sumulige-claude 1.3.0 → 1.3.1

package/.claude/commands/audit.md

@@ -0,0 +1,147 @@
+---
+description: Audit approved commands for security risks
+---
+
+# /audit
+
+审计已批准的命令，检测潜在的安全风险。类似 cc-safe 工具。
+
+## 使用方式
+
+```bash
+/audit              # 扫描当前项目
+/audit --global     # 扫描全局配置
+/audit --fix        # 交互式移除危险权限
+/audit --report     # 生成详细报告
+```
+
+## 检测的危险模式
+
+### 🔴 Critical (必须移除)
+
+| 模式 | 风险 | 说明 |
+|------|------|------|
+| `rm -rf /` | 系统破坏 | 删除根目录 |
+| `> /dev/sda` | 数据丢失 | 覆写磁盘 |
+| `:(){ :\|:& };:` | Fork 炸弹 | 系统崩溃 |
+| `mkfs` | 数据丢失 | 格式化磁盘 |
+| `dd if=/dev/zero` | 数据丢失 | 覆写设备 |
+
+### 🟠 High (需要审查)
+
+| 模式 | 风险 | 说明 |
+|------|------|------|
+| `sudo` | 权限提升 | 管理员权限 |
+| `rm -rf` | 数据丢失 | 递归删除 |
+| `chmod 777` | 安全漏洞 | 过度开放权限 |
+| `docker run --privileged` | 容器逃逸 | 特权容器 |
+| `curl \| sh` | 远程代码执行 | 未验证脚本 |
+| `eval` | 代码注入 | 动态执行 |
+
+### 🟡 Medium (建议审查)
+
+| 模式 | 风险 | 说明 |
+|------|------|------|
+| `npm install -g` | 全局污染 | 全局包安装 |
+| `pip install --user` | 环境污染 | 用户级安装 |
+| `git push --force` | 历史丢失 | 强制推送 |
+| `DROP TABLE` | 数据丢失 | 删除数据表 |
+
+## 工作流程
+
+### Step 1: 扫描配置文件
+
+检查以下位置：
+```
+~/.claude/settings.local.json          # 全局批准
+.claude/settings.local.json            # 项目批准
+~/.claude/projects/*/settings.local.json  # 各项目批准
+```
+
+### Step 2: 模式匹配
+
+```javascript
+const dangerousPatterns = [
+  { pattern: /rm\s+-rf\s+\//, level: 'critical', desc: '删除根目录' },
+  { pattern: /sudo/, level: 'high', desc: '权限提升' },
+  { pattern: /chmod\s+777/, level: 'high', desc: '过度开放权限' },
+  { pattern: /--privileged/, level: 'high', desc: '特权容器' },
+  { pattern: /curl.*\|\s*sh/, level: 'high', desc: '远程脚本执行' },
+  { pattern: /git\s+push\s+--force/, level: 'medium', desc: '强制推送' },
+];
+```
+
+### Step 3: 生成报告
+
+```markdown
+# Permission Audit Report
+
+**Date**: YYYY-MM-DD HH:mm
+**Scanned**: X files
+**Issues**: Y found
+
+## 🔴 Critical Issues (0)
+None found.
+
+## 🟠 High Risk (2)
+
+### 1. sudo permission
+**Location**: ~/.claude/settings.local.json
+**Pattern**: `Bash(sudo apt install *)`
+**Risk**: 权限提升可能导致系统级变更
+
+**Recommendation**:
+移除此权限，改为手动执行 sudo 命令
+
+### 2. rm -rf permission
+**Location**: .claude/settings.local.json
+**Pattern**: `Bash(rm -rf node_modules)`
+**Risk**: 可能意外删除重要文件
+
+**Recommendation**:
+限制为特定目录，如 `Bash(rm -rf ./node_modules)`
+
+## 🟡 Medium Risk (1)
+
+### 1. git push --force
+**Location**: ~/.claude/settings.local.json
+**Pattern**: `Bash(git push --force)`
+**Risk**: 可能覆盖远程历史
+
+## Summary
+
+| Level | Count | Action |
+|-------|-------|--------|
+| 🔴 Critical | 0 | 必须移除 |
+| 🟠 High | 2 | 建议移除 |
+| 🟡 Medium | 1 | 可选审查 |
+
+## Quick Actions
+
+```bash
+# 移除高风险权限
+/audit --fix
+
+# 查看具体权限
+cat ~/.claude/settings.local.json | jq '.permissions'
+```
+```
+
+---
+
+## CLI 集成
+
+也可通过 `smc audit` 命令运行：
+
+```bash
+smc audit              # 扫描当前项目
+smc audit --global     # 扫描全局
+smc audit --ci         # CI 模式（非零退出码）
+```
+
+## 最佳实践
+
+1. **定期审计** - 每周运行一次 `/audit`
+2. **最小权限** - 只批准必要的命令
+3. **限定范围** - 使用完整路径而非通配符
+4. **CI 检查** - 在 CI 中运行 `smc audit --ci`

package/.claude/commands/gha.md

@@ -0,0 +1,136 @@
+---
+description: Analyze GitHub Actions CI failures
+---
+
+# /gha
+
+分析 GitHub Actions CI 失败，自动检测问题并建议修复方案。
+
+## 使用方式
+
+```bash
+/gha <workflow-url>   # 分析指定的 workflow run
+/gha --last           # 分析最近失败的 workflow
+/gha --flaky          # 检测 flaky tests
+/gha --history        # 查看失败历史趋势
+```
+
+## 工作流程
+
+### Step 1: 获取 Workflow 信息
+
+```bash
+# 获取最近的 workflow runs
+gh run list --limit 10
+
+# 获取失败的 run 详情
+gh run view <run-id> --log-failed
+```
+
+### Step 2: 分析失败原因
+
+检测以下常见问题：
+
+| 问题类型 | 检测方式 | 建议 |
+|---------|---------|------|
+| **Flaky Test** | 同一测试随机失败 | 添加重试或修复竞态 |
+| **Timeout** | 超时错误 | 优化性能或增加限制 |
+| **Dependency** | 安装失败 | 检查版本锁定 |
+| **Build Error** | 编译错误 | 检查代码变更 |
+| **Network** | 网络超时 | 添加重试机制 |
+| **Permission** | 权限错误 | 检查 GITHUB_TOKEN |
+
+### Step 3: 生成报告
+
+```markdown
+# GHA Analysis Report
+
+## Workflow: [workflow-name]
+**Run ID**: [run-id]
+**Status**: ❌ Failed
+**Duration**: [time]
+**Triggered by**: [event]
+
+## Failure Summary
+
+### Job: [job-name]
+**Step**: [step-name]
+**Error Type**: [类型]
+
+### Error Log
+```
+[关键错误日志]
+```
+
+## Root Cause Analysis
+
+1. **主要原因**: [分析]
+2. **相关 Commit**: [commit-sha]
+3. **影响范围**: [范围]
+
+## Recommendations
+
+1. [ ] [建议修复 1]
+2. [ ] [建议修复 2]
+
+## Quick Fix
+
+```bash
+# 快速修复命令
+[修复命令]
+```
+
+## Similar Failures
+- [link to similar run 1]
+- [link to similar run 2]
+```
+
+### Step 4: 可选操作
+
+```bash
+# 重新运行失败的 workflow
+gh run rerun <run-id> --failed
+
+# 查看特定 job 日志
+gh run view <run-id> --job <job-id> --log
+```
+
+---
+
+## 常见问题快速诊断
+
+### Flaky Test 检测
+
+```bash
+# 检查最近 10 次运行中同一测试的失败率
+gh run list --workflow=test.yml --limit 10 --json conclusion,databaseId
+```
+
+### 依赖问题
+
+```bash
+# 检查 lockfile 变更
+git diff HEAD~1 -- package-lock.json yarn.lock pnpm-lock.yaml
+```
+
+### 权限问题
+
+检查 workflow 文件中的 permissions：
+```yaml
+permissions:
+  contents: read
+  pull-requests: write
+```
+
+---
+
+## 集成 /fix
+
+如果是代码问题，自动调用 `/fix` 修复：
+
+```bash
+/gha --last    # 分析失败
+/fix --build   # 修复构建错误
+/test          # 本地验证
+/commit        # 提交修复
+```

package/.claude/commands/handoff.md

@@ -0,0 +1,93 @@
+---
+description: Generate context handoff document for session continuity
+---
+
+# /handoff
+
+生成上下文交接文档，用于会话切换或新对话开始时的上下文传递。
+
+## 使用方式
+
+```bash
+/handoff              # 生成交接文档（默认）
+/handoff --save       # 保存到 .claude/handoffs/
+/handoff --compact    # 生成精简版本
+```
+
+## 工作流程
+
+### Step 1: 收集当前上下文
+
+分析当前会话，提取以下信息：
+
+1. **任务概述** - 当前正在做什么
+2. **已完成工作** - 完成了哪些步骤
+3. **阻塞点** - 遇到了什么问题
+4. **下一步行动** - 接下来要做什么
+5. **关键文件** - 涉及的重要文件
+
+### Step 2: 生成交接文档
+
+```markdown
+# Handoff: [任务名称]
+
+**Date**: YYYY-MM-DD HH:mm
+**Session**: [session-id]
+
+## Summary
+[一句话描述当前任务]
+
+## Progress
+- [x] 已完成的步骤 1
+- [x] 已完成的步骤 2
+- [ ] 进行中的步骤
+
+## Blockers
+- [阻塞点描述]
+- [需要解决的问题]
+
+## Next Steps
+1. [下一步行动 1]
+2. [下一步行动 2]
+
+## Key Files
+| File | Purpose |
+|------|---------|
+| `path/to/file.ts` | [文件作用] |
+
+## Context
+[重要的技术决策或上下文信息]
+
+## Commands to Continue
+```bash
+# 继续工作的命令
+cd /path/to/project
+# 相关命令...
+```
+```
+
+### Step 3: 保存（可选）
+
+如果使用 `--save`，保存到：
+```
+.claude/handoffs/
+└── handoff-YYYY-MM-DD-HHmm.md
+```
+
+---
+
+## 最佳实践
+
+1. **定期生成** - 长会话每 30 分钟生成一次
+2. **上下文过长时** - 使用 `/compact` 后生成 handoff
+3. **切换任务前** - 保存当前上下文
+4. **新会话开始** - 读取最近的 handoff 文档
+
+## 与 MEMORY.md 的区别
+
+| 特性 | /handoff | MEMORY.md |
+|------|----------|-----------|
+| 目的 | 会话交接 | 长期记忆 |
+| 粒度 | 当前任务 | 项目全局 |
+| 更新频率 | 每次会话 | 重大变更 |
+| 格式 | 结构化文档 | 增量记录 |

package/.claude/rag/skill-index.json

@@ -1,7 +1,6 @@
 {
-  "version": "2.0.0",
-  "last_updated": "2026-01-22",
-  "description": "Optimized skill index - merged 9 skills into 4 core skills",
+  "version": "1.0.0",
+  "last_updated": "2026-01-11",
   "skills": [
     {
       "name": "frontend-design",
@@ -47,7 +46,7 @@
     },
     {
       "name": "webapp-testing",
-      "keywords": ["browser", "automation", "screenshot", "puppeteer", "scraping"],
+      "keywords": ["test", "testing", "playwright", "browser", "automation", "e2e", "screenshot"],
       "description": "Toolkit for interacting with and testing local web applications using Playwright",
       "trigger": "when testing frontend functionality, debugging UI behavior, or capturing browser screenshots"
     },
@@ -106,32 +105,22 @@
       "trigger": "for complex artifacts requiring state management, routing, or shadcn/ui components"
     },
     {
-      "name": "quality-guard",
-      "keywords": ["review", "security", "quality", "lint", "code review", "vulnerability", "owasp", "dead code", "refactor", "cleanup"],
-      "description": "Code quality guardian - merged: code review + security check + dead code cleanup. Supports --security, --clean modes.",
-      "trigger": "when reviewing code, checking security, or cleaning up dead code",
-      "model": "sonnet"
+      "name": "dev-browser",
+      "keywords": ["browser", "scraping", "automation", "puppet", "playwright", "web"],
+      "description": "Browser automation with persistent state for testing and scraping",
+      "trigger": "when needing browser automation or web scraping capabilities"
     },
     {
-      "name": "test-master",
-      "keywords": ["test", "tdd", "e2e", "playwright", "coverage", "unit test", "jest", "vitest"],
-      "description": "Test master - merged: TDD workflow + E2E testing. Supports --tdd, --e2e, --coverage modes.",
-      "trigger": "when writing tests, doing TDD, running E2E tests, or checking coverage",
-      "model": "sonnet"
+      "name": "zai-cli",
+      "keywords": ["z.ai", "vision", "search", "github", "exploration", "analysis"],
+      "description": "Z.AI vision, search, and GitHub exploration CLI tools",
+      "trigger": "when needing vision analysis, web search, or GitHub repository exploration"
     },
     {
-      "name": "design-brain",
-      "keywords": ["plan", "design", "architecture", "system design", "technical decision", "strategy"],
-      "description": "Design brain - merged: planner + architect. Supports --quick (default) and --deep modes.",
-      "trigger": "when planning implementation or making architecture decisions",
-      "model": "opus"
-    },
-    {
-      "name": "quick-fix",
-      "keywords": ["fix", "build error", "compile error", "type error", "lint error", "tsc"],
-      "description": "Quick fixer - fast build/lint/type error resolution using haiku model for speed and cost efficiency.",
-      "trigger": "when build fails, type errors occur, or lint errors need fixing",
-      "model": "haiku"
+      "name": "gastown",
+      "keywords": ["gastown", "multi-agent", "orchestrator", "coordination"],
+      "description": "Multi-agent orchestrator for complex task coordination",
+      "trigger": "when orchestrating multiple agents for complex workflows"
     }
   ],
   "auto_load": {
@@ -142,13 +131,5 @@
   "fallback": {
     "enabled": true,
     "skill": "frontend-design"
-  },
-  "model_strategy": {
-    "description": "Cost-optimized model selection",
-    "rules": [
-      { "pattern": "quick-fix", "model": "haiku", "reason": "Fast, simple fixes" },
-      { "pattern": "quality-guard|test-master", "model": "sonnet", "reason": "Standard tasks" },
-      { "pattern": "design-brain", "model": "opus", "reason": "Complex architecture only" }
-    ]
   }
 }

package/.claude/settings.local.json

@@ -123,7 +123,12 @@
       "Bash(/opt/homebrew/Cellar/node/25.3.0/bin/node -e \"const fs=require\\(''fs''\\); let d=''''; process.stdin.on\\(''data'',c=>d+=c\\); process.stdin.on\\(''end'',\\(\\)=>{const j=JSON.parse\\(d\\); console.log\\(''Skills:'', j.skills.length\\); console.log\\(''Model strategy:'', JSON.stringify\\(j.model_strategy, null, 2\\)\\);}\\)\")",
       "Bash(/opt/homebrew/Cellar/node/25.3.0/bin/npm version 1.3.0 --no-git-tag-version)",
       "Bash(git tag:*)",
-      "Bash(/opt/homebrew/Cellar/node/25.3.0/bin/npm publish)"
+      "Bash(/opt/homebrew/Cellar/node/25.3.0/bin/npm publish)",
+      "Bash(/opt/homebrew/Cellar/node/25.3.0/bin/npm view sumulige-claude version)",
+      "Bash(/opt/homebrew/Cellar/node/25.3.0/bin/npm view sumulige-claude versions --json)",
+      "Bash(/opt/homebrew/Cellar/node/25.3.0/bin/npx sumulige-claude@1.3.0 sync)",
+      "WebFetch(domain:raw.githubusercontent.com)",
+      "Bash(/opt/homebrew/Cellar/node/25.3.0/bin/npm version 1.3.1 --no-git-tag-version)"
     ]
   },
   "hooks": {

package/CHANGELOG.md

@@ -1,3 +1,28 @@
+## [1.3.1](https://github.com/sumulige/sumulige-claude/compare/v1.3.0...v1.3.1) (2026-01-22)
+
+### ✨ New Features
+
+- **System Prompt Optimization**: Token savings via MCP lazy-loading
+  - `ENABLE_TOOL_SEARCH=true` - MCP tools loaded on demand
+  - `DISABLE_AUTOUPDATER=1` - Reduce startup overhead
+  - ~50% token reduction for system prompts
+- **New Commands**:
+  - `/handoff` - Generate context handoff documents for session continuity
+  - `/gha` - Analyze GitHub Actions CI failures
+  - `/audit` - Security audit for approved commands (cc-safe style)
+- **Permission Audit**: Detect dangerous patterns in approved commands
+  - Critical: `rm -rf /`, disk overwrite, fork bombs
+  - High: `sudo`, `chmod 777`, privileged containers
+  - Medium: global installs, force push
+
+### 📝 Documentation
+
+- Add `/handoff` command guide
+- Add `/gha` CI analysis guide
+- Add `/audit` security audit guide
+
+---
+
 ## [1.3.0](https://github.com/sumulige/sumulige-claude/compare/v1.2.1...v1.3.0) (2026-01-22)
 
 ### ✨ New Features

package/cli.js

@@ -175,6 +175,10 @@ const COMMANDS = {
   notebooklm: {
     help: 'NotebookLM browser automation',
     args: '<auth|ask|status|clear> [args...]'
+  },
+  audit: {
+    help: 'Audit approved commands for security risks',
+    args: '[--global] [--ci] [--report]'
   }
 };
 

package/lib/commands.js

@@ -3332,6 +3332,57 @@ All notable changes to this project will be documented in this file.
     } = require("../.claude/workflow/notebooklm/browser");
     await handleNotebookLMCommand(args);
   },
+
+  // ==========================================================================
+  // Security Audit Commands
+  // ==========================================================================
+
+  audit: async (...args) => {
+    const { audit, generateReport, passes } = require("./permission-audit");
+
+    const isGlobal = args.includes("--global");
+    const isCi = args.includes("--ci");
+    const isReport = args.includes("--report");
+
+    console.log("🔍 Running permission audit...\n");
+
+    const results = audit({ global: isGlobal });
+
+    if (isReport) {
+      console.log(generateReport(results));
+    } else {
+      const { issues } = results;
+      const total = issues.critical.length + issues.high.length + issues.medium.length;
+
+      if (total === 0) {
+        console.log("✅ No security issues found!\n");
+        console.log(`Scanned ${results.scanned} settings file(s)`);
+      } else {
+        console.log(`Found ${total} potential issue(s):\n`);
+
+        if (issues.critical.length > 0) {
+          console.log(`🔴 Critical: ${issues.critical.length}`);
+          issues.critical.forEach(i => console.log(`   - ${i.desc}: ${i.permission}`));
+        }
+
+        if (issues.high.length > 0) {
+          console.log(`🟠 High: ${issues.high.length}`);
+          issues.high.forEach(i => console.log(`   - ${i.desc}: ${i.permission}`));
+        }
+
+        if (issues.medium.length > 0) {
+          console.log(`🟡 Medium: ${issues.medium.length}`);
+          issues.medium.forEach(i => console.log(`   - ${i.desc}: ${i.permission}`));
+        }
+
+        console.log("\nRun 'smc audit --report' for detailed analysis.");
+      }
+    }
+
+    if (isCi && !passes(results)) {
+      process.exit(1);
+    }
+  },
 };
 
 // ============================================================================

package/lib/permission-audit.js

@@ -0,0 +1,255 @@
+/**
+ * Permission Audit - Security scanner for approved commands
+ * Inspired by cc-safe from ykdojo/claude-code-tips
+ */
+
+const fs = require('fs');
+const path = require('path');
+const os = require('os');
+
+// Dangerous patterns with severity levels
+const DANGEROUS_PATTERNS = [
+  // Critical - Must remove
+  { pattern: /rm\s+-rf\s+\/(?!\w)/, level: 'critical', desc: 'Delete root directory' },
+  { pattern: />\s*\/dev\/sd[a-z]/, level: 'critical', desc: 'Overwrite disk device' },
+  { pattern: /mkfs/, level: 'critical', desc: 'Format disk' },
+  { pattern: /dd\s+if=\/dev\/zero/, level: 'critical', desc: 'Overwrite with zeros' },
+  { pattern: /:\(\)\s*\{\s*:\|:&\s*\}\s*;:/, level: 'critical', desc: 'Fork bomb' },
+
+  // High - Should review
+  { pattern: /sudo/, level: 'high', desc: 'Privilege escalation' },
+  { pattern: /rm\s+-rf/, level: 'high', desc: 'Recursive force delete' },
+  { pattern: /chmod\s+777/, level: 'high', desc: 'World-writable permissions' },
+  { pattern: /--privileged/, level: 'high', desc: 'Privileged container' },
+  { pattern: /curl.*\|\s*(sh|bash)/, level: 'high', desc: 'Remote script execution' },
+  { pattern: /wget.*\|\s*(sh|bash)/, level: 'high', desc: 'Remote script execution' },
+  { pattern: /eval\s/, level: 'high', desc: 'Dynamic code execution' },
+  { pattern: /--no-verify/, level: 'high', desc: 'Skip verification hooks' },
+
+  // Medium - Optional review
+  { pattern: /npm\s+install\s+-g/, level: 'medium', desc: 'Global npm install' },
+  { pattern: /pip\s+install/, level: 'medium', desc: 'Python package install' },
+  { pattern: /git\s+push\s+--force/, level: 'medium', desc: 'Force push' },
+  { pattern: /git\s+reset\s+--hard/, level: 'medium', desc: 'Hard reset' },
+  { pattern: /DROP\s+(TABLE|DATABASE)/i, level: 'medium', desc: 'Drop database objects' },
+  { pattern: /TRUNCATE/i, level: 'medium', desc: 'Truncate table' },
+];
+
+/**
+ * Find all settings files to scan
+ */
+function findSettingsFiles(projectDir) {
+  const files = [];
+  const homeDir = os.homedir();
+
+  // Global settings
+  const globalSettings = path.join(homeDir, '.claude', 'settings.local.json');
+  if (fs.existsSync(globalSettings)) {
+    files.push({ path: globalSettings, scope: 'global' });
+  }
+
+  // Project settings
+  if (projectDir) {
+    const projectSettings = path.join(projectDir, '.claude', 'settings.local.json');
+    if (fs.existsSync(projectSettings)) {
+      files.push({ path: projectSettings, scope: 'project' });
+    }
+  }
+
+  // All project settings in ~/.claude/projects/
+  const projectsDir = path.join(homeDir, '.claude', 'projects');
+  if (fs.existsSync(projectsDir)) {
+    try {
+      const projects = fs.readdirSync(projectsDir);
+      for (const proj of projects) {
+        const projSettings = path.join(projectsDir, proj, 'settings.local.json');
+        if (fs.existsSync(projSettings)) {
+          files.push({ path: projSettings, scope: `project:${proj}` });
+        }
+      }
+    } catch (e) {
+      // Ignore read errors
+    }
+  }
+
+  return files;
+}
+
+/**
+ * Extract permissions from settings file
+ */
+function extractPermissions(settingsPath) {
+  try {
+    const content = fs.readFileSync(settingsPath, 'utf-8');
+    const settings = JSON.parse(content);
+
+    const permissions = [];
+
+    // Check permissions.allow array
+    if (settings.permissions?.allow) {
+      permissions.push(...settings.permissions.allow);
+    }
+
+    // Check allowedTools (older format)
+    if (settings.allowedTools) {
+      permissions.push(...settings.allowedTools);
+    }
+
+    return permissions;
+  } catch (e) {
+    return [];
+  }
+}
+
+/**
+ * Scan a permission string for dangerous patterns
+ */
+function scanPermission(permission) {
+  const issues = [];
+
+  for (const { pattern, level, desc } of DANGEROUS_PATTERNS) {
+    if (pattern.test(permission)) {
+      issues.push({ level, desc, pattern: pattern.toString(), match: permission });
+    }
+  }
+
+  return issues;
+}
+
+/**
+ * Run full audit
+ */
+function audit(options = {}) {
+  const { projectDir = process.cwd(), global: scanGlobal = true } = options;
+
+  const results = {
+    scanned: 0,
+    issues: {
+      critical: [],
+      high: [],
+      medium: [],
+    },
+    files: [],
+  };
+
+  const files = findSettingsFiles(scanGlobal ? projectDir : null);
+  results.scanned = files.length;
+  results.files = files.map(f => f.path);
+
+  for (const { path: filePath, scope } of files) {
+    const permissions = extractPermissions(filePath);
+
+    for (const perm of permissions) {
+      const issues = scanPermission(perm);
+
+      for (const issue of issues) {
+        const entry = {
+          ...issue,
+          file: filePath,
+          scope,
+          permission: perm,
+        };
+
+        results.issues[issue.level].push(entry);
+      }
+    }
+  }
+
+  return results;
+}
+
+/**
+ * Generate markdown report
+ */
+function generateReport(results) {
+  const { scanned, issues, files } = results;
+  const totalIssues = issues.critical.length + issues.high.length + issues.medium.length;
+
+  let report = `# Permission Audit Report
+
+**Date**: ${new Date().toISOString().split('T')[0]}
+**Scanned**: ${scanned} files
+**Issues**: ${totalIssues} found
+
+`;
+
+  // Critical issues
+  report += `## 🔴 Critical Issues (${issues.critical.length})\n\n`;
+  if (issues.critical.length === 0) {
+    report += 'None found.\n\n';
+  } else {
+    issues.critical.forEach((issue, i) => {
+      report += `### ${i + 1}. ${issue.desc}
+**Location**: ${issue.file}
+**Pattern**: \`${issue.permission}\`
+**Risk**: ${issue.desc}
+
+`;
+    });
+  }
+
+  // High risk
+  report += `## 🟠 High Risk (${issues.high.length})\n\n`;
+  if (issues.high.length === 0) {
+    report += 'None found.\n\n';
+  } else {
+    issues.high.forEach((issue, i) => {
+      report += `### ${i + 1}. ${issue.desc}
+**Location**: ${issue.file}
+**Pattern**: \`${issue.permission}\`
+**Risk**: ${issue.desc}
+
+`;
+    });
+  }
+
+  // Medium risk
+  report += `## 🟡 Medium Risk (${issues.medium.length})\n\n`;
+  if (issues.medium.length === 0) {
+    report += 'None found.\n\n';
+  } else {
+    issues.medium.forEach((issue, i) => {
+      report += `### ${i + 1}. ${issue.desc}
+**Location**: ${issue.file}
+**Pattern**: \`${issue.permission}\`
+
+`;
+    });
+  }
+
+  // Summary
+  report += `## Summary
+
+| Level | Count | Action |
+|-------|-------|--------|
+| 🔴 Critical | ${issues.critical.length} | Must remove |
+| 🟠 High | ${issues.high.length} | Should review |
+| 🟡 Medium | ${issues.medium.length} | Optional review |
+
+`;
+
+  return report;
+}
+
+/**
+ * Check if audit passes (for CI)
+ */
+function passes(results, options = {}) {
+  const { allowMedium = true, allowHigh = false } = options;
+
+  if (results.issues.critical.length > 0) return false;
+  if (!allowHigh && results.issues.high.length > 0) return false;
+  if (!allowMedium && results.issues.medium.length > 0) return false;
+
+  return true;
+}
+
+module.exports = {
+  audit,
+  generateReport,
+  passes,
+  DANGEROUS_PATTERNS,
+  findSettingsFiles,
+  extractPermissions,
+  scanPermission,
+};

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "sumulige-claude",
-  "version": "1.3.0",
+  "version": "1.3.1",
   "description": "The Best Agent Harness for Claude Code",
   "main": "cli.js",
   "bin": {