specweave 0.24.11 → 0.24.13

package/plugins/specweave/hooks/post-edit-write-consolidated.sh

@@ -0,0 +1,335 @@
+#!/bin/bash
+#
+# Post-Edit/Write Consolidated Hook: Update Status Line After spec.md or tasks.md Changes
+#
+# Purpose: Unified hook for both Edit and Write tools
+# Triggers: After Edit/Write modifies spec.md (AC updates) or tasks.md (task completion)
+# Action: Updates status line cache to reflect latest AC/task progress
+#
+# CONSOLIDATION (v0.25.0):
+# - Replaces post-edit-spec.sh and post-write-spec.sh (identical code)
+# - Reduces hook overhead by 50% (2 post-hooks → 1)
+# - Single point of maintenance
+# - Combined with pre-edit-write-consolidated.sh, reduces 4 hooks → 2 hooks
+#
+# This ensures status line stays in sync when ACs are marked complete via Edit tool
+# (not just TodoWrite, which only tracks internal todo lists)
+#
+# EMERGENCY FIXES (v0.24.3):
+# - Kill switch: Set SPECWEAVE_DISABLE_HOOKS=1 to disable ALL hooks
+# - Circuit breaker: Auto-disable after 3 consecutive failures
+# - File locking: Prevent concurrent executions (max 1 at a time)
+# - Aggressive debouncing: Increased from 1s to 5s
+# - Complete error isolation: Never let errors reach Claude Code
+#
+# TIER 1 IMPROVEMENTS (v0.24.2):
+# - Debouncing: Skip if updated less than 5 seconds ago (90% overhead reduction)
+# - File mtime detection: Check recently modified spec.md/tasks.md as fallback
+# - Non-blocking: Run update-status-line.sh in background
+# - Smart detection: Only update if spec/tasks files actually changed
+#
+# Previous fix (v0.24.1): Enhanced file detection for increment completion
+# - Detects changes via TOOL_USE_CONTENT, TOOL_RESULT, and argument parsing
+# - Always updates status line for ANY spec.md/tasks.md change in increments folder
+
+# CRITICAL: Remove set -e to prevent hook errors from crashing Claude Code
+set +e
+
+# Find project root (must be BEFORE recursion guard to get PROJECT_ROOT)
+find_project_root() {
+  local dir="$PWD"
+  while [[ "$dir" != "/" ]]; do
+    if [[ -d "$dir/.specweave" ]]; then
+      echo "$dir"
+      return 0
+    fi
+    dir=$(dirname "$dir")
+  done
+  echo "$PWD"
+}
+
+PROJECT_ROOT=$(find_project_root)
+LOGS_DIR="$PROJECT_ROOT/.specweave/logs"
+DEBUG_LOG="$LOGS_DIR/hooks-debug.log"
+
+# ============================================================================
+# RECURSION PREVENTION (CRITICAL - v0.26.0 - FILE-BASED GUARD)
+# ============================================================================
+# PROBLEM: Hooks that write files trigger other hooks, causing infinite loops.
+# OLD SOLUTION (v0.25.1): Environment variable SPECWEAVE_IN_HOOK=1
+# WHY IT FAILED: Background processes (&) create NEW shells that don't inherit env vars!
+#
+# NEW SOLUTION (v0.26.0): File-based recursion guard
+# - Guard file exists = already inside hook chain
+# - Works across ALL processes (not just current shell)
+# - Atomic operation (mkdir -p ensures thread safety)
+# - Cleanup guaranteed by trap EXIT
+#
+# See: .specweave/increments/0051-*/reports/GITHUB-COMMENT-RECURSION-ROOT-CAUSE-2025-11-24.md
+# See: ADR-0073 (Hook Recursion Prevention Strategy)
+
+RECURSION_GUARD_FILE="$PROJECT_ROOT/.specweave/state/.hook-recursion-guard"
+
+if [[ -f "$RECURSION_GUARD_FILE" ]]; then
+  # Silent exit - we're already inside a hook chain
+  # This is NORMAL and prevents recursion (not an error!)
+  exit 0
+fi
+
+# Don't create guard file here - we only CHECK it
+# Guard file is ONLY created by post-task-completion.sh (the entry point)
+# All other hooks just check for its existence
+
+# EMERGENCY KILL SWITCH: Disable all hooks if env variable set
+if [[ "${SPECWEAVE_DISABLE_HOOKS:-0}" == "1" ]]; then
+  exit 0
+fi
+
+# Ensure state and logs directories exist
+mkdir -p "$PROJECT_ROOT/.specweave/state" "$LOGS_DIR" 2>/dev/null || true
+
+# EMERGENCY CIRCUIT BREAKER: Track consecutive failures
+CIRCUIT_BREAKER_FILE="$PROJECT_ROOT/.specweave/state/.hook-circuit-breaker"
+CIRCUIT_BREAKER_THRESHOLD=3
+
+if [[ -f "$CIRCUIT_BREAKER_FILE" ]]; then
+  FAILURE_COUNT=$(cat "$CIRCUIT_BREAKER_FILE" 2>/dev/null || echo 0)
+  if (( FAILURE_COUNT >= CIRCUIT_BREAKER_THRESHOLD )); then
+    echo "[$(date)] CIRCUIT BREAKER OPEN: Hooks disabled after $FAILURE_COUNT failures. Run: rm $CIRCUIT_BREAKER_FILE" >> "$DEBUG_LOG" 2>/dev/null || true
+    exit 0
+  fi
+fi
+
+# EMERGENCY FILE LOCK: Prevent concurrent executions
+LOCK_FILE="$PROJECT_ROOT/.specweave/state/.hook-post-edit-write.lock"
+LOCK_TIMEOUT=5  # seconds
+
+# Try to acquire lock with timeout
+LOCK_ACQUIRED=false
+for i in {1..5}; do
+  if mkdir "$LOCK_FILE" 2>/dev/null; then
+    LOCK_ACQUIRED=true
+    trap 'rmdir "$LOCK_FILE" 2>/dev/null || true' EXIT
+    break
+  fi
+
+  # Check if lock is stale (older than LOCK_TIMEOUT seconds)
+  if [[ -d "$LOCK_FILE" ]]; then
+    LOCK_AGE=$(($(date +%s) - $(stat -f "%m" "$LOCK_FILE" 2>/dev/null || echo 0)))
+    if (( LOCK_AGE > LOCK_TIMEOUT )); then
+      rmdir "$LOCK_FILE" 2>/dev/null || true
+      continue
+    fi
+  fi
+
+  sleep 0.2
+done
+
+if [[ "$LOCK_ACQUIRED" == "false" ]]; then
+  echo "[$(date)] post-edit-write: Could not acquire lock, skipping" >> "$DEBUG_LOG" 2>/dev/null || true
+  exit 0
+fi
+
+# Log rotation: Keep debug log under 100KB
+if [[ -f "$DEBUG_LOG" ]] && [[ $(wc -c < "$DEBUG_LOG" 2>/dev/null || echo 0) -gt 102400 ]]; then
+  tail -100 "$DEBUG_LOG" > "$DEBUG_LOG.tmp" 2>/dev/null || true
+  mv "$DEBUG_LOG.tmp" "$DEBUG_LOG" 2>/dev/null || true
+  echo "[$(date)] Log rotated" >> "$DEBUG_LOG" 2>/dev/null || true
+fi
+
+# ============================================================================
+# BURST WRITE DETECTION (v0.26.2 - Prevent Write Storms)
+# ============================================================================
+# Problem: Architect agent creating multiple ADRs in one response (6+ writes/minute)
+# Solution: Detect burst writes and throttle if necessary
+# Incident: 2025-11-24 (Increment 0052 - architect created 6 ADRs at once)
+BURST_TIMESTAMPS_FILE="$PROJECT_ROOT/.specweave/state/.write-timestamps"
+BURST_WINDOW=10      # seconds
+BURST_THRESHOLD=5    # max writes in window
+BURST_THROTTLE=2     # seconds to wait if burst detected
+
+# Record this write timestamp
+mkdir -p "$(dirname "$BURST_TIMESTAMPS_FILE")" 2>/dev/null || true
+echo "$(date +%s)" >> "$BURST_TIMESTAMPS_FILE" 2>/dev/null || true
+
+# Count writes in the last BURST_WINDOW seconds
+if [[ -f "$BURST_TIMESTAMPS_FILE" ]]; then
+  NOW=$(date +%s)
+  CUTOFF=$((NOW - BURST_WINDOW))
+
+  # Clean up old timestamps (older than BURST_WINDOW)
+  grep -v "^$" "$BURST_TIMESTAMPS_FILE" 2>/dev/null | \
+    awk -v cutoff="$CUTOFF" '$1 > cutoff' > "$BURST_TIMESTAMPS_FILE.tmp" 2>/dev/null || true
+  mv "$BURST_TIMESTAMPS_FILE.tmp" "$BURST_TIMESTAMPS_FILE" 2>/dev/null || true
+
+  # Count recent writes
+  RECENT_WRITES=$(wc -l < "$BURST_TIMESTAMPS_FILE" 2>/dev/null || echo 0)
+
+  if (( RECENT_WRITES > BURST_THRESHOLD )); then
+    echo "[$(date)] ⚠️  BURST DETECTED: $RECENT_WRITES writes in ${BURST_WINDOW}s (threshold: $BURST_THRESHOLD)" >> "$DEBUG_LOG" 2>/dev/null || true
+    echo "[$(date)] Throttling for ${BURST_THROTTLE}s to prevent overload..." >> "$DEBUG_LOG" 2>/dev/null || true
+    sleep "$BURST_THROTTLE"
+  fi
+fi
+
+# ============================================================================
+# TIER 1 FIX: Debouncing (Prevent Redundant Updates)
+# ============================================================================
+# Skip update if we updated less than 5 seconds ago (INCREASED FROM 1s)
+# This handles rapid consecutive changes (e.g., 10 tasks marked complete quickly)
+LAST_UPDATE_FILE="$PROJECT_ROOT/.specweave/state/.last-status-update"
+DEBOUNCE_SECONDS=5
+
+if [[ -f "$LAST_UPDATE_FILE" ]]; then
+  LAST_UPDATE=$(cat "$LAST_UPDATE_FILE" 2>/dev/null || echo 0)
+  NOW=$(date +%s)
+  TIME_SINCE_UPDATE=$((NOW - LAST_UPDATE))
+
+  if (( TIME_SINCE_UPDATE < DEBOUNCE_SECONDS )); then
+    echo "[$(date)] post-edit-write: Debounced (${TIME_SINCE_UPDATE}s since last update)" >> "$DEBUG_LOG" 2>/dev/null || true
+    exit 0  # Skip this update
+  fi
+fi
+
+# ============================================================================
+# TIER 2: Check for PreToolUse Signal (Primary Detection Method)
+# ============================================================================
+PENDING_FILE="$PROJECT_ROOT/.specweave/state/.pending-status-update"
+METRICS_FILE="$PROJECT_ROOT/.specweave/state/hook-metrics.jsonl"
+DETECTED_FILE=""
+DETECTION_METHOD="none"
+
+# First, check if PreToolUse hook left a signal
+if [[ -f "$PENDING_FILE" ]]; then
+  DETECTED_FILE=$(cat "$PENDING_FILE" 2>/dev/null || echo "")
+  # Delete pending file immediately (consume signal)
+  rm "$PENDING_FILE" 2>/dev/null || true
+
+  if [[ -n "$DETECTED_FILE" ]]; then
+    DETECTION_METHOD="pretooluse"
+    echo "[$(date)] post-edit-write: File from PreToolUse signal: $DETECTED_FILE" >> "$DEBUG_LOG" 2>/dev/null || true
+
+    # Record Tier 2 success metric
+    TIMESTAMP=$(date -u +%Y-%m-%dT%H:%M:%SZ)
+    echo "{\"timestamp\":\"$TIMESTAMP\",\"hook\":\"post-edit-write\",\"event\":\"tier2_success\",\"method\":\"pretooluse\"}" >> "$METRICS_FILE" 2>/dev/null || true
+  fi
+fi
+
+# ============================================================================
+# TIER 1 FALLBACK: Environment Variable Detection
+# ============================================================================
+# If PreToolUse didn't provide signal, fall back to Tier 1 methods
+if [[ -z "$DETECTED_FILE" ]]; then
+  # Method 1: TOOL_USE_CONTENT environment variable
+  if [[ -n "${TOOL_USE_CONTENT:-}" ]]; then
+    DETECTED_FILE="$TOOL_USE_CONTENT"
+    DETECTION_METHOD="env_content"
+  fi
+
+  # Method 2: TOOL_RESULT environment variable
+  if [[ -z "$DETECTED_FILE" ]] && [[ -n "${TOOL_RESULT:-}" ]]; then
+    DETECTED_FILE=$(echo "$TOOL_RESULT" | grep -o '"file_path"[[:space:]]*:[[:space:]]*"[^"]*"' | head -1 | sed 's/.*"\([^"]*\)".*/\1/' || echo "")
+    DETECTION_METHOD="env_result"
+  fi
+
+  # Method 3: TOOL_USE_ARGS
+  if [[ -z "$DETECTED_FILE" ]] && [[ -n "${TOOL_USE_ARGS:-}" ]]; then
+    DETECTED_FILE=$(echo "$TOOL_USE_ARGS" | grep -o '"file_path"[[:space:]]*:[[:space:]]*"[^"]*"' | head -1 | sed 's/.*"\([^"]*\)".*/\1/' || echo "")
+    DETECTION_METHOD="env_args"
+  fi
+
+  # Log env var detection (for metrics)
+  if [[ -n "$DETECTED_FILE" ]]; then
+    echo "[$(date)] post-edit-write: File from env vars ($DETECTION_METHOD): $DETECTED_FILE" >> "$DEBUG_LOG" 2>/dev/null || true
+  fi
+fi
+
+# Check if we detected a spec.md or tasks.md change in increments folder
+SHOULD_UPDATE=false
+
+if [[ -n "$DETECTED_FILE" ]]; then
+  # Check if the file is spec.md or tasks.md
+  if [[ "$DETECTED_FILE" == *"/spec.md" ]] || [[ "$DETECTED_FILE" == *"/tasks.md" ]]; then
+    # Check if it's in an increment folder
+    if [[ "$DETECTED_FILE" == *"/.specweave/increments/"* ]]; then
+      SHOULD_UPDATE=true
+      echo "[$(date)] post-edit-write: Increment file changed - will update status line" >> "$DEBUG_LOG" 2>/dev/null || true
+    fi
+  fi
+fi
+
+# ============================================================================
+# TIER 1 FIX: File Modification Time Detection (Fallback)
+# ============================================================================
+# If we couldn't detect the file via environment variables, check which files
+# were modified recently (within last 2 seconds) instead of blindly updating
+if [[ -z "$DETECTED_FILE" ]]; then
+  echo "[$(date)] post-edit-write: Env vars empty - checking file mtimes" >> "$DEBUG_LOG" 2>/dev/null || true
+
+  NOW=$(date +%s)
+  INCREMENTS_DIR="$PROJECT_ROOT/.specweave/increments"
+
+  # Check for recently modified spec.md or tasks.md files
+  if [[ -d "$INCREMENTS_DIR" ]]; then
+    for file in "$INCREMENTS_DIR"/*/spec.md "$INCREMENTS_DIR"/*/tasks.md; do
+      if [[ -f "$file" ]]; then
+        # Get file modification time (platform-specific)
+        if [[ "$(uname)" == "Darwin" ]]; then
+          MTIME=$(stat -f "%m" "$file" 2>/dev/null || echo 0)
+        else
+          MTIME=$(stat -c "%Y" "$file" 2>/dev/null || echo 0)
+        fi
+
+        # If file was modified in last 2 seconds, consider it the changed file
+        TIME_DIFF=$((NOW - MTIME))
+        if (( TIME_DIFF <= 2 )); then
+          DETECTED_FILE="$file"
+          echo "[$(date)] post-edit-write: Detected recent modification: $file (${TIME_DIFF}s ago)" >> "$DEBUG_LOG" 2>/dev/null || true
+          SHOULD_UPDATE=true
+          break
+        fi
+      fi
+    done
+  fi
+
+  # If still no file detected, skip update (not a spec/tasks change)
+  if [[ -z "$DETECTED_FILE" ]]; then
+    echo "[$(date)] post-edit-write: No spec/tasks modifications detected - skipping" >> "$DEBUG_LOG" 2>/dev/null || true
+    exit 0
+  fi
+fi
+
+# ============================================================================
+# TIER 1 FIX: Non-Blocking Background Update with COMPLETE ERROR ISOLATION
+# ============================================================================
+# Update status line if needed
+if [[ "$SHOULD_UPDATE" == "true" ]]; then
+  echo "[$(date)] post-edit-write: Running update-status-line.sh (background)" >> "$DEBUG_LOG" 2>/dev/null || true
+
+  # Record update time BEFORE spawning background process
+  # This ensures debouncing works even if update hasn't completed yet
+  echo "$(date +%s)" > "$LAST_UPDATE_FILE"
+
+  # Run status line update in background with COMPLETE error isolation
+  # This prevents Edit/Write tool from waiting for status line computation
+  (
+    set +e  # Disable error propagation
+
+    if "$PROJECT_ROOT/plugins/specweave/hooks/lib/update-status-line.sh" 2>&1 | tee -a "$DEBUG_LOG" >/dev/null; then
+      echo "[$(date)] post-edit-write: Status line updated successfully" >> "$DEBUG_LOG" 2>/dev/null || true
+      # Reset circuit breaker on success
+      echo "0" > "$CIRCUIT_BREAKER_FILE" 2>/dev/null || true
+    else
+      echo "[$(date)] post-edit-write: Warning - status line update failed (non-blocking)" >> "$DEBUG_LOG" 2>/dev/null || true
+      # Increment circuit breaker
+      CURRENT_FAILURES=$(cat "$CIRCUIT_BREAKER_FILE" 2>/dev/null || echo 0)
+      echo "$((CURRENT_FAILURES + 1))" > "$CIRCUIT_BREAKER_FILE" 2>/dev/null || true
+    fi
+  ) &
+
+  # Disown the background process so it's not killed when hook exits
+  disown 2>/dev/null || true
+fi
+
+# Always exit 0 to prevent hook errors from crashing Claude Code
+exit 0

package/plugins/specweave/hooks/post-metadata-change.sh

@@ -22,12 +22,7 @@
 # EMERGENCY FIX v0.24.3: Remove set -e - it causes Claude Code crashes!
 set +e
 
-# EMERGENCY KILL SWITCH
-if [[ "${SPECWEAVE_DISABLE_HOOKS:-0}" == "1" ]]; then
-  exit 0
-fi
-
-# Find project root
+# Find project root (must be BEFORE recursion guard to get PROJECT_ROOT)
 find_project_root() {
   local dir="$PWD"
   while [[ "$dir" != "/" ]]; do
@@ -45,9 +40,48 @@ LOGS_DIR="$PROJECT_ROOT/.specweave/logs"
 DEBUG_LOG="$LOGS_DIR/hooks-debug.log"
 HOOK_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
 
+# ============================================================================
+# RECURSION PREVENTION (CRITICAL - v0.26.0 - FILE-BASED GUARD)
+# ============================================================================
+# NEW SOLUTION (v0.26.0): File-based recursion guard
+# See: ADR-0073 (Hook Recursion Prevention Strategy)
+
+RECURSION_GUARD_FILE="$PROJECT_ROOT/.specweave/state/.hook-recursion-guard"
+
+if [[ -f "$RECURSION_GUARD_FILE" ]]; then
+  # Silent exit - we're already inside a hook chain
+  exit 0
+fi
+
+# EMERGENCY KILL SWITCH
+if [[ "${SPECWEAVE_DISABLE_HOOKS:-0}" == "1" ]]; then
+  exit 0
+fi
+
 # Ensure logs directory exists
 mkdir -p "$LOGS_DIR" 2>/dev/null || true
 
+# ============================================================================
+# EARLY EXIT OPTIMIZATION (v0.25.0): Ultra-Fast Rejection of Non-Metadata Changes
+# ============================================================================
+# This hook should ONLY run for metadata.json changes.
+# 99.9% of Edit/Write operations are NOT metadata.json.
+# Do fastest possible check first to minimize overhead.
+
+# Quick check: If TOOL_USE_CONTENT doesn't contain "metadata.json", exit immediately
+if [[ -n "${TOOL_USE_CONTENT:-}" ]] && [[ "$TOOL_USE_CONTENT" != *"metadata.json"* ]]; then
+  exit 0  # Fast path: Not metadata.json
+fi
+
+# Quick check: If TOOL_USE_ARGS doesn't contain "metadata.json", exit immediately
+if [[ -n "${TOOL_USE_ARGS:-}" ]] && [[ "$TOOL_USE_ARGS" != *"metadata.json"* ]]; then
+  exit 0  # Fast path: Not metadata.json
+fi
+
+# ============================================================================
+# STANDARD FILE DETECTION (Only if quick checks passed)
+# ============================================================================
+
 # Extract modified file from environment variables (Claude Code provides this)
 MODIFIED_FILE=""
 

package/plugins/specweave/hooks/post-task-completion.sh

@@ -36,10 +36,13 @@
 
 set +e  # NEVER use set -e in hooks - it causes crashes
 
-# EMERGENCY KILL SWITCH FIRST (before anything else)
-if [[ "${SPECWEAVE_DISABLE_HOOKS:-0}" == "1" ]]; then
-  exit 0
-fi
+# ============================================================================
+# PROJECT ROOT DETECTION (MUST BE FIRST - v0.26.1 FIX)
+# ============================================================================
+# CRITICAL FIX: PROJECT_ROOT must be defined BEFORE recursion guard creation
+# BUG (v0.26.0): Used $PROJECT_ROOT on line 71 but defined it on line 112
+# RESULT: Guard file created at wrong path (/.specweave/...) → recursion not prevented
+# See: Incident 2025-11-24 (3x PreToolUse hook fires, Claude Code crash)
 
 # Find project root by searching upward for .specweave/ directory
 # Works regardless of where hook is installed (source or .claude/hooks/)
@@ -63,6 +66,60 @@ find_project_root() {
 PROJECT_ROOT="$(find_project_root "$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)")"
 cd "$PROJECT_ROOT" 2>/dev/null || true
 
+# ============================================================================
+# RECURSION PREVENTION (CRITICAL - v0.26.0 - FILE-BASED GUARD)
+# ============================================================================
+# PROBLEM: Hooks that write files trigger other hooks, causing infinite loops.
+# OLD SOLUTION (v0.25.1): Environment variable SPECWEAVE_IN_HOOK=1
+# WHY IT FAILED: Background processes (&) create NEW shells that don't inherit env vars!
+#
+# NEW SOLUTION (v0.26.0): File-based recursion guard
+# - Guard file exists = already inside hook chain
+# - Works across ALL processes (not just current shell)
+# - Atomic operation (mkdir -p ensures thread safety)
+# - Cleanup guaranteed by trap EXIT
+#
+# Example infinite loop (BEFORE fix):
+#   TodoWrite → post-task-completion.sh (sets SPECWEAVE_IN_HOOK=1)
+#     → spawns background process (&)
+#       → consolidated-sync.js (SPECWEAVE_IN_HOOK=0! lost!)
+#         → fs.writeFile(tasks.md)
+#           → post-edit-write-consolidated.sh (guard fails!)
+#             → INFINITE RECURSION → 27 duplicate GitHub comments!
+#
+# With file-based guard (AFTER fix):
+#   TodoWrite → post-task-completion.sh (creates .hook-recursion-guard file)
+#     → spawns background process (&)
+#       → consolidated-sync.js (inherits guard file!)
+#         → fs.writeFile(tasks.md)
+#           → post-edit-write-consolidated.sh (checks file, exits)
+#             → NO RECURSION ✅
+#
+# See: .specweave/increments/0051-*/reports/GITHUB-COMMENT-RECURSION-ROOT-CAUSE-2025-11-24.md
+# See: ADR-0073 (Hook Recursion Prevention Strategy)
+
+RECURSION_GUARD_FILE="$PROJECT_ROOT/.specweave/state/.hook-recursion-guard"
+
+if [[ -f "$RECURSION_GUARD_FILE" ]]; then
+  # Silent exit - we're already inside a hook chain
+  echo "[$(date)] ⏭️  Recursion guard detected - skipping (already in hook)" >> "$DEBUG_LOG" 2>/dev/null || true
+  exit 0
+fi
+
+# Create guard file (atomic operation)
+mkdir -p "$PROJECT_ROOT/.specweave/state" 2>/dev/null || true
+touch "$RECURSION_GUARD_FILE"
+
+# Ensure guard file is ALWAYS removed when script exits (even on error)
+trap 'rm -f "$RECURSION_GUARD_FILE" 2>/dev/null || true' EXIT SIGINT SIGTERM
+
+echo "[$(date)] 🔒 Recursion guard created" >> "$DEBUG_LOG" 2>/dev/null || true
+
+# EMERGENCY KILL SWITCH (after recursion guard)
+if [[ "${SPECWEAVE_DISABLE_HOOKS:-0}" == "1" ]]; then
+  exit 0
+fi
+
 # ============================================================================
 # EMERGENCY SAFETY CHECKS
 # ============================================================================
@@ -349,13 +406,25 @@ fi
   # ============================================================================
   # CONSOLIDATED SYNC (v0.24.4 - PERFORMANCE OPTIMIZATION)
   # ============================================================================
-  # REPLACES: 5-6 separate Node.js spawns with SINGLE consolidated process
-  # BEFORE: update-tasks-md.js, sync-living-docs.js, update-ac-status.js,
-  #         translate-living-docs.js, prepare-reflection-context.js
-  # AFTER:  consolidated-sync.js (runs all operations sequentially)
-  # IMPACT: 83% reduction in process spawning overhead
+  # EMERGENCY FIX (v0.26.0-hotfix): DISABLED TO PREVENT CLAUDE CODE CRASHES
+  #
+  # ROOT CAUSE: consolidated-sync.js makes 5+ Edit/Write operations, each triggering
+  # 3 hooks (PreToolUse, PostToolUse×2), resulting in 15+ hook invocations per task.
+  # This causes process exhaustion and Claude Code crashes.
+  #
+  # NEW STRATEGY: Run consolidated sync ONLY at:
+  # 1. Session end (all tasks done + 120s inactivity)
+  # 2. Manual sync (/specweave:sync-docs command)
+  # 3. Increment closure (/specweave:done validation)
+  #
+  # See: .specweave/increments/0051-*/reports/CLAUDE-CODE-CRASH-ROOT-CAUSE-2025-11-23.md
+  # See: ADR-0072 (Post-Task Hook Simplification)
   # ============================================================================
 
+  # RE-ENABLED: Automatic sync on each TodoWrite (ACCEPTING CRASH RISK)
+  # WARNING: This can cause Claude Code crashes if too many TodoWrite events fire rapidly
+  # User explicitly requested re-enabling despite crash risk
+
   echo "[$(date)] 🚀 Running consolidated sync" >> "$DEBUG_LOG" 2>/dev/null || true
 
   # Find consolidated sync script
@@ -371,6 +440,21 @@ fi
   fi
 
   if [ -n "$CONSOLIDATED_SCRIPT" ]; then
+    # Load GITHUB_TOKEN from .env for gh CLI authentication
+    if [ -f "$PROJECT_ROOT/.env" ]; then
+      # Extract GITHUB_TOKEN from .env (handles various formats)
+      GITHUB_TOKEN_FROM_ENV=$(grep -E '^GITHUB_TOKEN=' "$PROJECT_ROOT/.env" 2>/dev/null | head -1 | cut -d'=' -f2- | sed 's/^["'\'']//' | sed 's/["'\'']$//')
+      if [ -n "$GITHUB_TOKEN_FROM_ENV" ]; then
+        export GITHUB_TOKEN="$GITHUB_TOKEN_FROM_ENV"
+        echo "[$(date)] ✅ GitHub token loaded from .env" >> "$DEBUG_LOG" 2>/dev/null || true
+      fi
+    fi
+
+    # FIX (v0.26.0): Skip GitHub sync in post-task-completion hook
+    # GitHub sync should ONLY run on increment COMPLETION, not task completion
+    # This prevents 27 duplicate comments (see root cause analysis)
+    export SKIP_GITHUB_SYNC=true
+
     # Run consolidated sync (single Node.js process handles ALL operations)
     if (cd "$PROJECT_ROOT" && node "$CONSOLIDATED_SCRIPT" "$CURRENT_INCREMENT") >> "$DEBUG_LOG" 2>&1; then
       echo "[$(date)] ✅ Consolidated sync completed" >> "$DEBUG_LOG" 2>/dev/null || true

package/plugins/specweave/hooks/pre-edit-spec.sh

@@ -101,17 +101,6 @@ else
   exit 0  # Let PostToolUse handle it with mtime fallback
 fi
 
-# ============================================================================
-# EARLY EXIT: Only process .specweave/ files (v0.24.4 Performance Fix)
-# ============================================================================
-# 90% of Edit operations are on non-SpecWeave files (src/, tests/, node_modules/)
-# Exit immediately for non-.specweave/ files to reduce hook overhead by 90%
-
-if [[ "$FILE_PATH" != *"/.specweave/"* ]]; then
-  echo "[$(date)] pre-edit-spec: Not a .specweave/ file, skipping (performance optimization)" >> "$DEBUG_LOG" 2>/dev/null || true
-  exit 0
-fi
-
 # Check if this is a spec.md or tasks.md file in increments folder
 IS_SPEC_FILE=false
 if [[ "$FILE_PATH" == *"/spec.md" ]] || [[ "$FILE_PATH" == *"/tasks.md" ]]; then