+var KIMI_HOOK_COMMAND = "npx -y cc-safety-net hook --kimi-code";
 var KIMI_HOOK_BLOCK = `[[hooks]]
 event = "PreToolUse"
 matcher = "Shell"
@@ -9558,8 +9667,8 @@ function skipTomlComment(content, index) {
 function findTomlArrayClose(content, openIndex) {
   return findMatchingBracket(content, openIndex, {
     skipComment: skipTomlComment,
-    stringError: "Unterminated string in Kimi CLI config",
-    bracketError: "Unmatched hooks array in Kimi CLI config"
+    stringError: "Unterminated string in Kimi Code config",
+    bracketError: "Unmatched hooks array in Kimi Code config"
   });
 }
 function findTopLevelInlineHooksArray(content) {
@@ -9618,7 +9727,7 @@ function removeKimiInlineHook(content, hooksRange) {
     end: itemStart + KIMI_INLINE_HOOK.length
   });
 }
-function installKimiCli(homeDir) {
+function installKimiCode(homeDir) {
   const configPath = getKimiConfigPath(homeDir);
   mkdirSync4(dirname9(configPath), { recursive: true });
   if (!existsSync16(configPath)) {
@@ -9632,7 +9741,7 @@ function installKimiCli(homeDir) {
   writeFileSync3(configPath, appendKimiHook(content));
   return { path: configPath, alreadyInstalled: false };
 }
-function uninstallKimiCli(homeDir) {
+function uninstallKimiCode(homeDir) {
   const configPath = getKimiConfigPath(homeDir);
   if (!existsSync16(configPath))
     return { path: configPath, alreadyInstalled: false };
@@ -9651,21 +9760,21 @@ function getHomeDir() {
   return process.env.HOME ?? homedir6();
 }
 function parseInstallTarget(args, action) {
-  const unknownOption = args.find((arg) => arg.startsWith("-") && !["--kimi-cli"].includes(arg));
+  const unknownOption = args.find((arg) => arg.startsWith("-") && !["--kimi-code"].includes(arg));
   if (unknownOption)
     throw new Error(`Unknown install option: ${unknownOption}`);
   const unexpectedArg = args.find((arg) => !arg.startsWith("-"));
   if (unexpectedArg)
     throw new Error(`Unexpected argument for hook ${action}: ${unexpectedArg}`);
-  if (!args.includes("--kimi-cli"))
-    throw new Error("Choose exactly one install target: --kimi-cli");
+  if (!args.includes("--kimi-code"))
+    throw new Error("Choose exactly one install target: --kimi-code");
 }
 function runHookInstallCommand(action, args) {
   try {
     parseInstallTarget(args, action);
     const homeDir = getHomeDir();
-    const result = action === "install" ? installKimiCli(homeDir) : uninstallKimiCli(homeDir);
-    const name = "Kimi CLI";
+    const result = action === "install" ? installKimiCode(homeDir) : uninstallKimiCode(homeDir);
+    const name = "Kimi Code";
     const pastTense = action === "install" ? "Installed" : "Uninstalled";
     console.log(action === "install" && result.alreadyInstalled ? `${name} hook already installed in ${result.path}` : action === "uninstall" && !result.alreadyInstalled ? `${name} hook not installed in ${result.path}` : `${pastTense} ${name} hook ${action === "install" ? "in" : "from"} ${result.path}`);
     return 0;
@@ -10683,7 +10792,7 @@ var commandParsers = {
     const integration = findHookIntegrationByFlag(args);
     if (integration)
       return { mode: "hook", integration };
-    console.error("hook requires a subcommand or integration flag. Try: cc-safety-net hook install --kimi-cli");
+    console.error("hook requires a subcommand or integration flag. Try: cc-safety-net hook install --kimi-code");
     showCommandHelp("hook");
     process.exit(1);
   },

package/dist/bin/doctor/types.d.ts

@@ -122,8 +122,8 @@ export interface SystemInfo {
     geminiExtensionsListOutput: string | null;
     /** Copilot CLI version (from `copilot --binary-version`, falling back to `copilot --version`) */
     copilotCliVersion: string | null;
-    /** Kimi CLI version (from `kimi --version`) */
-    kimiCliVersion: string | null;
+    /** Kimi Code version (from `kimi --version`) */
+    kimiCodeVersion: string | null;
     /** Pi CLI version (from `pi --version`) */
     piCliVersion: string | null;
     /** Node.js version (from `node --version`) */

package/dist/bin/hook/constants.d.ts

@@ -2,5 +2,5 @@ export declare const CLAUDE_CODE_HOOK_EVENT = "PreToolUse";
 export declare const CLAUDE_CODE_TOOL_NAME = "Bash";
 export declare const GEMINI_CLI_HOOK_EVENT = "BeforeTool";
 export declare const GEMINI_CLI_TOOL_NAME = "run_shell_command";
-export declare const KIMI_CLI_HOOK_EVENT = "PreToolUse";
-export declare const KIMI_CLI_TOOL_NAME = "Shell";
+export declare const KIMI_CODE_HOOK_EVENT = "PreToolUse";
+export declare const KIMI_CODE_TOOL_NAME = "Shell";

package/dist/bin/hook/install/kimi-code.d.ts

@@ -0,0 +1,3 @@
+import type { InstallResult } from '@/bin/hook/install/types';
+export declare function installKimiCode(homeDir: string): InstallResult;
+export declare function uninstallKimiCode(homeDir: string): InstallResult;

package/dist/bin/hook/kimi-code.d.ts

@@ -0,0 +1 @@
+export declare function runKimiCodeHook(): Promise<void>;

package/dist/bin/integration-metadata.d.ts

@@ -33,12 +33,12 @@ declare const integrationMetadata: readonly [{
         readonly order: 3;
     };
 }, {
-    readonly id: "kimi-cli";
-    readonly displayName: "Kimi CLI";
+    readonly id: "kimi-code";
+    readonly displayName: "Kimi Code";
     readonly doctorVisible: true;
     readonly runtimeHook: {
-        readonly flags: readonly ["-kc", "--kimi-cli"];
-        readonly description: "Run as Kimi CLI PreToolUse hook";
+        readonly flags: readonly ["-kc", "--kimi-code"];
+        readonly description: "Run as Kimi Code PreToolUse hook";
         readonly legacyTopLevel: false;
         readonly order: 4;
     };
@@ -56,12 +56,12 @@ type RuntimeHookIntegrationMetadata = Extract<(typeof integrationMetadata)[numbe
     runtimeHook: object;
 }>;
 export type RuntimeHookIntegrationId = RuntimeHookIntegrationMetadata['id'];
-export declare const doctorIntegrationOrder: ("claude-code" | "codex" | "copilot-cli" | "gemini-cli" | "kimi-cli" | "opencode" | "pi")[];
+export declare const doctorIntegrationOrder: ("claude-code" | "codex" | "copilot-cli" | "gemini-cli" | "kimi-code" | "opencode" | "pi")[];
 export declare const runtimeHookIntegrationMetadata: {
-    id: "claude-code" | "copilot-cli" | "gemini-cli" | "kimi-cli";
-    displayName: "Claude Code" | "Copilot CLI" | "Gemini CLI" | "Kimi CLI";
-    flags: readonly ["-cc", "--claude-code"] | readonly ["-cp", "--copilot-cli"] | readonly ["-gc", "--gemini-cli"] | readonly ["-kc", "--kimi-cli"];
-    description: "Run as Claude Code PreToolUse hook" | "Run as Copilot CLI PreToolUse hook" | "Run as Gemini CLI BeforeTool hook" | "Run as Kimi CLI PreToolUse hook";
+    id: "claude-code" | "copilot-cli" | "gemini-cli" | "kimi-code";
+    displayName: "Claude Code" | "Copilot CLI" | "Gemini CLI" | "Kimi Code";
+    flags: readonly ["-cc", "--claude-code"] | readonly ["-cp", "--copilot-cli"] | readonly ["-gc", "--gemini-cli"] | readonly ["-kc", "--kimi-code"];
+    description: "Run as Claude Code PreToolUse hook" | "Run as Copilot CLI PreToolUse hook" | "Run as Gemini CLI BeforeTool hook" | "Run as Kimi Code PreToolUse hook";
     legacyTopLevel: boolean;
 }[];
 export declare function getIntegrationDisplayName(id: IntegrationId): string;

package/dist/core/analyze/segment.d.ts

@@ -8,3 +8,4 @@ export type InternalOptions = AnalyzeOptions & {
 };
 export declare function analyzeSegment(tokens: string[], depth: number, options: InternalOptions): string | null;
 export declare function segmentChangesCwd(segment: readonly string[]): boolean;
+export declare function resolveCwdAfterSegment(segment: readonly string[], cwd: string | null | undefined): string | null | undefined;

package/dist/index.js

@@ -2,13 +2,54 @@ var __commonJS = (cb, mod) => () => (mod || cb((mod = { exports: {} }).exports,
 
 // node_modules/shell-quote/quote.js
 var require_quote = __commonJS((exports, module) => {
+  var OPS = [
+    "||",
+    "&&",
+    ";;",
+    "|&",
+    "<(",
+    "<<<",
+    ">>",
+    ">&",
+    "<&",
+    "&",
+    ";",
+    "(",
+    ")",
+    "|",
+    "<",
+    ">"
+  ];
+  var LINE_TERMINATORS = /[\n\r\u2028\u2029]/;
+  var GLOB_SHELL_SPECIAL = /[\s#!"$&'():;<=>@\\^`|]/g;
   module.exports = function quote(xs) {
     return xs.map(function(s) {
       if (s === "") {
         return "''";
       }
       if (s && typeof s === "object") {
-        return s.op.replace(/(.)/g, "\\$1");
+        if (s.op === "glob") {
+          if (typeof s.pattern !== "string") {
+            throw new TypeError("glob token requires a string `pattern`");
+          }
+          if (LINE_TERMINATORS.test(s.pattern)) {
+            throw new TypeError("glob `pattern` must not contain line terminators");
+          }
+          return s.pattern.replace(GLOB_SHELL_SPECIAL, "\\$&");
+        }
+        if (typeof s.op === "string") {
+          if (OPS.indexOf(s.op) < 0) {
+            throw new TypeError("invalid `op` value: " + JSON.stringify(s.op));
+          }
+          return s.op.replace(/[\s\S]/g, "\\$&");
+        }
+        if (typeof s.comment === "string") {
+          if (LINE_TERMINATORS.test(s.comment)) {
+            throw new TypeError("`comment` must not contain line terminators");
+          }
+          return "#" + s.comment;
+        }
+        throw new TypeError("unrecognized object token shape");
       }
       if (/["\s\\]/.test(s) && !/'/.test(s)) {
         return "'" + s.replace(/(['])/g, "\\$1") + "'";
@@ -282,6 +323,10 @@ function dangerousInText(text) {
   return null;
 }
 
+// src/core/analyze/segment.ts
+import { realpathSync as realpathSync6 } from "node:fs";
+import { normalize as normalize3 } from "node:path";
+
 // src/core/analyze/awk.ts
 var AWK_INTERPRETERS = new Set(["awk", "gawk", "nawk", "mawk"]);
 var REASON_AWK_SYSTEM_DYNAMIC = "Detected awk system() call with dynamic command that cannot be safely analyzed.";
@@ -4087,8 +4132,7 @@ function analyzeParallelCommand(context) {
 }
 var CWD_CHANGE_REGEX = /^\s*(?:\$\(\s*)?[({]*\s*(?:command\s+|builtin\s+)?(?:cd|pushd|popd)(?:\s|$)/;
 function segmentChangesCwd(segment) {
-  const stripped = stripLeadingGrouping(segment);
-  const unwrapped = stripWrappers([...stripped]);
+  const unwrapped = getCwdChangeTokens(segment);
   if (unwrapped.length === 0) {
     return false;
   }
@@ -4107,6 +4151,32 @@ function segmentChangesCwd(segment) {
   const joined = segment.join(" ");
   return CWD_CHANGE_REGEX.test(joined);
 }
+function resolveCwdAfterSegment(segment, cwd) {
+  if (!segmentChangesCwd(segment)) {
+    return;
+  }
+  if (!cwd) {
+    return null;
+  }
+  const unwrapped = getCwdChangeTokens(segment, cwd);
+  const cdIndex = getCdCommandIndex(unwrapped);
+  if (cdIndex === -1 || unwrapped[cdIndex] !== "cd") {
+    return null;
+  }
+  const target = unwrapped[cdIndex + 1];
+  if (!target || target === "-" || target.includes("$") || target.includes("`")) {
+    return null;
+  }
+  try {
+    const resolved = resolveChdirTarget(cwd, target);
+    if (samePath(resolved, cwd)) {
+      return cwd;
+    }
+  } catch {
+    return null;
+  }
+  return null;
+}
 function getHeadAfterTimePrefix(tokens, startIndex) {
   let i = startIndex;
   while (tokens[i]?.startsWith("-")) {
@@ -4114,6 +4184,31 @@ function getHeadAfterTimePrefix(tokens, startIndex) {
   }
   return tokens[i] ?? "";
 }
+function getCdCommandIndex(tokens) {
+  let headIndex = 0;
+  if (tokens[0] === "builtin" && tokens.length > 1) {
+    headIndex = 1;
+  }
+  if (tokens[headIndex] !== "time") {
+    return headIndex;
+  }
+  let i = headIndex + 1;
+  while (tokens[i]?.startsWith("-")) {
+    i++;
+  }
+  return i;
+}
+function getCwdChangeTokens(segment, cwd) {
+  const stripped = stripLeadingGrouping(segment);
+  return stripWrappers([...stripped], cwd);
+}
+function samePath(a, b) {
+  try {
+    return normalize3(realpathSync6(a)) === normalize3(realpathSync6(b));
+  } catch {
+    return normalize3(a) === normalize3(b);
+  }
+}
 function stripLeadingGrouping(tokens) {
   let i = 0;
   while (i < tokens.length) {
@@ -4464,8 +4559,9 @@ function analyzeCommandInternal(command2, depth, options2) {
       if (textReason) {
         return { reason: textReason, segment: segmentStr };
       }
-      if (segmentChangesCwd(segment)) {
-        effectiveCwd = null;
+      const nextCwd2 = resolveCwdAfterSegment(segment, effectiveCwd);
+      if (nextCwd2 !== undefined) {
+        effectiveCwd = nextCwd2;
       }
       continue;
     }
@@ -4487,8 +4583,9 @@ function analyzeCommandInternal(command2, depth, options2) {
     if (reason) {
       return { reason, segment: segmentStr };
     }
-    if (segmentChangesCwd(segment)) {
-      effectiveCwd = null;
+    const nextCwd = resolveCwdAfterSegment(segment, effectiveCwd);
+    if (nextCwd !== undefined) {
+      effectiveCwd = nextCwd;
     }
     applyShellGitContextEnvSegment(segment, shellGitContextState);
   }

package/dist/pi/index.js

@@ -2,13 +2,54 @@ var __commonJS = (cb, mod) => () => (mod || cb((mod = { exports: {} }).exports,
 
 // node_modules/shell-quote/quote.js
 var require_quote = __commonJS((exports, module) => {
+  var OPS = [
+    "||",
+    "&&",
+    ";;",
+    "|&",
+    "<(",
+    "<<<",
+    ">>",
+    ">&",
+    "<&",
+    "&",
+    ";",
+    "(",
+    ")",
+    "|",
+    "<",
+    ">"
+  ];
+  var LINE_TERMINATORS = /[\n\r\u2028\u2029]/;
+  var GLOB_SHELL_SPECIAL = /[\s#!"$&'():;<=>@\\^`|]/g;
   module.exports = function quote(xs) {
     return xs.map(function(s) {
       if (s === "") {
         return "''";
       }
       if (s && typeof s === "object") {
-        return s.op.replace(/(.)/g, "\\$1");
+        if (s.op === "glob") {
+          if (typeof s.pattern !== "string") {
+            throw new TypeError("glob token requires a string `pattern`");
+          }
+          if (LINE_TERMINATORS.test(s.pattern)) {
+            throw new TypeError("glob `pattern` must not contain line terminators");
+          }
+          return s.pattern.replace(GLOB_SHELL_SPECIAL, "\\$&");
+        }
+        if (typeof s.op === "string") {
+          if (OPS.indexOf(s.op) < 0) {
+            throw new TypeError("invalid `op` value: " + JSON.stringify(s.op));
+          }
+          return s.op.replace(/[\s\S]/g, "\\$&");
+        }
+        if (typeof s.comment === "string") {
+          if (LINE_TERMINATORS.test(s.comment)) {
+            throw new TypeError("`comment` must not contain line terminators");
+          }
+          return "#" + s.comment;
+        }
+        throw new TypeError("unrecognized object token shape");
       }
       if (/["\s\\]/.test(s) && !/'/.test(s)) {
         return "'" + s.replace(/(['])/g, "\\$1") + "'";
@@ -346,6 +387,10 @@ function dangerousInText(text) {
   return null;
 }
 
+// src/core/analyze/segment.ts
+import { realpathSync as realpathSync6 } from "node:fs";
+import { normalize as normalize3 } from "node:path";
+
 // src/core/analyze/awk.ts
 var AWK_INTERPRETERS = new Set(["awk", "gawk", "nawk", "mawk"]);
 var REASON_AWK_SYSTEM_DYNAMIC = "Detected awk system() call with dynamic command that cannot be safely analyzed.";
@@ -4151,8 +4196,7 @@ function analyzeParallelCommand(context) {
 }
 var CWD_CHANGE_REGEX = /^\s*(?:\$\(\s*)?[({]*\s*(?:command\s+|builtin\s+)?(?:cd|pushd|popd)(?:\s|$)/;
 function segmentChangesCwd(segment) {
-  const stripped = stripLeadingGrouping(segment);
-  const unwrapped = stripWrappers([...stripped]);
+  const unwrapped = getCwdChangeTokens(segment);
   if (unwrapped.length === 0) {
     return false;
   }
@@ -4171,6 +4215,32 @@ function segmentChangesCwd(segment) {
   const joined = segment.join(" ");
   return CWD_CHANGE_REGEX.test(joined);
 }
+function resolveCwdAfterSegment(segment, cwd) {
+  if (!segmentChangesCwd(segment)) {
+    return;
+  }
+  if (!cwd) {
+    return null;
+  }
+  const unwrapped = getCwdChangeTokens(segment, cwd);
+  const cdIndex = getCdCommandIndex(unwrapped);
+  if (cdIndex === -1 || unwrapped[cdIndex] !== "cd") {
+    return null;
+  }
+  const target = unwrapped[cdIndex + 1];
+  if (!target || target === "-" || target.includes("$") || target.includes("`")) {
+    return null;
+  }
+  try {
+    const resolved = resolveChdirTarget(cwd, target);
+    if (samePath(resolved, cwd)) {
+      return cwd;
+    }
+  } catch {
+    return null;
+  }
+  return null;
+}
 function getHeadAfterTimePrefix(tokens, startIndex) {
   let i = startIndex;
   while (tokens[i]?.startsWith("-")) {
@@ -4178,6 +4248,31 @@ function getHeadAfterTimePrefix(tokens, startIndex) {
   }
   return tokens[i] ?? "";
 }
+function getCdCommandIndex(tokens) {
+  let headIndex = 0;
+  if (tokens[0] === "builtin" && tokens.length > 1) {
+    headIndex = 1;
+  }
+  if (tokens[headIndex] !== "time") {
+    return headIndex;
+  }
+  let i = headIndex + 1;
+  while (tokens[i]?.startsWith("-")) {
+    i++;
+  }
+  return i;
+}
+function getCwdChangeTokens(segment, cwd) {
+  const stripped = stripLeadingGrouping(segment);
+  return stripWrappers([...stripped], cwd);
+}
+function samePath(a, b) {
+  try {
+    return normalize3(realpathSync6(a)) === normalize3(realpathSync6(b));
+  } catch {
+    return normalize3(a) === normalize3(b);
+  }
+}
 function stripLeadingGrouping(tokens) {
   let i = 0;
   while (i < tokens.length) {
@@ -4528,8 +4623,9 @@ function analyzeCommandInternal(command2, depth, options2) {
       if (textReason) {
         return { reason: textReason, segment: segmentStr };
       }
-      if (segmentChangesCwd(segment)) {
-        effectiveCwd = null;
+      const nextCwd2 = resolveCwdAfterSegment(segment, effectiveCwd);
+      if (nextCwd2 !== undefined) {
+        effectiveCwd = nextCwd2;
       }
       continue;
     }
@@ -4551,8 +4647,9 @@ function analyzeCommandInternal(command2, depth, options2) {
     if (reason) {
       return { reason, segment: segmentStr };
     }
-    if (segmentChangesCwd(segment)) {
-      effectiveCwd = null;
+    const nextCwd = resolveCwdAfterSegment(segment, effectiveCwd);
+    if (nextCwd !== undefined) {
+      effectiveCwd = nextCwd;
     }
     applyShellGitContextEnvSegment(segment, shellGitContextState);
   }

package/dist/types.d.ts

@@ -83,8 +83,8 @@ export interface GeminiHookOutput {
     stopReason?: string;
     suppressOutput?: boolean;
 }
-/** Kimi CLI hook input format */
-export interface KimiCliHookInput {
+/** Kimi Code hook input format */
+export interface KimiCodeHookInput {
     session_id?: string;
     cwd?: string;
     hook_event_name: string;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cc-safety-net",
-  "version": "1.0.1",
+  "version": "1.0.3",
   "description": "A coding agent CLI hook - block destructive git and filesystem commands before execution",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -64,7 +64,7 @@
     ]
   },
   "dependencies": {
-    "shell-quote": "^1.8.3"
+    "shell-quote": "^1.8.4"
   },
   "trustedDependencies": [
     "@ast-grep/cli"

package/dist/bin/hook/install/kimi-cli.d.ts

@@ -1,3 +0,0 @@
-import type { InstallResult } from '@/bin/hook/install/types';
-export declare function installKimiCli(homeDir: string): InstallResult;
-export declare function uninstallKimiCli(homeDir: string): InstallResult;

package/dist/bin/hook/kimi-cli.d.ts

@@ -1 +0,0 @@
-export declare function runKimiCliHook(): Promise<void>;