goodvibesonly-cc 0.1.0 → 0.3.0

package/README.md

@@ -1,10 +1,25 @@
-# VibeCheck
+```
+╔═════════════════════════════════════════════════════════════════╗
+║                                                                 ║
+║            ░██████╗░██╗░░░██╗░█████╗░                           ║
+║            ██╔════╝░██║░░░██║██╔══██╗                           ║
+║            ██║░░██╗░╚██╗░██╔╝██║░░██║                           ║
+║            ██║░░╚██╗░╚████╔╝░██║░░██║                           ║
+║            ╚██████╔╝░░╚██╔╝░░╚█████╔╝                           ║
+║            ░╚═════╝░░░░╚═╝░░░░╚════╝░                           ║
+║                                                                 ║
+║           🛡️  security scanner for vibe coders  🛡️                ║
+║                                                                 ║
+╚═════════════════════════════════════════════════════════════════╝
+```
+
+# GoodVibesOnly
 
 **Security scanner for vibe-coded projects.** A Claude Code extension that automatically scans for vulnerabilities before you commit.
 
 ## How It Works
 
-VibeCheck uses Claude Code's hooks system to intercept git commands:
+GoodVibesOnly uses Claude Code's hooks system to intercept git commands:
 
 1. **Hooks into git commit/push** - Automatically runs before any `git commit` or `git push`
 2. **Scans changed files** - Checks for hardcoded secrets, injection vulnerabilities, XSS, and more
@@ -14,7 +29,7 @@ VibeCheck uses Claude Code's hooks system to intercept git commands:
 ```
 You: git commit -m "add user api"
 
-🛡️  VibeCheck Security Scan
+🛡️  GoodVibesOnly Security Scan
 
 🔴 CRITICAL - Must fix before commit:
 
@@ -47,8 +62,8 @@ npm install -g goodvibesonly-cc
 ### Option 3: Manual
 
 ```bash
-git clone https://github.com/YOURNAME/vibecheck.git
-cd vibecheck
+git clone https://github.com/YOURNAME/goodvibesonly.git
+cd goodvibesonly
 node bin/install.js --global
 ```
 
@@ -58,14 +73,14 @@ node bin/install.js --global
 node bin/install.js --global      # Install to ~/.claude/ (all projects)
 node bin/install.js --local       # Install to ./.claude/ (this project)
 node bin/install.js --no-hooks    # Skip hook installation (command/skill only)
-node bin/install.js --uninstall   # Remove VibeCheck
+node bin/install.js --uninstall   # Remove GoodVibesOnly
 ```
 
 ## Usage
 
 ### Automatic (via hooks)
 
-Just use git normally. VibeCheck runs automatically:
+Just use git normally. GoodVibesOnly runs automatically:
 
 ```bash
 git commit -m "message"    # Scans before commit
@@ -75,13 +90,13 @@ git push                   # Scans before push
 ### Manual Scan
 
 ```
-/vibecheck
+/goodvibesonly
 ```
 
 Or ask Claude:
 ```
 is this code safe?
-vibecheck this
+goodvibesonly this
 check for security issues
 ```
 
@@ -116,14 +131,14 @@ check for security issues
 ## Project Structure
 
 ```
-vibecheck/
+goodvibesonly/
 ├── bin/
 │   ├── install.js       # Installer (copies files + sets up hooks)
 │   └── scan.js          # Scanner script (runs via hooks)
 ├── commands/
-│   └── vibecheck.md     # /vibecheck slash command
+│   └── goodvibesonly.md # /goodvibesonly slash command
 ├── skills/
-│   └── vibecheck/
+│   └── goodvibesonly/
 │       └── SKILL.md     # Skill for Claude assistance
 ├── hooks/
 │   └── hooks.json       # Hook configuration template
@@ -140,7 +155,7 @@ vibecheck/
 
 ## Technical Details
 
-VibeCheck installs a `PreToolUse` hook that intercepts Bash commands. When it detects `git commit` or `git push`:
+GoodVibesOnly installs a `PreToolUse` hook that intercepts Bash commands. When it detects `git commit` or `git push`:
 
 1. Reads staged files via `git diff --cached --name-only`
 2. Scans each file against vulnerability patterns
@@ -156,7 +171,7 @@ The hook is configured in `~/.claude/settings.json`:
       "matcher": "Bash",
       "hooks": [{
         "type": "command",
-        "command": "node \"~/.claude/vibecheck/scan.js\""
+        "command": "node \"~/.claude/goodvibesonly/scan.js\""
       }]
     }]
   }
@@ -174,9 +189,9 @@ node bin/install.js --uninstall --local
 Or manually:
 
 ```bash
-rm -rf ~/.claude/commands/vibecheck.md
-rm -rf ~/.claude/skills/vibecheck/
-rm -rf ~/.claude/vibecheck/
+rm -rf ~/.claude/commands/goodvibesonly.md
+rm -rf ~/.claude/skills/goodvibesonly/
+rm -rf ~/.claude/goodvibesonly/
 # Then remove the hook from ~/.claude/settings.json
 ```
 

package/bin/install.js

@@ -1,10 +1,10 @@
 #!/usr/bin/env node
 
 /**
- * VibeCheck Installer
+ * GoodVibesOnly Installer
  *
- * Installs VibeCheck as a Claude Code extension with:
- * - Slash command: /vibecheck
+ * Installs GoodVibesOnly as a Claude Code extension with:
+ * - Slash command: /goodvibesonly
  * - Auto-invoke skill for commit/push detection
  * - PreToolUse hook for automatic scanning before git commit/push
  */
@@ -69,12 +69,12 @@ function installHooks(targetDir, scanScriptPath) {
     settings.hooks.PreToolUse = [];
   }
 
-  // Check if vibecheck hook already exists
+  // Check if goodvibesonly hook already exists
   const existingHookIndex = settings.hooks.PreToolUse.findIndex(h =>
-    h.hooks?.some(inner => inner.command?.includes('vibecheck') || inner.command?.includes('scan.js'))
+    h.hooks?.some(inner => inner.command?.includes('goodvibesonly') || inner.command?.includes('scan.js'))
   );
 
-  const vibecheckHook = {
+  const goodvibesonlyHook = {
     matcher: 'Bash',
     hooks: [
       {
@@ -87,12 +87,12 @@ function installHooks(targetDir, scanScriptPath) {
 
   if (existingHookIndex >= 0) {
     // Update existing hook
-    settings.hooks.PreToolUse[existingHookIndex] = vibecheckHook;
-    console.log('Updated existing VibeCheck hook');
+    settings.hooks.PreToolUse[existingHookIndex] = goodvibesonlyHook;
+    console.log('Updated existing GoodVibesOnly hook');
   } else {
     // Add new hook
-    settings.hooks.PreToolUse.push(vibecheckHook);
-    console.log('Installed VibeCheck hook');
+    settings.hooks.PreToolUse.push(goodvibesonlyHook);
+    console.log('Installed GoodVibesOnly hook');
   }
 
   saveJson(settingsPath, settings);
@@ -106,8 +106,8 @@ function install(targetDir, skipHooks = false) {
 
   const commandsDest = path.join(targetDir, 'commands');
   const skillsDest = path.join(targetDir, 'skills');
-  const vibecheckDir = path.join(targetDir, 'vibecheck');
-  const scanScriptDest = path.join(vibecheckDir, 'scan.js');
+  const goodvibesonlyDir = path.join(targetDir, 'goodvibesonly');
+  const scanScriptDest = path.join(goodvibesonlyDir, 'scan.js');
 
   // Copy commands
   if (fs.existsSync(commandsSrc)) {
@@ -123,7 +123,7 @@ function install(targetDir, skipHooks = false) {
 
   // Copy scan script
   if (fs.existsSync(scanScriptSrc)) {
-    console.log(`Installing scanner to ${vibecheckDir}`);
+    console.log(`Installing scanner to ${goodvibesonlyDir}`);
     copyFile(scanScriptSrc, scanScriptDest);
   }
 
@@ -132,23 +132,23 @@ function install(targetDir, skipHooks = false) {
     installHooks(targetDir, scanScriptDest);
   }
 
-  console.log('\n✓ VibeCheck installed successfully!\n');
+  console.log('\n✓ GoodVibesOnly installed successfully!\n');
   console.log('Features:');
-  console.log('  • /vibecheck command for manual scans');
+  console.log('  • /goodvibesonly command for manual scans');
   console.log('  • Auto-scan before git commit/push (via hooks)');
   console.log('  • Blocks commits with critical vulnerabilities');
   console.log('');
   console.log('Usage:');
-  console.log('  /vibecheck              Manual security scan');
+  console.log('  /goodvibesonly              Manual security scan');
   console.log('  git commit -m "msg"     Auto-scans before commit');
   console.log('  git push                Auto-scans before push');
   console.log('');
 }
 
 function uninstall(targetDir) {
-  const commandPath = path.join(targetDir, 'commands', 'vibecheck.md');
-  const skillPath = path.join(targetDir, 'skills', 'vibecheck');
-  const vibecheckDir = path.join(targetDir, 'vibecheck');
+  const commandPath = path.join(targetDir, 'commands', 'goodvibesonly.md');
+  const skillPath = path.join(targetDir, 'skills', 'goodvibesonly');
+  const goodvibesonlyDir = path.join(targetDir, 'goodvibesonly');
   const settingsPath = path.join(targetDir, 'settings.json');
 
   let removed = false;
@@ -156,20 +156,20 @@ function uninstall(targetDir) {
   // Remove command
   if (fs.existsSync(commandPath)) {
     fs.unlinkSync(commandPath);
-    console.log('Removed /vibecheck command');
+    console.log('Removed /goodvibesonly command');
     removed = true;
   }
 
   // Remove skill
   if (fs.existsSync(skillPath)) {
     fs.rmSync(skillPath, { recursive: true });
-    console.log('Removed vibecheck skill');
+    console.log('Removed goodvibesonly skill');
     removed = true;
   }
 
   // Remove scanner
-  if (fs.existsSync(vibecheckDir)) {
-    fs.rmSync(vibecheckDir, { recursive: true });
+  if (fs.existsSync(goodvibesonlyDir)) {
+    fs.rmSync(goodvibesonlyDir, { recursive: true });
     console.log('Removed scanner');
     removed = true;
   }
@@ -180,7 +180,7 @@ function uninstall(targetDir) {
     if (settings.hooks?.PreToolUse) {
       const originalLength = settings.hooks.PreToolUse.length;
       settings.hooks.PreToolUse = settings.hooks.PreToolUse.filter(h =>
-        !h.hooks?.some(inner => inner.command?.includes('vibecheck') || inner.command?.includes('scan.js'))
+        !h.hooks?.some(inner => inner.command?.includes('goodvibesonly') || inner.command?.includes('scan.js'))
       );
       if (settings.hooks.PreToolUse.length < originalLength) {
         saveJson(settingsPath, settings);
@@ -191,9 +191,9 @@ function uninstall(targetDir) {
   }
 
   if (removed) {
-    console.log('\n✓ VibeCheck uninstalled successfully!\n');
+    console.log('\n✓ GoodVibesOnly uninstalled successfully!\n');
   } else {
-    console.log('VibeCheck was not installed in this location.\n');
+    console.log('GoodVibesOnly was not installed in this location.\n');
   }
 }
 
@@ -215,7 +215,7 @@ async function main() {
   const args = process.argv.slice(2);
 
   console.log('');
-  console.log('🛡️  VibeCheck Installer');
+  console.log('🛡️  GoodVibesOnly Installer');
   console.log('   Security scanner for vibe-coded projects');
   console.log('');
 
@@ -239,7 +239,7 @@ async function main() {
     targetDir = LOCAL_CLAUDE_DIR;
   } else {
     // Interactive mode
-    console.log('Where would you like to install VibeCheck?');
+    console.log('Where would you like to install GoodVibesOnly?');
     console.log('');
     console.log('  [g] Global (~/.claude/) - Available in all projects');
     console.log('  [l] Local (./.claude/)  - This project only');

package/bin/scan.js

@@ -1,7 +1,7 @@
 #!/usr/bin/env node
 
 /**
- * VibeCheck Scanner
+ * GoodVibesOnly Scanner
  *
  * Scans files for security vulnerabilities.
  * Used by Claude Code hooks to block commits with critical issues.
@@ -172,7 +172,7 @@ function formatFindings(findings) {
     bySeverity[f.severity].push(f);
   }
 
-  let output = '\n🛡️  VibeCheck Security Scan\n\n';
+  let output = '\n🛡️  GoodVibesOnly Security Scan\n\n';
 
   const total = findings.length;
   if (total === 0) {

package/commands/{vibecheck.md → goodvibesonly.md}

@@ -60,7 +60,7 @@ Run a security scan on the current changes before committing.
 
 If issues found:
 ```
-VibeCheck found [N] issues:
+GoodVibesOnly found [N] issues:
 
 🔴 CRITICAL (must fix):
 1. [Type]: [file]:[line]
@@ -78,7 +78,7 @@ Want me to fix the critical issues before you commit?
 
 If clean:
 ```
-✓ VibeCheck passed - no security issues found in [N] files
+✓ GoodVibesOnly passed - no security issues found in [N] files
 ```
 
 ## After Scanning

package/hooks/hooks.json

@@ -6,7 +6,7 @@
         "hooks": [
           {
             "type": "command",
-            "command": "node \"{{VIBECHECK_PATH}}/bin/scan.js\"",
+            "command": "node \"{{GOODVIBESONLY_PATH}}/bin/scan.js\"",
             "timeout": 30
           }
         ]

package/package.json

@@ -1,10 +1,10 @@
 {
   "name": "goodvibesonly-cc",
-  "version": "0.1.0",
+  "version": "0.3.0",
   "description": "Security scanner for vibe-coded projects - Claude Code extension",
   "type": "module",
   "bin": {
-    "vibecheck": "./bin/install.js"
+    "goodvibesonly": "./bin/install.js"
   },
   "scripts": {
     "postinstall": "node bin/install.js --global"

package/skills/{vibecheck → goodvibesonly}/SKILL.md

@@ -1,9 +1,9 @@
 ---
-name: vibecheck
-description: Security scanner for vibe-coded projects. AUTO-INVOKE this skill before any git commit, git push, or when user says "commit", "push", "ship it", "deploy", "is this safe?", "check for security issues", or "vibecheck". Also invoke after generating code that handles user input, authentication, database queries, or file operations.
+name: goodvibesonly
+description: Security scanner for vibe-coded projects. AUTO-INVOKE this skill before any git commit, git push, or when user says "commit", "push", "ship it", "deploy", "is this safe?", "check for security issues", or "goodvibesonly". Also invoke after generating code that handles user input, authentication, database queries, or file operations.
 ---
 
-# VibeCheck - Security Scanner
+# GoodVibesOnly - Security Scanner
 
 Automatically scan for security vulnerabilities before code leaves the developer's machine.
 
@@ -20,7 +20,7 @@ Run this skill WHEN user says:
 - "ship it"
 - "is this safe?"
 - "check security"
-- "vibecheck"
+- "goodvibesonly"
 - "ready to deploy"
 
 ## Quick Scan Checklist
@@ -94,7 +94,7 @@ http://(?!localhost)              # Non-HTTPS
 ## Example Output
 
 ```
-🛡️ VibeCheck Security Scan
+🛡️ GoodVibesOnly Security Scan
 
 Scanned 8 files with changes.
 
@@ -105,7 +105,7 @@ Scanned 8 files with changes.
    const API_KEY = "sk-abc123..."
    → Move to environment variable
 
-2. SQL Injection  
+2. SQL Injection
    src/db/users.js:42
    db.query("SELECT * FROM users WHERE id = " + id)
    → Use parameterized query: db.query("SELECT * FROM users WHERE id = ?", [id])