claude-pro-minmax 1.0.0

package/scripts/claude_command_smoke.sh

@@ -0,0 +1,116 @@
+#!/usr/bin/env bash
+set -u
+
+ROOT_DIR="$(cd "$(dirname "$0")/.." && pwd)"
+cd "$ROOT_DIR" || exit 1
+
+TS="$(date +%Y%m%d-%H%M%S)"
+OUT_DIR="docs/smoke-logs/$TS"
+mkdir -p "$OUT_DIR"
+
+REPORT_MD="$OUT_DIR/COMMAND_SMOKE_REPORT.md"
+REPORT_CSV="$OUT_DIR/COMMAND_SMOKE_REPORT.csv"
+
+cat > "$REPORT_MD" <<MD
+# Claude Command Smoke Report
+
+- Generated at: $(date '+%Y-%m-%d %H:%M:%S %Z')
+- Workspace: $ROOT_DIR
+- Runner: claude -p (real Claude Code CLI)
+- Verdict rule: PASS on exit code 0, then downgraded to FAIL if output contains runtime-failure markers ('Error:', 'Failed:', 'not installed on this system', 'Reached max turns')
+
+| # | Command | Exit Code | Verdict | Output File |
+|---|---|---:|---|---|
+MD
+
+echo "index,command,exit_code,verdict,output_file" > "$REPORT_CSV"
+
+# Keep commands short/safe but real.
+declare -a COMMAND_NAMES=(
+  "/do"
+  "/do-sonnet"
+  "/do-opus"
+  "/plan"
+  "/dplan"
+  "/review"
+  "/watch"
+  "/session-save"
+  "/session-load"
+  "/compact-phase"
+  "/load-context"
+  "/learn"
+  "/analyze-failures"
+  "/llms-txt"
+)
+
+declare -a PROMPTS=(
+  "/do Reply with exactly one word: done"
+  "/do-sonnet Reply with exactly one word: done"
+  "/do-opus Reply with exactly one word: done"
+  "/plan --no-build Smoke test only: output a one-line plan for README wording cleanup."
+  "/dplan Smoke test only: output two bullet points for verifying a README update."
+  "/review README.md"
+  "/watch custom \"echo smoke-watch\""
+  "/session-save smoke-test"
+  "/session-load --list"
+  "/compact-phase planning"
+  "/load-context --list"
+  "/learn \"Smoke test pattern: keep responses concise\""
+  "/analyze-failures 5"
+  "/llms-txt nextjs"
+)
+
+run_one() {
+  local idx="$1"
+  local command_name="$2"
+  local prompt="$3"
+  local out_file="$OUT_DIR/$(printf "%02d" "$idx")-${command_name//\//}.out.txt"
+
+  # shellcheck disable=SC2086
+  claude -p "$prompt" \
+    --output-format text \
+    --max-turns 4 \
+    --permission-mode bypassPermissions \
+    --allow-dangerously-skip-permissions \
+    > "$out_file" 2>&1
+  local rc=$?
+
+  local verdict="FAIL"
+  if [ "$rc" -eq 0 ]; then
+    verdict="PASS"
+  fi
+
+  # Output-based downgrade: some slash commands return exit 0 but still report runtime failure.
+  if grep -Eqi '(^Error:|Failed:|not installed on this system|Reached max turns|write was blocked|grant write (permission|access))' "$out_file"; then
+    verdict="FAIL"
+  fi
+
+  printf '| %s | `%s` | %s | %s | `%s` |\n' "$idx" "$command_name" "$rc" "$verdict" "$out_file" >> "$REPORT_MD"
+  printf '%s,%s,%s,%s,%s\n' "$idx" "$command_name" "$rc" "$verdict" "$out_file" >> "$REPORT_CSV"
+}
+
+for i in "${!COMMAND_NAMES[@]}"; do
+  idx=$((i + 1))
+  run_one "$idx" "${COMMAND_NAMES[$i]}" "${PROMPTS[$i]}"
+done
+
+# summary block
+pass_count=$(awk -F, 'NR>1 && $4=="PASS" {c++} END {print c+0}' "$REPORT_CSV")
+fail_count=$(awk -F, 'NR>1 && $4=="FAIL" {c++} END {print c+0}' "$REPORT_CSV")
+total_count=$((pass_count + fail_count))
+
+cat >> "$REPORT_MD" <<MD
+
+## Summary
+
+- Total: $total_count
+- PASS: $pass_count
+- FAIL: $fail_count
+
+## Notes
+
+- This is a minimum smoke run, not behavioral correctness certification.
+- Raw outputs are preserved per command in the same directory.
+MD
+
+echo "$OUT_DIR"

package/scripts/commit.sh

@@ -0,0 +1,7 @@
+#!/bin/bash
+# commit.sh - Conventional commit
+set -e
+TYPE=$1; SCOPE=$2; MSG=$3
+case $TYPE in feat|fix|docs|style|refactor|perf|test|chore) ;; *) echo "Invalid type: $TYPE"; exit 1 ;; esac
+[ -z "$SCOPE" ] || [ -z "$MSG" ] && echo "Usage: $0 <type> <scope> <msg>" && exit 1
+git commit -m "${TYPE}(${SCOPE}): ${MSG}"

package/scripts/create-branch.sh

@@ -0,0 +1,14 @@
+#!/bin/bash
+# create-branch.sh - Deterministic branch creation
+set -e
+TYPE=$1; NAME=$2
+case $TYPE in
+  feature|f) PREFIX="feature" ;;
+  fix|b) PREFIX="fix" ;;
+  hotfix|h) PREFIX="hotfix" ;;
+  refactor|r) PREFIX="refactor" ;;
+  chore|c) PREFIX="chore" ;;
+  *) echo "Use: feature, fix, hotfix, refactor, chore"; exit 1 ;;
+esac
+[ -z "$NAME" ] && echo "Usage: $0 <type> <name>" && exit 1
+git checkout -b "${PREFIX}/$(echo $NAME | tr '[:upper:]' '[:lower:]' | tr ' ' '-')"

package/scripts/hooks/README.ko.md

@@ -0,0 +1,117 @@
+> **[English Version](README.md)**
+
+# Hooks Directory
+
+## 목적
+Claude Code의 공식 Hooks 시스템에서 실행되는 로컬 자동화 스크립트입니다. Hook 실행 자체는 quota를 소비하지 않으며, Claude에게 보여지는 출력 메시지만 최소한의 입력 토큰을 소비합니다.
+
+## Hook 생명주기
+
+```mermaid
+flowchart TB
+    %% 스타일 정의 %%
+    classDef startend fill:#f9f9f9,stroke:#333,stroke-width:2px;
+    classDef script fill:#ffead0,stroke:#e67e22,stroke-width:2px,stroke-dasharray: 5 5;
+    classDef process fill:#e1f5fe,stroke:#039be5,stroke-width:2px;
+    classDef decision fill:#fff9c4,stroke:#fbc02d,stroke-width:2px;
+    classDef error fill:#ffebee,stroke:#ef5350,stroke-width:2px;
+
+    Start((🚀 세션 시작)):::startend --> SS{{session-start.sh}}:::script
+    SS --> Request
+
+    subgraph WorkLoop["🔄 작업 루프"]
+        Request[📝 사용자 요청]:::process --> ToolType{도구 종류?}:::decision
+        
+        %% PreToolUse 분기 %%
+        ToolType -->|Bash| CAC{{critical-action-check.sh}}:::script
+        ToolType -->|Write/Edit<br/>reviewer| ROC{{readonly-check.sh}}:::script
+        ToolType -->|기타| Tool
+        
+        CAC -->|exit 0| Tool[⚙️ 도구 실행]:::process
+        CAC -->|exit 2| Block[🚫 차단]:::error
+        ROC -->|exit 0| Tool
+        ROC -->|exit 2| Block
+        
+        Block --> Request
+        
+        %% PostToolUse %%
+        Tool --> IsWrite{Write/Edit?}:::decision
+        IsWrite -->|Yes| PEF{{post-edit-format.sh}}:::script
+        IsWrite -->|No| Continue
+        PEF --> CS{{compact-suggest.sh}}:::script
+        CS --> Continue
+        
+        %% Notification %%
+        Continue[계속] --> Perm{권한 요청?}:::decision
+        Perm -->|Yes| NF{{notification.sh}}:::script
+        Perm -->|No| Request
+        NF --> Request
+    end
+
+    WorkLoop --> End((🏁 세션 종료)):::startend
+    End --> SC{{session-cleanup.sh}}:::script
+
+    %% Builder 전용 - 별도 플로우 %%
+    subgraph BuilderOnly["🔧 Builder Agent Only"]
+        AgentDone([에이전트 완료]) --> RC{{retry-check.sh}}:::script
+        RC -->|2회+ 실패| Escalate[⚠️ 에스컬레이션]:::error
+        RC -->|정상| Done[✅ 완료]
+    end
+```
+
+## Hook 스크립트
+
+| 스크립트 | 이벤트 | 목적 | 실행 비용 |
+|--------|-------|---------|------------|
+| `critical-action-check.sh` | PreToolUse | 위험한 Bash 명령 차단 | 로컬 (무료), 차단 시 메시지 |
+| `post-edit-format.sh` | PostToolUse | 편집된 파일 자동 포맷 | 로컬 (무료) |
+| `compact-suggest.sh` | PostToolUse | 3단계 컴팩션 경고 (25 권고 / 50 경고 / 75 위험) | 로컬 (무료), 티어당 ~30 토큰 |
+| `notification.sh` | Notification | 권한/입력 대기 시 데스크톱 알림 | 로컬 (무료) |
+| `session-start.sh` | SessionStart | 환경변수 설정 + 예산 알림 + 세션 알림 | 로컬 (무료), 예산 컨텍스트 ~40 입력 토큰 |
+| `session-cleanup.sh` | SessionEnd | 비밀 정보 제거 + 세션 요약 저장 | 로컬 (무료) |
+| `retry-check.sh` | Stop | 연속 2회 실패 시 차단 (builder만) | 로컬 (무료), 에스컬레이션 메시지 |
+| `stop-collect-context.sh` | Stop | 실패 컨텍스트 수집 (선택 사항) | 로컬 (무료) |
+| `readonly-check.sh` | PreToolUse | 읽기 전용 적용 (reviewer) | 로컬 (무료), 차단 시 메시지 |
+| `pre-compact.sh` | PreCompact | 압축 전 상태 저장 | 로컬 (무료) |
+| `tool-failure-log.sh` | PostToolUseFailure | 도구 실패 로깅 | 로컬 (무료) |
+
+**비용 설명:** 모든 Hook은 머신에서 로컬로 실행되어 API 호출이 없습니다. Hook이 Claude에게 메시지를 표시할 때만(예: 명령 차단, 컴팩션 제안) 해당 메시지가 입력 토큰을 소비하며, 이러한 메시지는 의도적으로 간결합니다.
+
+## 종료 코드
+
+| 코드 | 동작 |
+|------|----------|
+| 0 | 정상 계속 |
+| 1 | 오류 (기록됨, 계속) |
+| 2 | 도구 실행 **차단** 및 피드백 |
+
+## 입출력
+
+Hooks는 stdin을 통해 JSON을 받습니다. 스키마는 이벤트 유형에 따라 다릅니다.
+
+**예시 (PreToolUse/Bash):**
+```json
+{
+  "tool_name": "Bash",
+  "tool_input": { "command": "git push --force" }
+}
+```
+
+**예시 (Stop):**
+```json
+{
+  "stop_hook_active": true,
+  "transcript_path": "/path/to/transcript"
+}
+```
+
+차단(exit 2) 시 **stderr**로의 출력이 Claude에게 표시됩니다. 참고: exit 2에서는 stdout JSON이 처리되지 않습니다.
+
+> **참고:** 정확한 스키마는 공식 Claude Code 문서를 참조하세요: https://code.claude.com/docs/ko/hooks
+
+## 새 Hook 추가
+
+1. 이 디렉토리에 스크립트 생성
+2. 실행 가능하게 만들기: `chmod +x script.sh`
+3. `settings.json` 또는 에이전트 frontmatter에 추가
+4. 다양한 입력으로 테스트

package/scripts/hooks/README.md

@@ -0,0 +1,118 @@
+> **[한국어 버전](README.ko.md)**
+
+# Hooks Directory
+
+## Purpose
+Local automation scripts executed by Claude Code's official Hooks system. Hook execution itself consumes zero quota—only their output messages (when shown to Claude) consume minimal input tokens.
+
+## Hook Lifecycle
+
+```mermaid
+flowchart TB
+    %% Style definitions %%
+    classDef startend fill:#f9f9f9,stroke:#333,stroke-width:2px;
+    classDef script fill:#ffead0,stroke:#e67e22,stroke-width:2px,stroke-dasharray: 5 5;
+    classDef process fill:#e1f5fe,stroke:#039be5,stroke-width:2px;
+    classDef decision fill:#fff9c4,stroke:#fbc02d,stroke-width:2px;
+    classDef error fill:#ffebee,stroke:#ef5350,stroke-width:2px;
+
+    Start((🚀 Session Start)):::startend --> SS{{session-start.sh}}:::script
+    SS --> Request
+
+    subgraph WorkLoop["🔄 Work Loop"]
+        Request[📝 User Request]:::process --> ToolType{Tool Type?}:::decision
+        
+        %% PreToolUse branches %%
+        ToolType -->|Bash| CAC{{critical-action-check.sh}}:::script
+        ToolType -->|Write/Edit<br/>reviewer| ROC{{readonly-check.sh}}:::script
+        ToolType -->|Other| Tool
+        
+        CAC -->|exit 0| Tool[⚙️ Tool Execution]:::process
+        CAC -->|exit 2| Block[🚫 Blocked]:::error
+        ROC -->|exit 0| Tool
+        ROC -->|exit 2| Block
+        
+        Block --> Request
+        
+        %% PostToolUse %%
+        Tool --> IsWrite{Write/Edit?}:::decision
+        IsWrite -->|Yes| PEF{{post-edit-format.sh}}:::script
+        IsWrite -->|No| Continue
+        PEF --> CS{{compact-suggest.sh}}:::script
+        CS --> Continue
+        
+        %% Notification %%
+        Continue[Continue] --> Perm{Permission?}:::decision
+        Perm -->|Yes| NF{{notification.sh}}:::script
+        Perm -->|No| Request
+        NF --> Request
+    end
+
+    WorkLoop --> End((🏁 Session End)):::startend
+    End --> SC{{session-cleanup.sh}}:::script
+
+    %% Builder only - separate flow %%
+    subgraph BuilderOnly["🔧 Builder Agent Only"]
+        AgentDone([Agent Complete]) --> RC{{retry-check.sh}}:::script
+        RC -->|2+ failures| Escalate[⚠️ Escalate]:::error
+        RC -->|OK| Done[✅ Done]
+    end
+```
+
+## Hook Scripts
+
+| Script | Event | Purpose | Execution Cost |
+|--------|-------|---------|----------------|
+| `critical-action-check.sh` | PreToolUse | Block dangerous Bash commands | Local (zero), blocking message if triggered |
+| `post-edit-format.sh` | PostToolUse | Auto-format edited files | Local (zero) |
+| `compact-suggest.sh` | PostToolUse | 3-tier compact warnings (25 advisory / 50 warning / 75 critical) | Local (zero), ~30 tokens per tier |
+| `notification.sh` | Notification | Desktop alert on permission/idle | Local (zero) |
+| `session-start.sh` | SessionStart | Env setup + budget reminder + session notify | Local (zero), ~40 input tokens for budget context |
+| `session-cleanup.sh` | SessionEnd | Scrub secrets + save session summary | Local (zero) |
+| `retry-check.sh` | Stop | Enforce 2-retry cap (builder only) | Local (zero), escalation message if triggered |
+| `stop-collect-context.sh` | Stop | Collect failure contexts (optional) | Local (zero) |
+| `readonly-check.sh` | PreToolUse | Enforce read-only (reviewer) | Local (zero), blocking message if triggered |
+| `pre-compact.sh` | PreCompact | Save state before compaction | Local (zero) |
+| `tool-failure-log.sh` | PostToolUseFailure | Log failures for debugging | Local (zero) |
+
+**Cost Explanation:** All hooks run locally on your machine without API calls. Only when a hook displays a message to Claude (e.g., blocking a command, suggesting compaction) does that message consume input tokens—and these messages are intentionally brief.
+
+## Exit Codes
+
+| Code | Behavior |
+|------|----------|
+| 0 | Continue normally |
+| 1 | Error (logged, continues) |
+| 2 | **Block** tool execution with feedback |
+
+## Input/Output
+
+Hooks receive JSON via stdin. Schema varies by event type.
+
+**Example (PreToolUse/Bash):**
+```json
+{
+  "tool_name": "Bash",
+  "tool_input": { "command": "git push --force" }
+}
+```
+
+**Example (Stop):**
+```json
+{
+  "stop_hook_active": true,
+  "transcript_path": "/path/to/transcript"
+}
+```
+
+Output to **stderr** is shown to Claude when blocking (exit 2). Note: stdout JSON is NOT processed for exit code 2.
+
+> **Note:** For exact schemas, see official Claude Code documentation: https://code.claude.com/docs/hooks
+
+## Adding New Hooks
+
+1. Create script in this directory
+2. Make executable: `chmod +x script.sh`
+3. Add to `settings.json` or agent frontmatter
+4. Test with various inputs
+

package/scripts/hooks/compact-suggest.sh

@@ -0,0 +1,52 @@
+#!/bin/bash
+# compact-suggest.sh - PostToolUse Hook (After Edit/Write completion)
+# 3-tier progressive warnings for context growth management
+# Tier 1: 25 (advisory) | Tier 2: 50 (warning) | Tier 3: 75 (critical)
+set -euo pipefail
+
+INPUT=$(cat)
+SESSION_ID=$(echo "$INPUT" | jq -r '.session_id // "default"')
+
+COUNTER_FILE="/tmp/claude-tool-count-$SESSION_ID"
+
+# Increment counter
+count=$(($(cat "$COUNTER_FILE" 2>/dev/null || echo 0) + 1))
+echo "$count" > "$COUNTER_FILE"
+
+# Tier 1: Advisory (25 tool calls)
+if [ "$count" -eq 25 ]; then
+  cat <<EOF
+{
+  "hookSpecificOutput": {
+    "hookEventName": "PostToolUse",
+    "additionalContext": "[COMPACT-ADVISORY] 25 tool calls. Context growing — consider /compact-phase at next logical break."
+  }
+}
+EOF
+fi
+
+# Tier 2: Warning (50 tool calls)
+if [ "$count" -eq 50 ]; then
+  cat <<EOF
+{
+  "hookSpecificOutput": {
+    "hookEventName": "PostToolUse",
+    "additionalContext": "[COMPACT-WARNING] 50 tool calls. Quota burn rate increasing — run /compact before next task."
+  }
+}
+EOF
+fi
+
+# Tier 3: Critical (75 tool calls — approaching auto-compact at 75% context)
+if [ "$count" -eq 75 ]; then
+  cat <<EOF
+{
+  "hookSpecificOutput": {
+    "hookEventName": "PostToolUse",
+    "additionalContext": "[COMPACT-CRITICAL] 75 tool calls. High context — /compact NOW or /session-save + new session."
+  }
+}
+EOF
+fi
+
+exit 0

package/scripts/hooks/critical-action-check.sh

@@ -0,0 +1,68 @@
+#!/bin/bash
+# critical-action-check.sh - PreToolUse Hook
+# Block dangerous commands (0 tokens, ~50 tokens on block)
+# Hardened Hook + Multi-Runtime
+
+set -euo pipefail
+
+INPUT=$(cat)
+COMMAND=$(echo "$INPUT" | jq -r '.tool_input.command // empty')
+
+# If not a Bash tool or no command, skip
+[ -z "$COMMAND" ] && exit 0
+
+# 1. Direct Dangerous Commands (CRITICAL)
+DIRECT_PATTERNS=(
+  'rm -rf /'
+  'rm -rf ~'
+  'rm -rf \.'
+  'git push.*--force'
+  'git reset --hard'
+  'DROP TABLE'
+  'TRUNCATE'
+)
+
+for pattern in "${DIRECT_PATTERNS[@]}"; do
+  if echo "$COMMAND" | grep -iE "$pattern" > /dev/null 2>&1; then
+    echo "CRITICAL: Blocked dangerous command: $COMMAND" >&2
+    exit 2
+  fi
+done
+
+# Block DELETE FROM without WHERE (Separate handling as ERE does not support negative lookahead)
+if echo "$COMMAND" | grep -iE 'DELETE FROM' > /dev/null 2>&1; then
+  if ! echo "$COMMAND" | grep -iE 'WHERE' > /dev/null 2>&1; then
+    echo "CRITICAL: Blocked DELETE FROM without WHERE clause: $COMMAND" >&2
+    exit 2
+  fi
+fi
+
+# 2. Indirect Dangerous Scripts (WARNING -> BLOCK)
+# Multi-runtime support
+INDIRECT_PATTERNS=(
+  'npm run.*\b(clean|reset|nuke|purge)\b'
+  'yarn.*\b(clean|reset|nuke|purge)\b'
+  'pnpm.*\b(clean|reset|nuke|purge)\b'
+  './gradlew.*\b(clean)\b'
+  'gradle.*\b(clean)\b'
+  'mvn.*\b(clean)\b'
+  'cargo.*\b(clean)\b'
+  'go.*\b(clean)\b'
+  '\b(db:reset|db:drop|migrate:reset)\b'
+  '\b(deploy:prod|deploy:production)\b'
+)
+
+for pattern in "${INDIRECT_PATTERNS[@]}"; do
+  if echo "$COMMAND" | grep -iE "$pattern" > /dev/null 2>&1; then
+    echo "WARNING: Blocked indirect dangerous script: $COMMAND" >&2
+    exit 2
+  fi
+done
+
+# 3. Detect Git Conflict
+if echo "$COMMAND" | grep -E '(CONFLICT|<<<<<<<|>>>>>>>)' > /dev/null 2>&1; then
+  echo "CONFLICT: Git conflict detected. Manual resolution required." >&2
+  exit 2
+fi
+
+exit 0

package/scripts/hooks/notification.sh

@@ -0,0 +1,47 @@
+#!/bin/bash
+# notification.sh - Notification Hook
+# Desktop notification for permission prompts / idle state (0 tokens)
+# Official Guide: https://code.claude.com/docs/en/hooks-guide
+set -euo pipefail
+
+INPUT=$(cat)
+TYPE=$(echo "$INPUT" | jq -r '.notification_type // empty')
+MESSAGE=$(echo "$INPUT" | jq -r '.message // "Claude Code Notification"')
+
+# Notification function (OS-specific)
+send_notification() {
+  local title="$1"
+  local body="$2"
+  
+  # macOS
+  if command -v osascript &>/dev/null; then
+    osascript -e "display notification \"$body\" with title \"$title\"" 2>/dev/null || true
+    return
+  fi
+  
+  # Linux (notify-send)
+  if command -v notify-send &>/dev/null; then
+    notify-send "$title" "$body" 2>/dev/null || true
+    return
+  fi
+  
+  # Windows (PowerShell)
+  if command -v powershell.exe &>/dev/null; then
+    powershell.exe -Command "[System.Windows.Forms.MessageBox]::Show('$body', '$title')" 2>/dev/null || true
+    return
+  fi
+}
+
+case "$TYPE" in
+  permission_prompt)
+    send_notification "Claude Code" "🔐 Permission required"
+    ;;
+  idle_prompt)
+    send_notification "Claude Code" "⏳ Waiting for input"
+    ;;
+  *)
+    # Ignore other notifications (to save resources)
+    ;;
+esac
+
+exit 0

package/scripts/hooks/post-edit-format.sh

@@ -0,0 +1,39 @@
+#!/bin/bash
+# post-edit-format.sh - PostToolUse Hook
+# Auto-formatting after file edits (0 tokens)
+# Hardened Hook
+
+set -euo pipefail
+
+INPUT=$(cat)
+FILE_PATH=$(echo "$INPUT" | jq -r '.tool_input.file_path // .tool_response.filePath // empty')
+
+# Skip if file path is missing or file does not exist
+[ -z "$FILE_PATH" ] && exit 0
+[ ! -f "$FILE_PATH" ] && exit 0
+
+# Select formatter by extension
+case "$FILE_PATH" in
+  *.ts|*.tsx|*.js|*.jsx|*.json|*.css|*.md)
+    if command -v prettier &>/dev/null; then
+      prettier --write "$FILE_PATH" 2>/dev/null || true
+    fi
+    ;;
+  *.py)
+    if command -v black &>/dev/null; then
+      black --quiet "$FILE_PATH" 2>/dev/null || true
+    fi
+    ;;
+  *.go)
+    if command -v gofmt &>/dev/null; then
+      gofmt -w "$FILE_PATH" 2>/dev/null || true
+    fi
+    ;;
+  *.rs)
+    if command -v rustfmt &>/dev/null; then
+      rustfmt "$FILE_PATH" 2>/dev/null || true
+    fi
+    ;;
+esac
+
+exit 0

package/scripts/hooks/pre-compact.sh

@@ -0,0 +1,55 @@
+#!/bin/bash
+# pre-compact.sh - PreCompact Hook
+# Automatically save state before context compaction (0 tokens)
+# Hardened Hook
+
+set -euo pipefail
+
+INPUT=$(cat)
+
+# Check jq dependency
+if ! command -v jq &> /dev/null; then
+    echo "Error: jq is required but not installed." >&2
+    exit 1
+fi
+
+SESSION_DIR="$HOME/.claude/sessions"
+mkdir -p "$SESSION_DIR"
+
+# Compaction trigger type (manual/auto)
+TRIGGER=$(echo "$INPUT" | jq -r '.trigger // "unknown"')
+TIMESTAMP=$(date +"%Y-%m-%d_%H-%M-%S")
+SESSION_ID=$(echo "$INPUT" | jq -r '.session_id // "unknown"')
+
+# Create state file
+STATE_FILE="$SESSION_DIR/${TIMESTAMP}-pre-compact.md"
+
+cat > "$STATE_FILE" <<EOF
+---
+type: pre-compact
+trigger: $TRIGGER
+session_id: $SESSION_ID
+timestamp: $(date +"%Y-%m-%d %H:%M:%S")
+---
+
+# Pre-Compact State
+
+## Trigger
+- Type: $TRIGGER
+- Time: $(date +"%H:%M:%S")
+
+## Working Directory
+$(pwd)
+
+## Git Status
+$(git status --short 2>/dev/null || echo "Not a git repository")
+
+## Recent Modified Files
+$(find . -type f \( -name "*.md" -o -name "*.ts" -o -name "*.js" -o -name "*.sh" -o -name "*.json" \) -mmin -30 2>/dev/null | head -10 || echo "No recent files")
+
+## Context Hint
+[Claude: Refer to this file to resume work after compaction]
+EOF
+
+echo "[PreCompact] State saved: $STATE_FILE" >&2
+exit 0

package/scripts/hooks/readonly-check.sh

@@ -0,0 +1,19 @@
+#!/bin/bash
+# readonly-check.sh - PreToolUse Hook (For Reviewer Subagent)
+# Block Write/Edit operations (0 tokens, ~50 tokens on block)
+# Hardened Hook
+
+set -euo pipefail
+
+INPUT=$(cat)
+TOOL_NAME=$(echo "$INPUT" | jq -r '.tool_name // empty')
+
+# Block writing tools
+case "$TOOL_NAME" in
+  Write|Edit|NotebookEdit)
+    echo "READONLY: Reviewer agent cannot modify files. Read-only access only." >&2
+    exit 2
+    ;;
+esac
+
+exit 0