failproofai 0.0.5-beta.0 → 0.0.6-beta.0

package/.next/standalone/docs/zh/custom-policies.mdx

@@ -1,10 +1,10 @@
 ---
 title: 自定义策略
-description: "用 JavaScript 编写您自己的策略——强制执行项目规范、防止偏离、检测失败、与外部系统集成"
+description: "用 JavaScript 编写自己的策略——强制执行项目规范、防止偏离、检测失败、与外部系统集成"
 icon: code
 ---
 
-自定义策略允许您为任何 Agent 行为编写规则：强制执行项目规范、防止偏离、限制破坏性操作、检测卡死的 Agent，或与 Slack、审批工作流等系统集成。它们使用与内置策略相同的 hook 事件系统以及 `allow`、`deny`、`instruct` 决策机制。
+自定义策略允许你为任意 Agent 行为编写规则：强制执行项目规范、防止偏离、拦截破坏性操作、检测卡死的 Agent，或与 Slack、审批工作流等系统集成。它们使用与内置策略相同的 Hook 事件系统以及 `allow`、`deny`、`instruct` 决策机制。
 
 ---
 
@@ -39,34 +39,34 @@ failproofai policies --install --custom ./my-policies.js
 
 ## 两种加载自定义策略的方式
 
-### 方式一：基于约定（推荐，v0.0.2-beta.7+）
+### 方式一：基于约定（推荐）
 
-将 `*policies.{js,mjs,ts}` 文件放入 `.failproofai/policies/` 目录，它们会被自动加载——无需任何标志或配置更改。这类似于 git hooks：放入文件即可生效。
+将 `*policies.{js,mjs,ts}` 文件放入 `.failproofai/policies/` 目录，它们会被自动加载——无需任何命令行参数或配置变更。这与 git hooks 的工作方式类似：放入文件即可生效。
 
 ```
 # 项目级别——提交到 git，与团队共享
 .failproofai/policies/security-policies.mjs
 .failproofai/policies/workflow-policies.mjs
 
-# 用户级别——个人配置，适用于所有项目
+# 用户级别——个人使用，适用于所有项目
 ~/.failproofai/policies/my-policies.mjs
 ```
 
 **工作原理：**
-- 项目目录和用户目录都会被扫描（取并集——不是先匹配作用域优先）
-- 每个目录内的文件按字母顺序加载。可使用 `01-`、`02-` 等前缀控制顺序
-- 只加载匹配 `*policies.{js,mjs,ts}` 的文件，其他文件会被忽略
-- 每个文件独立加载（单文件失败开放）
-- 与显式 `--custom` 和内置策略兼容并存
+- 项目目录和用户目录都会被扫描（取并集，而非先命中即生效）
+- 同一目录内的文件按字母顺序加载。可通过 `01-`、`02-` 等前缀控制顺序
+- 只加载匹配 `*policies.{js,mjs,ts}` 的文件，其他文件被忽略
+- 每个文件独立加载（单文件失败不影响其他文件）
+- 可与显式 `--custom` 参数及内置策略共存
 
 <Tip>
-基于约定的策略是在团队中共享策略的最简便方式。将 `.failproofai/policies/` 提交到 git，每位团队成员都能自动获取这些策略。
+基于约定的策略是在团队间共享策略的最简单方式。将 `.failproofai/policies/` 提交到 git，团队所有成员即可自动获得这些策略。
 </Tip>
 
-### 方式二：显式文件路径
+### 方式二：显式指定文件路径
 
 ```bash
-# 使用自定义策略文件安装
+# 安装时指定自定义策略文件
 failproofai policies --install --custom ./my-policies.js
 
 # 替换策略文件路径
@@ -76,13 +76,13 @@ failproofai policies --install --custom ./new-policies.js
 failproofai policies --uninstall --custom
 ```
 
-解析后的绝对路径以 `customPoliciesPath` 的形式存储在 `policies-config.json` 中。每次 hook 事件都会重新加载该文件——事件之间不存在缓存。
+解析后的绝对路径以 `customPoliciesPath` 字段存储于 `policies-config.json` 中。每次 Hook 事件触发时都会重新加载该文件，事件之间不存在缓存。
 
-### 同时使用两种方式
+### 两种方式同时使用
 
-基于约定的策略与显式 `--custom` 文件可以共存。加载顺序如下：
+基于约定的策略和显式 `--custom` 文件可以共存。加载顺序如下：
 
-1. 显式 `customPoliciesPath` 文件（如已配置）
+1. 显式 `customPoliciesPath` 文件（若已配置）
 2. 项目约定文件（`{cwd}/.failproofai/policies/`，按字母顺序）
 3. 用户约定文件（`~/.failproofai/policies/`，按字母顺序）
 
@@ -98,12 +98,12 @@ import { customPolicies, allow, deny, instruct } from "failproofai";
 
 ### `customPolicies.add(hook)`
 
-注册一个策略。可多次调用以在同一文件中添加多个策略。
+注册一条策略。可多次调用，在同一文件中注册多条策略。
 
 ```ts
 customPolicies.add({
   name: string;                         // 必填 - 唯一标识符
-  description?: string;                 // 显示在 `failproofai policies` 输出中
+  description?: string;                 // 在 `failproofai policies` 输出中显示
   match?: { events?: HookEventType[] }; // 按事件类型过滤；省略则匹配所有事件
   fn: (ctx: PolicyContext) => PolicyResult | Promise<PolicyResult>;
 });
@@ -117,30 +117,26 @@ customPolicies.add({
 | `deny(message)` | 阻止操作 | Agent 不应执行此操作 |
 | `instruct(message)` | 添加上下文但不阻止 | 为 Agent 提供额外上下文以保持正轨 |
 
-`deny(message)` - 消息会以 `"Blocked by failproofai:"` 为前缀显示给 Claude。单个 `deny` 会短路所有后续评估。
+`deny(message)` —— 消息会以 `"Blocked by failproofai:"` 为前缀显示给 Claude。单个 `deny` 会短路所有后续评估。
 
-`instruct(message)` - 消息会附加到 Claude 当前工具调用的上下文中。所有 `instruct` 消息会被累积并一并发送。
+`instruct(message)` —— 消息会被追加到当前工具调用的 Claude 上下文中。所有 `instruct` 消息会被累积并一并传递。
 
 <Tip>
-您可以通过在 `policyParams` 中添加 `hint` 字段，为任何 `deny` 或 `instruct` 消息追加额外指导——无需修改代码。这对自定义（`custom/`）、项目约定（`.failproofai-project/`）和用户约定（`.failproofai-user/`）策略同样适用。详情请参阅[配置 → hint](/zh/configuration#hint-cross-cutting)。
+你可以通过在 `policyParams` 中添加 `hint` 字段，为任意 `deny` 或 `instruct` 消息追加额外指导——无需修改代码。这对自定义策略（`custom/`）、项目约定策略（`.failproofai-project/`）和用户约定策略（`.failproofai-user/`）同样适用。详见 [配置 → hint](/zh/configuration#hint-cross-cutting)。
 </Tip>
 
-### 信息性 allow 消息（Beta）
+### 信息性允许消息
 
-<Note>
-`allow(message)` 是自 v0.0.2-beta.3 起提供的 Beta 功能。API 可能在未来版本中发生变化。早期版本仅支持不带参数的 `allow()`。
-</Note>
-
-`allow(message)` 允许操作**并**向 Claude 发送一条信息性消息。该消息以 `additionalContext` 的形式通过 hook 处理器的 stdout 响应发送——与 `instruct` 使用相同的机制，但语义不同：它是状态更新，而非警告。
+`allow(message)` 允许操作**并**向 Claude 发送一条信息性消息。该消息通过 Hook 处理器的 stdout 响应中的 `additionalContext` 字段传递——与 `instruct` 使用相同机制，但语义不同：它是状态更新，而非警告。
 
 | 函数 | 效果 | 适用场景 |
 |----------|--------|----------|
-| `allow(message)` | 允许并向 Claude 发送上下文 | 确认检查已通过，或说明为何跳过某项检查 |
+| `allow(message)` | 允许并向 Claude 发送上下文 | 确认检查通过，或说明跳过检查的原因 |
 
 使用场景：
-- **状态确认：** `allow("All CI checks passed.")` — 告知 Claude 一切正常
-- **失败开放说明：** `allow("GitHub CLI not installed, skipping CI check.")` — 告知 Claude 跳过检查的原因，使其拥有完整上下文
-- **多条消息累积：** 若多个策略各自返回 `allow(message)`，所有消息会以换行符连接并一并发送
+- **状态确认：** `allow("All CI checks passed.")` —— 告知 Claude 一切正常
+- **失败开放说明：** `allow("GitHub CLI not installed, skipping CI check.")` —— 告知 Claude 跳过检查的原因，保持完整上下文
+- **多条消息累积：** 若多条策略各自返回 `allow(message)`，所有消息会用换行符连接后一并传递
 
 ```js
 customPolicies.add({
@@ -164,9 +160,9 @@ customPolicies.add({
 | 字段 | 类型 | 描述 |
 |-------|------|-------------|
 | `eventType` | `string` | `"PreToolUse"`、`"PostToolUse"`、`"Notification"`、`"Stop"` |
-| `toolName` | `string \| undefined` | 被调用的工具（如 `"Bash"`、`"Write"`、`"Read"`） |
+| `toolName` | `string \| undefined` | 被调用的工具名（如 `"Bash"`、`"Write"`、`"Read"`） |
 | `toolInput` | `Record<string, unknown> \| undefined` | 工具的输入参数 |
-| `payload` | `Record<string, unknown>` | 来自 Claude Code 的完整原始事件载荷 |
+| `payload` | `Record<string, unknown>` | 来自 Claude Code 的完整原始事件负载 |
 | `session` | `SessionMetadata \| undefined` | 会话上下文（见下文） |
 
 ### `SessionMetadata` 字段
@@ -181,9 +177,9 @@ customPolicies.add({
 
 | 事件 | 触发时机 | `toolInput` 内容 |
 |-------|--------------|----------------------|
-| `PreToolUse` | Claude 执行工具之前 | 工具的输入（如 Bash 对应 `{ command: "..." }`） |
-| `PostToolUse` | 工具执行完成之后 | 工具的输入 + `tool_result`（输出内容） |
-| `Notification` | Claude 发送通知时 | `{ message: "...", notification_type: "idle" \| "permission_prompt" \| ... }` - hook 必须始终返回 `allow()`，不能阻止通知 |
+| `PreToolUse` | Claude 运行工具之前 | 工具输入（如 Bash 对应 `{ command: "..." }`） |
+| `PostToolUse` | 工具执行完成之后 | 工具输入 + `tool_result`（输出结果） |
+| `Notification` | Claude 发送通知时 | `{ message: "...", notification_type: "idle" \| "permission_prompt" \| ... }` —— Hook 必须始终返回 `allow()`，不能阻止通知 |
 | `Stop` | Claude 会话结束时 | 空 |
 
 ---
@@ -193,19 +189,19 @@ customPolicies.add({
 策略按以下顺序评估：
 
 1. 内置策略（按定义顺序）
-2. 来自 `customPoliciesPath` 的显式自定义策略（按 `.add()` 顺序）
-3. 来自项目 `.failproofai/policies/` 的约定策略（文件按字母顺序，文件内按 `.add()` 顺序）
-4. 来自用户 `~/.failproofai/policies/` 的约定策略（文件按字母顺序，文件内按 `.add()` 顺序）
+2. 来自 `customPoliciesPath` 的显式自定义策略（按 `.add()` 调用顺序）
+3. 项目约定策略，来自 `.failproofai/policies/`（文件按字母顺序，文件内按 `.add()` 顺序）
+4. 用户约定策略，来自 `~/.failproofai/policies/`（文件按字母顺序，文件内按 `.add()` 顺序）
 
 <Note>
-第一个 `deny` 会短路所有后续策略。所有 `instruct` 消息会被累积并一并发送。
+第一个 `deny` 会短路所有后续策略。所有 `instruct` 消息会被累积并一并传递。
 </Note>
 
 ---
 
 ## 传递性导入
 
-自定义策略文件可以使用相对路径导入本地模块：
+自定义策略文件可使用相对路径导入本地模块：
 
 ```js
 // my-policies.js
@@ -222,7 +218,7 @@ customPolicies.add({
 });
 ```
 
-从入口文件可达的所有相对导入都会被解析。实现方式是将 `from "failproofai"` 的导入重写为实际的 dist 路径，并创建临时 `.mjs` 文件以确保 ESM 兼容性。
+所有从入口文件可达的相对导入都会被解析。其实现方式是将 `from "failproofai"` 的导入重写为实际的 dist 路径，并创建临时 `.mjs` 文件以确保 ESM 兼容性。
 
 ---
 
@@ -242,26 +238,26 @@ customPolicies.add({
 });
 ```
 
-省略 `match` 则对每种事件类型都触发。
+省略 `match` 则对所有事件类型触发。
 
 ---
 
 ## 错误处理与失败模式
 
-自定义策略采用**失败开放**原则：错误不会阻止内置策略运行或导致 hook 处理器崩溃。
+自定义策略采用**失败开放**机制：错误不会阻止内置策略运行，也不会导致 Hook 处理器崩溃。
 
-| 失败情形 | 行为 |
+| 失败情况 | 行为 |
 |---------|----------|
 | `customPoliciesPath` 未设置 | 不运行显式自定义策略；约定策略和内置策略正常继续 |
-| 文件未找到 | 警告记录到 `~/.failproofai/hook.log`；内置策略继续运行 |
-| 语法/导入错误（显式） | 错误记录到 `~/.failproofai/hook.log`；跳过显式自定义策略 |
+| 文件未找到 | 警告记录至 `~/.failproofai/hook.log`；内置策略继续运行 |
+| 语法/导入错误（显式） | 错误记录至 `~/.failproofai/hook.log`；跳过显式自定义策略 |
 | 语法/导入错误（约定） | 错误记录；跳过该文件，其他约定文件继续加载 |
-| `fn` 运行时抛出异常 | 错误记录；该 hook 视为 `allow`；其他 hook 继续运行 |
+| `fn` 运行时抛出异常 | 错误记录；该 Hook 视为 `allow`；其他 Hook 继续运行 |
 | `fn` 执行超过 10 秒 | 超时记录；视为 `allow` |
-| 约定目录不存在 | 不运行约定策略；不报错 |
+| 约定目录不存在 | 不运行约定策略；无报错 |
 
 <Tip>
-如需调试自定义策略错误，可监控日志文件：
+如需调试自定义策略错误，可监听日志文件：
 
 ```bash
 tail -f ~/.failproofai/hook.log
@@ -270,13 +266,13 @@ tail -f ~/.failproofai/hook.log
 
 ---
 
-## 完整示例：多个策略
+## 完整示例：多条策略
 
 ```js
 // my-policies.js
 import { customPolicies, allow, deny, instruct } from "failproofai";
 
-// 防止 Agent 写入 secrets/ 目录
+// 禁止 Agent 向 secrets/ 目录写入
 customPolicies.add({
   name: "block-secrets-dir",
   description: "Prevent agent from writing to secrets/ directory",
@@ -289,7 +285,7 @@ customPolicies.add({
   },
 });
 
-// 引导 Agent 保持正轨：提交前验证测试
+// 保持 Agent 在轨：提交前验证测试
 customPolicies.add({
   name: "remind-test-before-commit",
   description: "Keep the agent on track: verify tests pass before committing",
@@ -304,7 +300,7 @@ customPolicies.add({
   },
 });
 
-// 在冻结期间防止计划外的依赖变更
+// 冻结期间禁止计划外的依赖变更
 customPolicies.add({
   name: "dependency-freeze",
   description: "Prevent unplanned dependency changes during freeze period",
@@ -331,8 +327,8 @@ export { customPolicies };
 
 | 文件 | 内容 |
 |------|----------|
-| `examples/policies-basic.js` | 五个涵盖常见 Agent 失败模式的入门策略 |
-| `examples/policies-advanced/index.js` | 高级模式：传递性导入、异步调用、输出脱敏、会话结束 hook |
+| `examples/policies-basic.js` | 五条入门策略，涵盖常见 Agent 失败模式 |
+| `examples/policies-advanced/index.js` | 高级模式：传递性导入、异步调用、输出清洗、会话结束 Hook |
 | `examples/convention-policies/security-policies.mjs` | 基于约定的安全策略（阻止 .env 写入、防止 git 历史重写） |
 | `examples/convention-policies/workflow-policies.mjs` | 基于约定的工作流策略（测试提醒、审计文件写入） |
 
@@ -354,4 +350,4 @@ mkdir -p ~/.failproofai/policies
 cp examples/convention-policies/*.mjs ~/.failproofai/policies/
 ```
 
-无需安装命令——下次 hook 事件触发时，文件会被自动加载。
+无需执行安装命令——下次 Hook 事件触发时，文件会被自动加载。

package/.next/standalone/package.json

@@ -1,6 +1,6 @@
 {
   "name": "failproofai",
-  "version": "0.0.5-beta.0",
+  "version": "0.0.6-beta.0",
   "description": "The easiest way to manage policies that keep your AI agents reliable, on-task, and running autonomously — for Claude Code & the Agents SDK",
   "bin": {
     "failproofai": "./dist/cli.mjs"

package/.next/standalone/server.js

@@ -9,7 +9,7 @@ const currentPort = parseInt(process.env.PORT, 10) || 3000
 const hostname = process.env.HOSTNAME || '0.0.0.0'
 
 let keepAliveTimeout = parseInt(process.env.KEEP_ALIVE_TIMEOUT, 10)
-const nextConfig = {"env":{"NEXT_PUBLIC_APP_VERSION":"0.0.5-beta.0"},"typescript":{"ignoreBuildErrors":false},"typedRoutes":false,"distDir":"./.next","cleanDistDir":true,"assetPrefix":"","cacheMaxMemorySize":52428800,"configOrigin":"next.config.ts","useFileSystemPublicRoutes":true,"generateEtags":true,"pageExtensions":["tsx","ts","jsx","js"],"poweredByHeader":true,"compress":true,"images":{"deviceSizes":[640,750,828,1080,1200,1920,2048,3840],"imageSizes":[32,48,64,96,128,256,384],"path":"/_next/image","loader":"default","loaderFile":"","domains":[],"disableStaticImages":false,"minimumCacheTTL":14400,"formats":["image/webp"],"maximumRedirects":3,"maximumResponseBody":50000000,"dangerouslyAllowLocalIP":false,"dangerouslyAllowSVG":false,"contentSecurityPolicy":"script-src 'none'; frame-src 'none'; sandbox;","contentDispositionType":"attachment","localPatterns":[{"pathname":"**","search":""}],"remotePatterns":[],"qualities":[75],"unoptimized":true,"customCacheHandler":false},"devIndicators":{"position":"bottom-left"},"onDemandEntries":{"maxInactiveAge":60000,"pagesBufferLength":5},"basePath":"","sassOptions":{},"trailingSlash":false,"i18n":null,"productionBrowserSourceMaps":false,"excludeDefaultMomentLocales":true,"reactProductionProfiling":false,"reactStrictMode":null,"reactMaxHeadersLength":6000,"httpAgentOptions":{"keepAlive":true},"logging":{"serverFunctions":true,"browserToTerminal":"warn"},"compiler":{},"expireTime":31536000,"staticPageGenerationTimeout":60,"output":"standalone","modularizeImports":{"@mui/icons-material":{"transform":"@mui/icons-material/{{member}}"},"lodash":{"transform":"lodash/{{member}}"}},"outputFileTracingRoot":"/home/runner/work/failproofai/failproofai","cacheComponents":false,"cacheLife":{"default":{"stale":300,"revalidate":900,"expire":4294967294},"seconds":{"stale":30,"revalidate":1,"expire":60},"minutes":{"stale":300,"revalidate":60,"expire":3600},"hours":{"stale":300,"revalidate":3600,"expire":86400},"days":{"stale":300,"revalidate":86400,"expire":604800},"weeks":{"stale":300,"revalidate":604800,"expire":2592000},"max":{"stale":300,"revalidate":2592000,"expire":31536000}},"cacheHandlers":{},"experimental":{"appNewScrollHandler":false,"useSkewCookie":false,"cssChunking":true,"multiZoneDraftMode":false,"appNavFailHandling":false,"prerenderEarlyExit":true,"serverMinification":true,"linkNoTouchStart":false,"caseSensitiveRoutes":false,"cachedNavigations":false,"partialFallbacks":false,"dynamicOnHover":false,"varyParams":false,"prefetchInlining":false,"preloadEntriesOnStart":true,"clientRouterFilter":true,"clientRouterFilterRedirects":false,"fetchCacheKeyPrefix":"","proxyPrefetch":"flexible","optimisticClientCache":true,"manualClientBasePath":false,"cpus":3,"memoryBasedWorkersCount":false,"imgOptConcurrency":null,"imgOptTimeoutInSeconds":7,"imgOptMaxInputPixels":268402689,"imgOptSequentialRead":null,"imgOptSkipMetadata":null,"isrFlushToDisk":true,"workerThreads":false,"optimizeCss":false,"nextScriptWorkers":false,"scrollRestoration":false,"externalDir":false,"disableOptimizedLoading":false,"gzipSize":true,"craCompat":false,"esmExternals":true,"fullySpecified":false,"swcTraceProfiling":false,"forceSwcTransforms":false,"largePageDataBytes":128000,"typedEnv":false,"parallelServerCompiles":false,"parallelServerBuildTraces":false,"ppr":false,"authInterrupts":false,"webpackMemoryOptimizations":false,"optimizeServerReact":true,"strictRouteTypes":false,"viewTransition":false,"removeUncaughtErrorAndRejectionListeners":false,"validateRSCRequestHeaders":false,"staleTimes":{"dynamic":0,"static":300},"reactDebugChannel":true,"serverComponentsHmrCache":true,"staticGenerationMaxConcurrency":8,"staticGenerationMinPagesPerWorker":25,"transitionIndicator":false,"gestureTransition":false,"inlineCss":false,"useCache":false,"globalNotFound":false,"browserDebugInfoInTerminal":"warn","lockDistDir":true,"proxyClientMaxBodySize":10485760,"hideLogsAfterAbort":false,"mcpServer":true,"turbopackFileSystemCacheForDev":true,"turbopackFileSystemCacheForBuild":false,"turbopackInferModuleSideEffects":true,"turbopackPluginRuntimeStrategy":"childProcesses","optimizePackageImports":["lucide-react","date-fns","lodash-es","ramda","antd","react-bootstrap","ahooks","@ant-design/icons","@headlessui/react","@headlessui-float/react","@heroicons/react/20/solid","@heroicons/react/24/solid","@heroicons/react/24/outline","@visx/visx","@tremor/react","rxjs","@mui/material","@mui/icons-material","recharts","react-use","effect","@effect/schema","@effect/platform","@effect/platform-node","@effect/platform-browser","@effect/platform-bun","@effect/sql","@effect/sql-mssql","@effect/sql-mysql2","@effect/sql-pg","@effect/sql-sqlite-node","@effect/sql-sqlite-bun","@effect/sql-sqlite-wasm","@effect/sql-sqlite-react-native","@effect/rpc","@effect/rpc-http","@effect/typeclass","@effect/experimental","@effect/opentelemetry","@material-ui/core","@material-ui/icons","@tabler/icons-react","mui-core","react-icons/ai","react-icons/bi","react-icons/bs","react-icons/cg","react-icons/ci","react-icons/di","react-icons/fa","react-icons/fa6","react-icons/fc","react-icons/fi","react-icons/gi","react-icons/go","react-icons/gr","react-icons/hi","react-icons/hi2","react-icons/im","react-icons/io","react-icons/io5","react-icons/lia","react-icons/lib","react-icons/lu","react-icons/md","react-icons/pi","react-icons/ri","react-icons/rx","react-icons/si","react-icons/sl","react-icons/tb","react-icons/tfi","react-icons/ti","react-icons/vsc","react-icons/wi"],"trustHostHeader":false,"isExperimentalCompile":false},"htmlLimitedBots":"[\\w-]+-Google|Google-[\\w-]+|Chrome-Lighthouse|Slurp|DuckDuckBot|baiduspider|yandex|sogou|bitlybot|tumblr|vkShare|quora link preview|redditbot|ia_archiver|Bingbot|BingPreview|applebot|facebookexternalhit|facebookcatalog|Twitterbot|LinkedInBot|Slackbot|Discordbot|WhatsApp|SkypeUriPreview|Yeti|googleweblight","bundlePagesRouterDependencies":false,"configFileName":"next.config.ts","turbopack":{"root":"/home/runner/work/failproofai/failproofai"},"distDirRoot":".next"}
+const nextConfig = {"env":{"NEXT_PUBLIC_APP_VERSION":"0.0.6-beta.0"},"typescript":{"ignoreBuildErrors":false},"typedRoutes":false,"distDir":"./.next","cleanDistDir":true,"assetPrefix":"","cacheMaxMemorySize":52428800,"configOrigin":"next.config.ts","useFileSystemPublicRoutes":true,"generateEtags":true,"pageExtensions":["tsx","ts","jsx","js"],"poweredByHeader":true,"compress":true,"images":{"deviceSizes":[640,750,828,1080,1200,1920,2048,3840],"imageSizes":[32,48,64,96,128,256,384],"path":"/_next/image","loader":"default","loaderFile":"","domains":[],"disableStaticImages":false,"minimumCacheTTL":14400,"formats":["image/webp"],"maximumRedirects":3,"maximumResponseBody":50000000,"dangerouslyAllowLocalIP":false,"dangerouslyAllowSVG":false,"contentSecurityPolicy":"script-src 'none'; frame-src 'none'; sandbox;","contentDispositionType":"attachment","localPatterns":[{"pathname":"**","search":""}],"remotePatterns":[],"qualities":[75],"unoptimized":true,"customCacheHandler":false},"devIndicators":{"position":"bottom-left"},"onDemandEntries":{"maxInactiveAge":60000,"pagesBufferLength":5},"basePath":"","sassOptions":{},"trailingSlash":false,"i18n":null,"productionBrowserSourceMaps":false,"excludeDefaultMomentLocales":true,"reactProductionProfiling":false,"reactStrictMode":null,"reactMaxHeadersLength":6000,"httpAgentOptions":{"keepAlive":true},"logging":{"serverFunctions":true,"browserToTerminal":"warn"},"compiler":{},"expireTime":31536000,"staticPageGenerationTimeout":60,"output":"standalone","modularizeImports":{"@mui/icons-material":{"transform":"@mui/icons-material/{{member}}"},"lodash":{"transform":"lodash/{{member}}"}},"outputFileTracingRoot":"/home/runner/work/failproofai/failproofai","cacheComponents":false,"cacheLife":{"default":{"stale":300,"revalidate":900,"expire":4294967294},"seconds":{"stale":30,"revalidate":1,"expire":60},"minutes":{"stale":300,"revalidate":60,"expire":3600},"hours":{"stale":300,"revalidate":3600,"expire":86400},"days":{"stale":300,"revalidate":86400,"expire":604800},"weeks":{"stale":300,"revalidate":604800,"expire":2592000},"max":{"stale":300,"revalidate":2592000,"expire":31536000}},"cacheHandlers":{},"experimental":{"appNewScrollHandler":false,"useSkewCookie":false,"cssChunking":true,"multiZoneDraftMode":false,"appNavFailHandling":false,"prerenderEarlyExit":true,"serverMinification":true,"linkNoTouchStart":false,"caseSensitiveRoutes":false,"cachedNavigations":false,"partialFallbacks":false,"dynamicOnHover":false,"varyParams":false,"prefetchInlining":false,"preloadEntriesOnStart":true,"clientRouterFilter":true,"clientRouterFilterRedirects":false,"fetchCacheKeyPrefix":"","proxyPrefetch":"flexible","optimisticClientCache":true,"manualClientBasePath":false,"cpus":3,"memoryBasedWorkersCount":false,"imgOptConcurrency":null,"imgOptTimeoutInSeconds":7,"imgOptMaxInputPixels":268402689,"imgOptSequentialRead":null,"imgOptSkipMetadata":null,"isrFlushToDisk":true,"workerThreads":false,"optimizeCss":false,"nextScriptWorkers":false,"scrollRestoration":false,"externalDir":false,"disableOptimizedLoading":false,"gzipSize":true,"craCompat":false,"esmExternals":true,"fullySpecified":false,"swcTraceProfiling":false,"forceSwcTransforms":false,"largePageDataBytes":128000,"typedEnv":false,"parallelServerCompiles":false,"parallelServerBuildTraces":false,"ppr":false,"authInterrupts":false,"webpackMemoryOptimizations":false,"optimizeServerReact":true,"strictRouteTypes":false,"viewTransition":false,"removeUncaughtErrorAndRejectionListeners":false,"validateRSCRequestHeaders":false,"staleTimes":{"dynamic":0,"static":300},"reactDebugChannel":true,"serverComponentsHmrCache":true,"staticGenerationMaxConcurrency":8,"staticGenerationMinPagesPerWorker":25,"transitionIndicator":false,"gestureTransition":false,"inlineCss":false,"useCache":false,"globalNotFound":false,"browserDebugInfoInTerminal":"warn","lockDistDir":true,"proxyClientMaxBodySize":10485760,"hideLogsAfterAbort":false,"mcpServer":true,"turbopackFileSystemCacheForDev":true,"turbopackFileSystemCacheForBuild":false,"turbopackInferModuleSideEffects":true,"turbopackPluginRuntimeStrategy":"childProcesses","optimizePackageImports":["lucide-react","date-fns","lodash-es","ramda","antd","react-bootstrap","ahooks","@ant-design/icons","@headlessui/react","@headlessui-float/react","@heroicons/react/20/solid","@heroicons/react/24/solid","@heroicons/react/24/outline","@visx/visx","@tremor/react","rxjs","@mui/material","@mui/icons-material","recharts","react-use","effect","@effect/schema","@effect/platform","@effect/platform-node","@effect/platform-browser","@effect/platform-bun","@effect/sql","@effect/sql-mssql","@effect/sql-mysql2","@effect/sql-pg","@effect/sql-sqlite-node","@effect/sql-sqlite-bun","@effect/sql-sqlite-wasm","@effect/sql-sqlite-react-native","@effect/rpc","@effect/rpc-http","@effect/typeclass","@effect/experimental","@effect/opentelemetry","@material-ui/core","@material-ui/icons","@tabler/icons-react","mui-core","react-icons/ai","react-icons/bi","react-icons/bs","react-icons/cg","react-icons/ci","react-icons/di","react-icons/fa","react-icons/fa6","react-icons/fc","react-icons/fi","react-icons/gi","react-icons/go","react-icons/gr","react-icons/hi","react-icons/hi2","react-icons/im","react-icons/io","react-icons/io5","react-icons/lia","react-icons/lib","react-icons/lu","react-icons/md","react-icons/pi","react-icons/ri","react-icons/rx","react-icons/si","react-icons/sl","react-icons/tb","react-icons/tfi","react-icons/ti","react-icons/vsc","react-icons/wi"],"trustHostHeader":false,"isExperimentalCompile":false},"htmlLimitedBots":"[\\w-]+-Google|Google-[\\w-]+|Chrome-Lighthouse|Slurp|DuckDuckBot|baiduspider|yandex|sogou|bitlybot|tumblr|vkShare|quora link preview|redditbot|ia_archiver|Bingbot|BingPreview|applebot|facebookexternalhit|facebookcatalog|Twitterbot|LinkedInBot|Slackbot|Discordbot|WhatsApp|SkypeUriPreview|Yeti|googleweblight","bundlePagesRouterDependencies":false,"configFileName":"next.config.ts","turbopack":{"root":"/home/runner/work/failproofai/failproofai"},"distDirRoot":".next"}
 
 process.env.__NEXT_PRIVATE_STANDALONE_CONFIG = JSON.stringify(nextConfig)
 

package/.next/standalone/src/hooks/builtin-policies.ts

@@ -1064,6 +1064,36 @@ function requirePrBeforeStop(ctx: PolicyContext): PolicyResult {
       return allow(`PR #${pr.number} exists: ${pr.url}`);
     }
 
+    // PR is merged/closed. The earlier origin/{baseBranch} checks may have
+    // used a stale ref. Fetch and re-verify before denying.
+    if (pr.state === "MERGED") {
+      try {
+        execFileSync("git", ["fetch", "origin", `+refs/heads/${baseBranch}:refs/remotes/origin/${baseBranch}`], {
+          cwd,
+          encoding: "utf8",
+          timeout: 10000,
+        });
+        const freshAhead = execFileSync(
+          "git",
+          ["log", `origin/${baseBranch}..HEAD`, "--oneline"],
+          { cwd, encoding: "utf8", timeout: 5000 },
+        ).trim();
+        if (!freshAhead) {
+          return allow(`PR #${pr.number} was merged; branch is up to date with ${baseBranch}.`);
+        }
+        const freshDiff = execFileSync(
+          "git",
+          ["diff", "--stat", `origin/${baseBranch}`, "HEAD"],
+          { cwd, encoding: "utf8", timeout: 5000 },
+        ).trim();
+        if (!freshDiff) {
+          return allow(`PR #${pr.number} was merged; no file changes vs ${baseBranch}.`);
+        }
+      } catch {
+        // Fetch or git command failed — fall through to deny
+      }
+    }
+
     return deny(
       `Pull request for branch "${branch}" is ${pr.state.toLowerCase()}. Run now: gh pr create`,
     );

package/README.md

@@ -202,7 +202,7 @@ failproofai policies --install --custom ./my-policies.js
 | Function | Effect |
 |----------|--------|
 | `allow()` | Permit the operation |
-| `allow(message)` | Permit and send informational context to Claude *(beta)* |
+| `allow(message)` | Permit and send informational context to Claude |
 | `deny(message)` | Block the operation; message shown to Claude |
 | `instruct(message)` | Add context to Claude's prompt; does not block |
 
@@ -220,7 +220,7 @@ failproofai policies --install --custom ./my-policies.js
 
 Custom hooks support transitive local imports, async/await, and access to `process.env`. Errors are fail-open (logged to `~/.failproofai/hook.log`, built-in policies continue). See [docs/custom-hooks.mdx](docs/custom-hooks.mdx) for the full guide.
 
-### Convention-based policies (v0.0.2-beta.7+)
+### Convention-based policies
 
 Drop `*policies.{js,mjs,ts}` files into `.failproofai/policies/` and they're automatically loaded — no `--custom` flag or config changes needed. Works like git hooks: drop a file, it just works.
 

package/dist/cli.mjs

@@ -959,6 +959,23 @@ function requirePrBeforeStop(ctx) {
     if (pr.state === "OPEN") {
       return allow(`PR #${pr.number} exists: ${pr.url}`);
     }
+    if (pr.state === "MERGED") {
+      try {
+        execFileSync("git", ["fetch", "origin", `+refs/heads/${baseBranch}:refs/remotes/origin/${baseBranch}`], {
+          cwd,
+          encoding: "utf8",
+          timeout: 1e4
+        });
+        const freshAhead = execFileSync("git", ["log", `origin/${baseBranch}..HEAD`, "--oneline"], { cwd, encoding: "utf8", timeout: 5000 }).trim();
+        if (!freshAhead) {
+          return allow(`PR #${pr.number} was merged; branch is up to date with ${baseBranch}.`);
+        }
+        const freshDiff = execFileSync("git", ["diff", "--stat", `origin/${baseBranch}`, "HEAD"], { cwd, encoding: "utf8", timeout: 5000 }).trim();
+        if (!freshDiff) {
+          return allow(`PR #${pr.number} was merged; no file changes vs ${baseBranch}.`);
+        }
+      } catch {}
+    }
     return deny(`Pull request for branch "${branch}" is ${pr.state.toLowerCase()}. Run now: gh pr create`);
   } catch {
     return allow("Could not check PR status, skipping.");
@@ -1951,7 +1968,7 @@ var init_hook_activity_store = __esm(() => {
 });
 
 // package.json
-var version2 = "0.0.5-beta.0";
+var version2 = "0.0.6-beta.0";
 var init_package = () => {};
 
 // src/posthog-key.ts
@@ -3243,7 +3260,7 @@ import { realpathSync as realpathSync2 } from "fs";
 import { dirname as dirname5, resolve as resolve8 } from "path";
 import { fileURLToPath as fileURLToPath2 } from "url";
 // package.json
-var version = "0.0.5-beta.0";
+var version = "0.0.6-beta.0";
 
 // bin/failproofai.mjs
 if (!process.env.FAILPROOFAI_PACKAGE_ROOT) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "failproofai",
-  "version": "0.0.5-beta.0",
+  "version": "0.0.6-beta.0",
   "description": "The easiest way to manage policies that keep your AI agents reliable, on-task, and running autonomously — for Claude Code & the Agents SDK",
   "bin": {
     "failproofai": "./dist/cli.mjs"

package/src/hooks/builtin-policies.ts

@@ -1064,6 +1064,36 @@ function requirePrBeforeStop(ctx: PolicyContext): PolicyResult {
       return allow(`PR #${pr.number} exists: ${pr.url}`);
     }
 
+    // PR is merged/closed. The earlier origin/{baseBranch} checks may have
+    // used a stale ref. Fetch and re-verify before denying.
+    if (pr.state === "MERGED") {
+      try {
+        execFileSync("git", ["fetch", "origin", `+refs/heads/${baseBranch}:refs/remotes/origin/${baseBranch}`], {
+          cwd,
+          encoding: "utf8",
+          timeout: 10000,
+        });
+        const freshAhead = execFileSync(
+          "git",
+          ["log", `origin/${baseBranch}..HEAD`, "--oneline"],
+          { cwd, encoding: "utf8", timeout: 5000 },
+        ).trim();
+        if (!freshAhead) {
+          return allow(`PR #${pr.number} was merged; branch is up to date with ${baseBranch}.`);
+        }
+        const freshDiff = execFileSync(
+          "git",
+          ["diff", "--stat", `origin/${baseBranch}`, "HEAD"],
+          { cwd, encoding: "utf8", timeout: 5000 },
+        ).trim();
+        if (!freshDiff) {
+          return allow(`PR #${pr.number} was merged; no file changes vs ${baseBranch}.`);
+        }
+      } catch {
+        // Fetch or git command failed — fall through to deny
+      }
+    }
+
     return deny(
       `Pull request for branch "${branch}" is ${pr.state.toLowerCase()}. Run now: gh pr create`,
     );