ccperm 1.15.1 → 1.17.0

package/README.ko.md

@@ -44,15 +44,15 @@ TTY 환경(기본)에서는 박스 프레임 TUI가 실행됩니다:
 **목록 뷰** — 프로젝트가 권한 수 기준으로 정렬됩니다. 컬럼: Bash, MCP, Tools, TOTAL, `!` (위험도), `†` (deprecated `:*`), `G` (글로벌과 중복).
 
 ```
-┌ ccperm ──────────────────────────────── 1/8 ┐
-│   PROJECT              Bash MCP Tools TOTAL G│
-├─────────────────────────────────────────────┤
-│   ~/.claude               15   ·    2    17 ·│
-├─────────────────────────────────────────────┤
-│ ▸ my-project  local  5   ·    3    8    3   │
-│   other-app   shared 2   3    ·    5    ·   │
-│                          ! risk  † deprecated  G in global │
-└──────── [↑↓] navigate  [Enter] detail  [/] search  [q] quit┘
+┌ ccperm ──────────────────────────────────────────── 1/8 ┐
+│   PROJECT                   Bash  MCP  Tools  TOTAL     │
+├─────────────────────────────────────────────────────────┤
+│   ~/.claude                   15    ·      2     17     │
+├─────────────────────────────────────────────────────────┤
+│ ▸ my-project  local            5    ·      3      8     │
+│   other-app   shared           2    3      ·      5     │
+│                       ! risk  † deprecated  G in global │
+└──── [↑↓] navigate  [Enter] detail  [/] search  [q] quit ┘
 ```
 
 **상세 뷰** — Enter로 프로젝트를 펼칩니다. 카테고리를 Enter로 접고 펼 수 있습니다.
@@ -86,6 +86,30 @@ ccperm은 Claude Code 설정을 세 단계로 구분합니다:
 
 권한은 합산 방식 — global + shared + local이 런타임에 병합됩니다.
 
+## Allow vs Deny vs Ask
+
+Claude Code 설정은 `permissions.allow`, `permissions.deny`, `permissions.ask`를 모두 지원합니다. ccperm은 이를 명확히 분리합니다:
+
+- **Allow** 권한은 메인 목록에 표시되며, 삭제(`[d]`)나 글로벌 복사(`[g]`)가 가능합니다
+- **Deny** 룰은 상세 뷰에서 접이식 **Deny** 섹션에 `DENY` 태그와 함께 표시됩니다
+- **Ask** 룰은 접이식 **Ask** 섹션에 표시됩니다 — 매번 확인을 요청하는 권한입니다
+- Deny와 Ask 룰은 **삭제/복사 불가** — 의도적으로 설정한 제어 규칙입니다
+- `--verbose` 출력에서 프로젝트별 Deny, Ask 섹션이 분리 표시됩니다
+- `--hey-claude-witness-me`에서 deny 룰이 "Protected rules"로 나열됩니다
+- Allow 카운트에 deny, ask 룰은 포함되지 않습니다
+
+## 추가 설정
+
+ccperm은 다음 최상위 설정도 스캔하여 표시합니다:
+
+| 필드 | 설명 |
+|------|------|
+| `allowedTools` | 사용이 허용된 도구 (예: `Bash`, `Read`, `Write`) |
+| `deniedTools` | 사용이 차단된 도구 (예: `WebSearch`) |
+| `additionalDirectories` | 프로젝트 루트 외 Claude Code가 접근할 수 있는 추가 디렉토리 |
+
+TUI 상세 뷰에서 접이식 섹션으로, `--verbose` 출력에서 별도 섹션으로 표시됩니다. Deny 룰과 마찬가지로 삭제/복사가 불가합니다.
+
 ## 위험도 분류
 
 각 권한에 [Destructive Command Guard (DCG)](https://github.com/Dicklesworthstone/destructive_command_guard)에서 영감을 받은 위험도가 부여됩니다. `--hey-claude-witness-me` 출력과 TUI 정보 모드에서 사용됩니다.

package/README.md

@@ -44,15 +44,15 @@ When running in a TTY (the default), ccperm opens a box-frame TUI:
 **List view** — Projects sorted by permission count. Columns: Bash, MCP, Tools, TOTAL, `!` (risk), `†` (deprecated `:*`), `G` (redundant with global).
 
 ```
-┌ ccperm ──────────────────────────────── 1/8 ┐
-│   PROJECT              Bash MCP Tools TOTAL G│
-├─────────────────────────────────────────────┤
-│   ~/.claude               15   ·    2    17 ·│
-├─────────────────────────────────────────────┤
-│ ▸ my-project  local  5   ·    3    8    3   │
-│   other-app   shared 2   3    ·    5    ·   │
-│                          ! risk  † deprecated  G in global │
-└──────── [↑↓] navigate  [Enter] detail  [/] search  [q] quit┘
+┌ ccperm ──────────────────────────────────────────── 1/8 ┐
+│   PROJECT                   Bash  MCP  Tools  TOTAL     │
+├─────────────────────────────────────────────────────────┤
+│   ~/.claude                   15    ·      2     17     │
+├─────────────────────────────────────────────────────────┤
+│ ▸ my-project  local            5    ·      3      8     │
+│   other-app   shared           2    3      ·      5     │
+│                       ! risk  † deprecated  G in global │
+└──── [↑↓] navigate  [Enter] detail  [/] search  [q] quit ┘
 ```
 
 **Detail view** — Press Enter to expand a project. Categories are collapsible; press Enter to toggle.
@@ -86,6 +86,30 @@ ccperm distinguishes three levels of Claude Code settings:
 
 Permissions are additive — global + shared + local are merged at runtime.
 
+## Allow vs Deny vs Ask
+
+Claude Code settings support `permissions.allow`, `permissions.deny`, and `permissions.ask`. ccperm separates them clearly:
+
+- **Allow** permissions are shown in the main list and can be deleted (`[d]`) or copied to global (`[g]`)
+- **Deny** rules appear in a collapsible **Deny** section in detail view, tagged with `DENY` and dimmed
+- **Ask** rules appear in a collapsible **Ask** section — these are permissions that prompt for confirmation each time
+- Deny and Ask rules **cannot be deleted or copied** — they are intentional controls
+- `--verbose` output shows separate Deny and Ask sections per project
+- `--hey-claude-witness-me` lists deny rules under "Protected rules"
+- Allow counts never include deny or ask rules
+
+## Additional Settings
+
+ccperm also scans and displays these top-level settings when present:
+
+| Field | Description |
+|-------|-------------|
+| `allowedTools` | Tools explicitly allowed for use (e.g. `Bash`, `Read`, `Write`) |
+| `deniedTools` | Tools explicitly denied (e.g. `WebSearch`) |
+| `additionalDirectories` | Extra directories Claude Code can access beyond the project root |
+
+These appear as collapsible sections in the TUI detail view and in `--verbose` output. Like deny rules, they cannot be deleted or copied.
+
 ## Risk Classification
 
 Each permission is assigned a risk level inspired by [Destructive Command Guard (DCG)](https://github.com/Dicklesworthstone/destructive_command_guard). Used in `--hey-claude-witness-me` output and the TUI info mode.

package/dist/advisor.js

@@ -33,10 +33,13 @@ function analyze(results) {
     }
     const critical = findings.filter((f) => f.severity === 'critical');
     const high = findings.filter((f) => f.severity === 'high');
+    // Deny stats
+    const totalDeny = results.reduce((sum, r) => sum + r.denyCount, 0);
     // Header
     lines.push(`# ccperm: Permission Audit`);
     lines.push(``);
-    lines.push(`Scanned ${results.length} settings files across ${dirs.size} projects. Found ${totalPerms} total permissions.`);
+    const denySuffix = totalDeny > 0 ? `, ${totalDeny} deny rules` : '';
+    lines.push(`Scanned ${results.length} settings files across ${dirs.size} projects. Found ${totalPerms} total permissions${denySuffix}.`);
     lines.push(``);
     // Severity summary
     const counts = { critical: critical.length, high: high.length, medium: findings.filter((f) => f.severity === 'medium').length, low: findings.filter((f) => f.severity === 'low').length };
@@ -161,6 +164,29 @@ function analyze(results) {
         }
         lines.push(``);
     }
+    // Protected rules (deny)
+    const denyFindings = [];
+    for (const r of results) {
+        const dir = (0, aggregator_js_1.projectDir)(r.display).replace(/.*\//, '');
+        for (const g of r.denyGroups) {
+            for (const item of g.items) {
+                denyFindings.push({ permission: item.name, project: dir });
+            }
+        }
+    }
+    if (denyFindings.length > 0) {
+        lines.push(`## Protected rules (deny)`);
+        lines.push(`These deny rules actively block dangerous operations and should not be removed.`);
+        const seen = new Set();
+        for (const f of denyFindings) {
+            const key = `${f.project}:${f.permission}`;
+            if (seen.has(key))
+                continue;
+            seen.add(key);
+            lines.push(`- \`${f.permission}\` in ${f.project}`);
+        }
+        lines.push(``);
+    }
     // How to act
     lines.push(`## How to act`);
     lines.push(`- Global settings: ~/.claude/settings.json`);

package/dist/aggregator.js

@@ -20,7 +20,7 @@ function toFileEntries(results) {
         }
         const fileType = r.isGlobal ? 'global' : r.display.includes('settings.local.json') ? 'local' : 'shared';
         const name = r.isGlobal ? '~/.claude' : shortPath(r.display);
-        return { display: r.display, shortName: name, totalCount: r.totalCount, groups, isGlobal: r.isGlobal, fileType };
+        return { display: r.display, shortName: name, totalCount: r.totalCount, denyCount: r.denyCount, askCount: r.askCount, groups, isGlobal: r.isGlobal, fileType };
     });
 }
 function summarize(results) {
@@ -34,11 +34,15 @@ function summarize(results) {
     const projectsWithPerms = results.filter((r) => r.totalCount > 0).length;
     const projectsEmpty = results.filter((r) => r.totalCount === 0).length;
     const totalPerms = [...categoryTotals.values()].reduce((a, b) => a + b, 0);
+    const totalDeny = results.reduce((sum, r) => sum + r.denyCount, 0);
+    const totalAsk = results.reduce((sum, r) => sum + r.askCount, 0);
     return {
         totalProjects: dirs.size,
         projectsWithPerms,
         projectsEmpty,
         totalPerms,
+        totalDeny,
+        totalAsk,
         categoryTotals,
     };
 }

package/dist/interactive.js

@@ -78,6 +78,8 @@ function refreshProject(results, withPerms, idx, filePath) {
             results[ri] = updated;
             const entry = withPerms[idx];
             entry.totalCount = updated.totalCount;
+            entry.denyCount = updated.denyCount;
+            entry.askCount = updated.askCount;
             entry.groups = new Map();
             for (const g of updated.groups)
                 entry.groups.set(g.category, g.items.length);
@@ -576,6 +578,82 @@ function renderDetail(state, withPerms, results, dupMap) {
             }
         }
     }
+    // Deny section
+    if (fileResult.denyCount > 0) {
+        const denyKey = `${fileResult.path}:__deny__`;
+        const denyOpen = state.expanded.has(denyKey);
+        const denyArrow = denyOpen ? '▾' : '▸';
+        allNavRows.push({ text: `${colors_js_1.DIM}${denyArrow} Deny${colors_js_1.NC} ${colors_js_1.DIM}(${fileResult.denyCount})${colors_js_1.NC}`, key: denyKey, isDeny: true });
+        if (denyOpen) {
+            for (const group of fileResult.denyGroups) {
+                for (const item of group.items) {
+                    const clean = cleanLabel(item.name);
+                    const maxLen = w - 16;
+                    const name = clean.length > maxLen ? clean.slice(0, maxLen - 1) + '…' : clean;
+                    allNavRows.push({ text: `  ${colors_js_1.DIM}DENY  ${name}${colors_js_1.NC}`, isDeny: true });
+                }
+            }
+        }
+    }
+    // Ask section
+    if (fileResult.askCount > 0) {
+        const askKey = `${fileResult.path}:__ask__`;
+        const askOpen = state.expanded.has(askKey);
+        const askArrow = askOpen ? '▾' : '▸';
+        allNavRows.push({ text: `${colors_js_1.YELLOW}${askArrow} Ask${colors_js_1.NC} ${colors_js_1.DIM}(${fileResult.askCount})${colors_js_1.NC}`, key: askKey, isDeny: true });
+        if (askOpen) {
+            for (const group of fileResult.askGroups) {
+                for (const item of group.items) {
+                    const clean = cleanLabel(item.name);
+                    const maxLen = w - 16;
+                    const name = clean.length > maxLen ? clean.slice(0, maxLen - 1) + '…' : clean;
+                    allNavRows.push({ text: `  ${colors_js_1.DIM}ASK   ${name}${colors_js_1.NC}`, isDeny: true });
+                }
+            }
+        }
+    }
+    // AllowedTools section
+    if (fileResult.allowedTools.length > 0) {
+        const atKey = `${fileResult.path}:__allowedTools__`;
+        const atOpen = state.expanded.has(atKey);
+        const atArrow = atOpen ? '▾' : '▸';
+        allNavRows.push({ text: `${colors_js_1.CYAN}${atArrow} AllowedTools${colors_js_1.NC} ${colors_js_1.DIM}(${fileResult.allowedTools.length})${colors_js_1.NC}`, key: atKey, isDeny: true });
+        if (atOpen) {
+            for (const t of fileResult.allowedTools) {
+                const maxLen = w - 10;
+                const name = t.length > maxLen ? t.slice(0, maxLen - 1) + '…' : t;
+                allNavRows.push({ text: `  ${colors_js_1.DIM}${name}${colors_js_1.NC}`, isDeny: true });
+            }
+        }
+    }
+    // DeniedTools section
+    if (fileResult.deniedTools.length > 0) {
+        const dtKey = `${fileResult.path}:__deniedTools__`;
+        const dtOpen = state.expanded.has(dtKey);
+        const dtArrow = dtOpen ? '▾' : '▸';
+        allNavRows.push({ text: `${colors_js_1.RED}${dtArrow} DeniedTools${colors_js_1.NC} ${colors_js_1.DIM}(${fileResult.deniedTools.length})${colors_js_1.NC}`, key: dtKey, isDeny: true });
+        if (dtOpen) {
+            for (const t of fileResult.deniedTools) {
+                const maxLen = w - 10;
+                const name = t.length > maxLen ? t.slice(0, maxLen - 1) + '…' : t;
+                allNavRows.push({ text: `  ${colors_js_1.DIM}${name}${colors_js_1.NC}`, isDeny: true });
+            }
+        }
+    }
+    // AdditionalDirectories section
+    if (fileResult.additionalDirectories.length > 0) {
+        const adKey = `${fileResult.path}:__additionalDirs__`;
+        const adOpen = state.expanded.has(adKey);
+        const adArrow = adOpen ? '▾' : '▸';
+        allNavRows.push({ text: `${colors_js_1.DIM}${adArrow} AdditionalDirectories${colors_js_1.NC} ${colors_js_1.DIM}(${fileResult.additionalDirectories.length})${colors_js_1.NC}`, key: adKey, isDeny: true });
+        if (adOpen) {
+            for (const d of fileResult.additionalDirectories) {
+                const maxLen = w - 10;
+                const name = d.length > maxLen ? d.slice(0, maxLen - 1) + '…' : d;
+                allNavRows.push({ text: `  ${colors_js_1.DIM}${name}${colors_js_1.NC}`, isDeny: true });
+            }
+        }
+    }
     const navRows = allNavRows;
     // handle toggle
     if (state._toggle) {
@@ -594,7 +672,10 @@ function renderDetail(state, withPerms, results, dupMap) {
     if (state._delete) {
         delete state._delete;
         const row = navRows[state.detailCursor];
-        if (row?.rawPerm) {
+        if (row?.isDeny) {
+            state.flash = `${colors_js_1.DIM}· Deny rules cannot be deleted${colors_js_1.NC}`;
+        }
+        else if (row?.rawPerm) {
             state.confirmDelete = { perm: row.perm, rawPerm: row.rawPerm, filePath: fileResult.path };
         }
     }
@@ -602,7 +683,10 @@ function renderDetail(state, withPerms, results, dupMap) {
     if (state._global) {
         delete state._global;
         const row = navRows[state.detailCursor];
-        if (row?.rawPerm && !project.isGlobal) {
+        if (row?.isDeny) {
+            state.flash = `${colors_js_1.DIM}· Deny rules cannot be copied${colors_js_1.NC}`;
+        }
+        else if (row?.rawPerm && !project.isGlobal) {
             state.confirmGlobal = { perm: row.perm, rawPerm: row.rawPerm };
         }
     }

package/dist/renderer.js

@@ -59,6 +59,40 @@ function printVerbose(results, summary) {
                 console.log(`      ${colors_js_1.DIM}${item.name}${colors_js_1.NC}`);
             }
         }
+        if (result.denyCount > 0) {
+            console.log(`    ${colors_js_1.RED}Deny${colors_js_1.NC} ${colors_js_1.DIM}(${result.denyCount})${colors_js_1.NC}`);
+            for (const group of result.denyGroups) {
+                for (const item of group.items) {
+                    console.log(`      ${colors_js_1.DIM}DENY  ${item.name}${colors_js_1.NC}`);
+                }
+            }
+        }
+        if (result.askCount > 0) {
+            console.log(`    ${colors_js_1.YELLOW}Ask${colors_js_1.NC} ${colors_js_1.DIM}(${result.askCount})${colors_js_1.NC}`);
+            for (const group of result.askGroups) {
+                for (const item of group.items) {
+                    console.log(`      ${colors_js_1.DIM}ASK   ${item.name}${colors_js_1.NC}`);
+                }
+            }
+        }
+        if (result.allowedTools.length > 0) {
+            console.log(`    ${colors_js_1.CYAN}AllowedTools${colors_js_1.NC} ${colors_js_1.DIM}(${result.allowedTools.length})${colors_js_1.NC}`);
+            for (const t of result.allowedTools) {
+                console.log(`      ${colors_js_1.DIM}${t}${colors_js_1.NC}`);
+            }
+        }
+        if (result.deniedTools.length > 0) {
+            console.log(`    ${colors_js_1.RED}DeniedTools${colors_js_1.NC} ${colors_js_1.DIM}(${result.deniedTools.length})${colors_js_1.NC}`);
+            for (const t of result.deniedTools) {
+                console.log(`      ${colors_js_1.DIM}${t}${colors_js_1.NC}`);
+            }
+        }
+        if (result.additionalDirectories.length > 0) {
+            console.log(`    ${colors_js_1.DIM}AdditionalDirectories${colors_js_1.NC} ${colors_js_1.DIM}(${result.additionalDirectories.length})${colors_js_1.NC}`);
+            for (const d of result.additionalDirectories) {
+                console.log(`      ${colors_js_1.DIM}${d}${colors_js_1.NC}`);
+            }
+        }
         console.log('');
     }
     if (projectsEmpty.length > 0) {
@@ -68,5 +102,7 @@ function printVerbose(results, summary) {
 function printFooter(summary) {
     console.log(`\n  ${colors_js_1.DIM}━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━${colors_js_1.NC}`);
     const catSummary = [...summary.categoryTotals.entries()].map(([k, v]) => `${k}: ${colors_js_1.BOLD}${v}${colors_js_1.NC}${colors_js_1.DIM}`).join('  ');
-    console.log(`  ${colors_js_1.BOLD}${summary.totalProjects}${colors_js_1.NC} projects  ${colors_js_1.BOLD}${summary.totalPerms}${colors_js_1.NC} permissions  ${colors_js_1.DIM}(${catSummary})${colors_js_1.NC}\n`);
+    const denySuffix = summary.totalDeny > 0 ? `  ${colors_js_1.BOLD}${summary.totalDeny}${colors_js_1.NC} deny` : '';
+    const askSuffix = summary.totalAsk > 0 ? `  ${colors_js_1.BOLD}${summary.totalAsk}${colors_js_1.NC} ask` : '';
+    console.log(`  ${colors_js_1.BOLD}${summary.totalProjects}${colors_js_1.NC} projects  ${colors_js_1.BOLD}${summary.totalPerms}${colors_js_1.NC} permissions${denySuffix}${askSuffix}  ${colors_js_1.DIM}(${catSummary})${colors_js_1.NC}\n`);
 }

package/dist/scanner.js

@@ -12,7 +12,6 @@ exports.scanFile = scanFile;
 const node_fs_1 = __importDefault(require("node:fs"));
 const node_path_1 = __importDefault(require("node:path"));
 const node_os_1 = __importDefault(require("node:os"));
-const PERM_RE = /"(Bash|Write|Edit|Read|Glob|Grep|WebSearch|WebFetch|mcp_)[^"]*"/g;
 const DEPRECATED_RE = /:\*\)|:\*"/g;
 const AUDIT_DIR = node_path_1.default.join(node_os_1.default.homedir(), '.ccperm', 'audit');
 function writeAudit(action, filePath, perm, before, after) {
@@ -202,10 +201,26 @@ function scanFile(filePath) {
     catch {
         return null;
     }
-    const perms = [...new Set((content.match(PERM_RE) || []).map((s) => s.slice(1, -1)))].sort();
+    let json;
+    try {
+        json = JSON.parse(content);
+    }
+    catch {
+        return null;
+    }
+    const allowArr = Array.isArray(json?.permissions?.allow) ? json.permissions.allow : [];
+    const denyArr = Array.isArray(json?.permissions?.deny) ? json.permissions.deny : [];
+    const askArr = Array.isArray(json?.permissions?.ask) ? json.permissions.ask : [];
+    const perms = [...new Set(allowArr)].sort();
+    const denyPerms = [...new Set(denyArr)].sort();
+    const askPerms = [...new Set(askArr)].sort();
     const groups = groupPermissions(perms);
-    const totalCount = perms.length;
-    return { path: filePath, display, permissions: perms, groups, totalCount, isGlobal };
+    const denyGroups = groupPermissions(denyPerms);
+    const askGroups = groupPermissions(askPerms);
+    const allowedTools = Array.isArray(json?.allowedTools) ? [...new Set(json.allowedTools)].sort() : [];
+    const deniedTools = Array.isArray(json?.deniedTools) ? [...new Set(json.deniedTools)].sort() : [];
+    const additionalDirectories = Array.isArray(json?.additionalDirectories) ? [...new Set(json.additionalDirectories)].sort() : [];
+    return { path: filePath, display, permissions: perms, groups, totalCount: perms.length, denyPermissions: denyPerms, denyGroups, denyCount: denyPerms.length, askPermissions: askPerms, askGroups, askCount: askPerms.length, allowedTools, deniedTools, additionalDirectories, isGlobal };
 }
 function categorize(perm) {
     if (perm.startsWith('Bash')) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "ccperm",
-  "version": "1.15.1",
+  "version": "1.17.0",
   "description": "Audit Claude Code permissions across all your projects",
   "bin": {
     "ccperm": "bin/ccperm.js"