claude-yolo 1.5.1 → 1.6.1

package/README.md

@@ -1,6 +1,8 @@
 # Claude YOLO
 
-A wrapper for the Claude CLI that always enables danger mode by bypassing Docker and internet permission checks.
+A wrapper for the Claude CLI that ALWAYS enables --dangerously-skip-permissions mode AND bypasses Docker and internet permission checks so that you can run in danger mode anywhere, anytime.
+
+⚠️ **SECURITY WARNING**: This wrapper bypasses important safety checks! This completely bypasses the "human in the loop" checks, this could delete your data, leak your secrets and even brick your computer. Use at your own risk.
 
 ## Installation
 
@@ -8,6 +10,12 @@ A wrapper for the Claude CLI that always enables danger mode by bypassing Docker
 npm install -g claude-yolo
 ```
 
+The first time you run `claude-yolo`, you will be presented with a consent prompt explaining the security implications. You must explicitly agree to continue.
+
+<img width="750" alt="image" src="https://github.com/user-attachments/assets/f8e07cf0-6c43-4663-b9e2-f61b1afb4e99" />
+
+Your consent choice is remembered for future runs.
+
 GitHub: [https://github.com/eastlondoner/claude-yolo](https://github.com/eastlondoner/claude-yolo)
 
 ## Usage
@@ -29,6 +37,18 @@ This wrapper:
 5. Adds the `--dangerously-skip-permissions` flag to command line arguments
 6. Imports the modified copy of the CLI
 
+## New in Version 1.6.1
+
+- **Runtime Consent Check**: Now requires explicit user consent on first run
+- **Consent Persistence**: Remembers user consent for future runs
+- **Fixed Global Installation**: Consent prompt will properly show for both local and global installations
+
+## New in Version 1.6.0
+
+- **Installation Consent Prompt**: Added explicit user consent during installation
+- **Enhanced Security Warnings**: Clear explanations of the security implications
+- **Installation Abort Option**: Users can cancel installation if they don't agree with the security implications
+
 ## New in Version 1.5.0
 
 - **YOLO Mode Warning**: Displays a "🔥 YOLO MODE ACTIVATED 🔥" warning in yellow text
@@ -74,6 +94,16 @@ Claude YOLO automatically checks for updates to the Claude package each time it
    - Notify you that an update was applied
 3. This ensures you're always using the latest Claude CLI features
 
-## Disclaimer
+## Important Security Disclaimer
+
+This is an unofficial tool and not supported by Anthropic. Use at your own risk.
 
-This is an unofficial tool and not supported by Anthropic. Use at your own risk.
+**SECURITY WARNING**:
+- This tool bypasses safety mechanisms intentionally built into the Claude CLI
+- The `--dangerously-skip-permissions` flag was designed for use in container environments
+- By using this tool, you acknowledge that:
+  - Important safety checks are being bypassed
+  - Claude may access files it normally would not have permission to access
+  - You accept full responsibility for any security implications
+  
+Anthropic designed these safety checks for good reason. Only use claude-yolo if you fully understand and accept these risks.

package/bin/claude-yolo.js

@@ -6,6 +6,14 @@ import path from 'path';
 import { createRequire } from 'module';
 import { fileURLToPath } from 'url';
 import { execSync } from 'child_process';
+import readline from 'readline';
+
+// ANSI color codes
+const RED = '\x1b[31m';
+const YELLOW = '\x1b[33m';
+const CYAN = '\x1b[36m';
+const RESET = '\x1b[0m';
+const BOLD = '\x1b[1m';
 
 // Debug logging function that only logs if DEBUG env var is set
 const debug = (message) => {
@@ -14,6 +22,50 @@ const debug = (message) => {
   }
 };
 
+// Function to ask for user consent
+function askForConsent() {
+  return new Promise((resolve) => {
+    const rl = readline.createInterface({
+      input: process.stdin,
+      output: process.stdout
+    });
+
+    console.log(`\n${BOLD}${YELLOW}🔥 CLAUDE-YOLO INSTALLATION CONSENT REQUIRED 🔥${RESET}\n`);
+    console.log(`${CYAN}----------------------------------------${RESET}`);
+    console.log(`${BOLD}What is claude-yolo?${RESET}`);
+    console.log(`This package creates a wrapper around the official Claude CLI tool that:`);
+    console.log(`  1. ${RED}BYPASSES safety checks${RESET} by automatically adding the --dangerously-skip-permissions flag`);
+    console.log(`  2. Automatically updates to the latest Claude CLI version`);
+    console.log(`  3. Adds colorful YOLO-themed loading messages\n`);
+
+    console.log(`${BOLD}${RED}⚠️ IMPORTANT SECURITY WARNING ⚠️${RESET}`);
+    console.log(`The ${BOLD}--dangerously-skip-permissions${RESET} flag was designed for use in containers`);
+    console.log(`and bypasses important safety checks. This includes ignoring file access`);
+    console.log(`permissions that protect your system and privacy.\n`);
+
+    console.log(`${BOLD}By using claude-yolo:${RESET}`);
+    console.log(`  • You acknowledge these safety checks are being bypassed`);
+    console.log(`  • You understand this may allow Claude CLI to access sensitive files`);
+    console.log(`  • You accept full responsibility for any security implications\n`);
+
+    console.log(`${CYAN}----------------------------------------${RESET}\n`);
+
+    rl.question(`${YELLOW}Do you consent to using claude-yolo with these modifications? (yes/no): ${RESET}`, (answer) => {
+      rl.close();
+      const lowerAnswer = answer.toLowerCase().trim();
+      if (lowerAnswer === 'yes' || lowerAnswer === 'y') {
+        console.log(`\n${YELLOW}🔥 YOLO MODE APPROVED 🔥${RESET}`);
+        resolve(true);
+      } else {
+        console.log(`\n${CYAN}Aborted. YOLO mode not activated.${RESET}`);
+        console.log(`If you want the official Claude CLI with normal safety features, run:`);
+        console.log(`claude`);
+        resolve(false);
+      }
+    });
+  });
+}
+
 // Get the directory of the current module
 const __dirname = path.dirname(fileURLToPath(import.meta.url));
 const require = createRequire(import.meta.url);
@@ -71,65 +123,96 @@ async function checkForUpdates() {
 const claudeDir = path.join(nodeModulesDir, 'node_modules', '@anthropic-ai', 'claude-code');
 const originalCliPath = path.join(claudeDir, 'cli.mjs');
 const yoloCliPath = path.join(claudeDir, 'cli-yolo.mjs');
+const consentFlagPath = path.join(claudeDir, '.claude-yolo-consent');
 
-// Check and update Claude package first
-await checkForUpdates();
+// Main function to run the application
+async function run() {
+  // Check and update Claude package first
+  await checkForUpdates();
 
-if (!fs.existsSync(originalCliPath)) {
-  console.error(`Error: ${originalCliPath} not found. Make sure @anthropic-ai/claude-code is installed.`);
-  process.exit(1);
-}
-
-// Read the original CLI file content
-let cliContent = fs.readFileSync(originalCliPath, 'utf8');
-
-// Replace getIsDocker() calls with true
-cliContent = cliContent.replace(/[a-zA-Z0-9_]*\.getIsDocker\(\)/g, 'true');
-debug("Replaced all instances of *.getIsDocker() with true");
-
-// Replace hasInternetAccess() calls with false
-cliContent = cliContent.replace(/[a-zA-Z0-9_]*\.hasInternetAccess\(\)/g, 'false');
-debug("Replaced all instances of *.hasInternetAccess() with false");
+  if (!fs.existsSync(originalCliPath)) {
+    console.error(`Error: ${originalCliPath} not found. Make sure @anthropic-ai/claude-code is installed.`);
+    process.exit(1);
+  }
 
-// Add warning message
-console.log("\x1b[33m🔥 YOLO MODE ACTIVATED 🔥\x1b[0m");
+  // Check if consent is needed
+  const consentNeeded = !fs.existsSync(yoloCliPath) || !fs.existsSync(consentFlagPath);
+  
+  // If consent is needed and not already given, ask for it
+  if (consentNeeded) {
+    const consent = await askForConsent();
+    if (!consent) {
+      // User didn't consent, exit
+      process.exit(1);
+    }
+    
+    // Create a flag file to remember that consent was given
+    try {
+      fs.writeFileSync(consentFlagPath, 'consent-given');
+      debug("Created consent flag file");
+    } catch (err) {
+      debug(`Error creating consent flag file: ${err.message}`);
+      // Continue anyway
+    }
+  }
 
-// Replace the loading messages array with YOLO versions
-const originalArray = '["Accomplishing","Actioning","Actualizing","Baking","Brewing","Calculating","Cerebrating","Churning","Clauding","Coalescing","Cogitating","Computing","Conjuring","Considering","Cooking","Crafting","Creating","Crunching","Deliberating","Determining","Doing","Effecting","Finagling","Forging","Forming","Generating","Hatching","Herding","Honking","Hustling","Ideating","Inferring","Manifesting","Marinating","Moseying","Mulling","Mustering","Musing","Noodling","Percolating","Pondering","Processing","Puttering","Reticulating","Ruminating","Schlepping","Shucking","Simmering","Smooshing","Spinning","Stewing","Synthesizing","Thinking","Transmuting","Vibing","Working"]';
-const yoloSuffixes = [
-  " \x1b[31m(safety's off, hold on tight)\x1b[0m",
-  " \x1b[33m(all gas, no brakes, lfg)\x1b[0m",
-  " \x1b[35m(yolo mode engaged)\x1b[0m",
-  " \x1b[36m(dangerous mode! I guess you can just do things)\x1b[0m"
-];
+  // Read the original CLI file content
+  let cliContent = fs.readFileSync(originalCliPath, 'utf8');
+
+  // Replace getIsDocker() calls with true
+  cliContent = cliContent.replace(/[a-zA-Z0-9_]*\.getIsDocker\(\)/g, 'true');
+  debug("Replaced all instances of *.getIsDocker() with true");
+
+  // Replace hasInternetAccess() calls with false
+  cliContent = cliContent.replace(/[a-zA-Z0-9_]*\.hasInternetAccess\(\)/g, 'false');
+  debug("Replaced all instances of *.hasInternetAccess() with false");
+
+  // Add warning message
+  console.log(`${YELLOW}🔥 YOLO MODE ACTIVATED 🔥${RESET}`);
+
+  // Replace the loading messages array with YOLO versions
+  const originalArray = '["Accomplishing","Actioning","Actualizing","Baking","Brewing","Calculating","Cerebrating","Churning","Clauding","Coalescing","Cogitating","Computing","Conjuring","Considering","Cooking","Crafting","Creating","Crunching","Deliberating","Determining","Doing","Effecting","Finagling","Forging","Forming","Generating","Hatching","Herding","Honking","Hustling","Ideating","Inferring","Manifesting","Marinating","Moseying","Mulling","Mustering","Musing","Noodling","Percolating","Pondering","Processing","Puttering","Reticulating","Ruminating","Schlepping","Shucking","Simmering","Smooshing","Spinning","Stewing","Synthesizing","Thinking","Transmuting","Vibing","Working"]';
+  const yoloSuffixes = [
+    ` ${RED}(safety's off, hold on tight)${RESET}`,
+    ` ${YELLOW}(all gas, no brakes, lfg)${RESET}`,
+    ` ${BOLD}\x1b[35m(yolo mode engaged)${RESET}`,
+    ` ${CYAN}(dangerous mode! I guess you can just do things)${RESET}`
+  ];
+
+  // Function to add a random YOLO suffix to each word in the array
+  const addYoloSuffixes = (arrayStr) => {
+    try {
+      const array = JSON.parse(arrayStr);
+      const yoloArray = array.map(word => {
+        const randomSuffix = yoloSuffixes[Math.floor(Math.random() * yoloSuffixes.length)];
+        return word + randomSuffix;
+      });
+      return JSON.stringify(yoloArray);
+    } catch (e) {
+      debug(`Error modifying loading messages array: ${e.message}`);
+      return arrayStr;
+    }
+  };
 
-// Function to add a random YOLO suffix to each word in the array
-const addYoloSuffixes = (arrayStr) => {
-  try {
-    const array = JSON.parse(arrayStr);
-    const yoloArray = array.map(word => {
-      const randomSuffix = yoloSuffixes[Math.floor(Math.random() * yoloSuffixes.length)];
-      return word + randomSuffix;
-    });
-    return JSON.stringify(yoloArray);
-  } catch (e) {
-    debug(`Error modifying loading messages array: ${e.message}`);
-    return arrayStr;
-  }
-};
+  cliContent = cliContent.replace(originalArray, addYoloSuffixes(originalArray));
+  debug("Replaced loading messages with YOLO versions");
 
-cliContent = cliContent.replace(originalArray, addYoloSuffixes(originalArray));
-debug("Replaced loading messages with YOLO versions");
+  // Write the modified content to a new file, leaving the original untouched
+  fs.writeFileSync(yoloCliPath, cliContent);
+  debug(`Created modified CLI at ${yoloCliPath}`);
+  debug("Modifications complete. The --dangerously-skip-permissions flag should now work everywhere.");
 
-// Write the modified content to a new file, leaving the original untouched
-fs.writeFileSync(yoloCliPath, cliContent);
-debug(`Created modified CLI at ${yoloCliPath}`);
-debug("Modifications complete. The --dangerously-skip-permissions flag should now work everywhere.");
+  // Add the --dangerously-skip-permissions flag to the command line arguments
+  // This will ensure it's passed to the CLI even if the user didn't specify it
+  process.argv.splice(2, 0, '--dangerously-skip-permissions');
+  debug("Added --dangerously-skip-permissions flag to command line arguments");
 
-// Add the --dangerously-skip-permissions flag to the command line arguments
-// This will ensure it's passed to the CLI even if the user didn't specify it
-process.argv.splice(2, 0, '--dangerously-skip-permissions');
-debug("Added --dangerously-skip-permissions flag to command line arguments");
+  // Now import the modified CLI
+  await import(yoloCliPath);
+}
 
-// Now import the modified CLI
-import(yoloCliPath);
+// Run the main function
+run().catch(err => {
+  console.error("Error:", err);
+  process.exit(1);
+});

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "claude-yolo",
-  "version": "1.5.1",
+  "version": "1.6.1",
   "description": "YOLO wrapper for Claude CLI with danger mode always enabled, auto-updates, and colorful loading messages",
   "bin": {
     "claude-yolo": "./bin/claude-yolo.js"
@@ -9,6 +9,8 @@
     "@anthropic-ai/claude-code": "0.2.14"
   },
   "type": "module",
+  "scripts": {
+  },
   "repository": {
     "type": "git",
     "url": "git+https://github.com/eastlondoner/claude-yolo.git"

package/postinstall.js

@@ -0,0 +1,52 @@
+#!/usr/bin/env node
+
+import readline from 'readline';
+
+// ANSI color codes
+const RED = '\x1b[31m';
+const YELLOW = '\x1b[33m';
+const CYAN = '\x1b[36m';
+const RESET = '\x1b[0m';
+const BOLD = '\x1b[1m';
+
+// Create readline interface for user input
+const rl = readline.createInterface({
+  input: process.stdin,
+  output: process.stdout
+});
+
+console.log(`\n${BOLD}${YELLOW}🔥 CLAUDE-YOLO INSTALLATION CONSENT REQUIRED 🔥${RESET}\n`);
+console.log(`${CYAN}----------------------------------------${RESET}`);
+console.log(`${BOLD}What is claude-yolo?${RESET}`);
+console.log(`This package creates a wrapper around the official Claude CLI tool that:`);
+console.log(`  1. ${RED}BYPASSES safety checks${RESET} by automatically adding the --dangerously-skip-permissions flag`);
+console.log(`  2. Automatically updates to the latest Claude CLI version`);
+console.log(`  3. Adds colorful YOLO-themed loading messages\n`);
+
+console.log(`${BOLD}${RED}⚠️ IMPORTANT SECURITY WARNING ⚠️${RESET}`);
+console.log(`The ${BOLD}--dangerously-skip-permissions${RESET} flag was designed for use in containers`);
+console.log(`and bypasses important safety checks. This includes ignoring file access`);
+console.log(`permissions that protect your system and privacy.\n`);
+
+console.log(`${BOLD}By using claude-yolo:${RESET}`);
+console.log(`  • You acknowledge these safety checks are being bypassed`);
+console.log(`  • You understand this may allow Claude CLI to access sensitive files`);
+console.log(`  • You accept full responsibility for any security implications\n`);
+
+console.log(`${CYAN}----------------------------------------${RESET}\n`);
+
+// Ask for explicit consent
+rl.question(`${YELLOW}Do you consent to installing claude-yolo with these modifications? (yes/no): ${RESET}`, (answer) => {
+  const lowerAnswer = answer.toLowerCase().trim();
+  
+  if (lowerAnswer === 'yes' || lowerAnswer === 'y') {
+    console.log(`\n${YELLOW}🔥 YOLO MODE INSTALLATION APPROVED 🔥${RESET}`);
+    console.log(`Installation will continue. Use 'claude-yolo' instead of 'claude' to run in YOLO mode.`);
+    process.exit(0); // Success exit code
+  } else {
+    console.log(`\n${CYAN}Installation cancelled by user.${RESET}`);
+    console.log(`If you want the official Claude CLI with normal safety features, run:`);
+    console.log(`npm install -g @anthropic-ai/claude-code`);
+    process.exit(1); // Error exit code to abort installation
+  }
+});