thumbgate 1.4.3 → 1.4.4

package/public/learn/learn.css

@@ -1,45 +0,0 @@
-/* ThumbGate Learn Hub — shared styles for /learn pages */
-*, *::before, *::after { margin: 0; padding: 0; box-sizing: border-box; }
-:root {
-  --bg: #0a0a0b; --bg-card: #161618; --bg-raised: #111113;
-  --border: #222225; --text: #e8e8ec; --muted: #8b8b94;
-  --cyan: #22d3ee; --green: #34d399; --red: #f87171;
-}
-body { font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif; background: var(--bg); color: var(--text); line-height: 1.7; }
-.container { max-width: 700px; margin: 0 auto; padding: 2rem 1.5rem 4rem; }
-nav { padding: 1rem 2rem; border-bottom: 1px solid var(--border); display: flex; gap: 1.5rem; align-items: center; }
-nav a { color: var(--muted); text-decoration: none; font-size: 0.9rem; }
-nav a:hover { color: var(--cyan); }
-nav .brand { color: var(--text); font-weight: 700; font-size: 1.1rem; }
-h1 { font-size: 2rem; line-height: 1.2; margin: 2rem 0 1rem; }
-h2 { font-size: 1.4rem; margin: 2.5rem 0 0.75rem; color: var(--cyan); }
-h3 { font-size: 1.1rem; margin: 1.5rem 0 0.5rem; }
-p, li { margin-bottom: 0.75rem; }
-ul, ol { padding-left: 1.5rem; }
-code { background: #1a1a1e; padding: 0.15em 0.4em; border-radius: 4px; font-size: 0.9em; color: var(--cyan); font-family: 'SF Mono', 'Cascadia Code', 'JetBrains Mono', Consolas, monospace; }
-pre { background: var(--bg-raised); border: 1px solid var(--border); border-radius: 8px; padding: 1rem; overflow-x: auto; margin: 1rem 0; }
-pre code { background: none; padding: 0; color: var(--text); }
-.breadcrumb { font-size: 0.85rem; color: var(--muted); margin-bottom: 0.5rem; }
-.breadcrumb a { color: var(--cyan); text-decoration: none; }
-.breadcrumb a:hover { text-decoration: underline; }
-.callout { background: var(--bg-card); border-left: 3px solid var(--cyan); padding: 1rem 1.25rem; border-radius: 0 8px 8px 0; margin: 1.5rem 0; }
-.callout-red { border-left-color: var(--red); }
-.callout-green { border-left-color: var(--green); }
-.cta-box { margin-top: 3rem; padding: 2rem; background: var(--bg-raised); border: 1px solid var(--border); border-radius: 12px; text-align: center; }
-.cta-box p { color: var(--muted); }
-.cta-install { display: inline-block; background: var(--bg-card); border: 1px solid var(--border); border-radius: 8px; padding: 10px 20px; font-family: 'SF Mono', Consolas, monospace; font-size: 0.95rem; color: var(--cyan); margin-top: 1rem; }
-.related { margin-top: 2rem; }
-.related a { color: var(--cyan); text-decoration: none; display: block; margin-bottom: 0.5rem; }
-.related a:hover { text-decoration: underline; }
-@media (max-width: 700px) { h1 { font-size: 1.5rem; } .container { padding: 1.5rem 1rem 3rem; } }
-
-/* TL;DR box — appears right after h1 to hook skimmers */
-.tldr { background: var(--bg-card); border: 1px solid var(--border); border-radius: 8px; padding: 1rem 1.25rem; margin: 1rem 0 2rem; font-size: 0.95rem; }
-.tldr strong { color: var(--cyan); }
-/* Sticky bottom CTA bar */
-.sticky-cta { position: fixed; bottom: 0; left: 0; right: 0; background: var(--bg-raised); border-top: 1px solid var(--border); padding: 10px 0; text-align: center; z-index: 100; display: flex; align-items: center; justify-content: center; gap: 16px; font-size: 0.9rem; }
-.sticky-cta code { background: var(--bg-card); padding: 4px 12px; border-radius: 6px; color: var(--cyan); font-family: 'SF Mono', Consolas, monospace; font-size: 0.85rem; border: 1px solid var(--border); }
-.sticky-cta a { color: var(--cyan); text-decoration: none; font-weight: 600; }
-.sticky-cta a:hover { text-decoration: underline; }
-/* Add padding-bottom to body so sticky bar doesn't cover content */
-body { padding-bottom: 52px; }

package/public/learn/mcp-pre-action-gates-explained.html

@@ -1,172 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-<meta charset="UTF-8">
-<meta name="viewport" content="width=device-width, initial-scale=1.0">
-<title>MCP Pre-Action Gates Explained — ThumbGate</title>
-<script defer data-domain="thumbgate-production.up.railway.app" src="https://plausible.io/js/script.js"></script>
-<meta name="description" content="What pre-action gates are, how they work in the Model Context Protocol, and why enforcement beats prompt rules for AI coding agent safety.">
-<meta name="keywords" content="MCP pre-action gates, PreToolUse hooks, Model Context Protocol, AI agent enforcement, Claude Code hooks, MCP server guardrails, tool call interception, ThumbGate">
-<meta property="og:title" content="MCP Pre-Action Gates Explained">
-<meta property="og:description" content="Technical deep-dive: how pre-action gates intercept tool calls and enforce safety rules for AI coding agents.">
-<meta property="og:type" content="article">
-<meta property="og:url" content="https://thumbgate-production.up.railway.app/learn/mcp-pre-action-gates-explained">
-<link rel="canonical" href="https://thumbgate-production.up.railway.app/learn/mcp-pre-action-gates-explained">
-
-<script type="application/ld+json">
-{
-  "@context": "https://schema.org",
-  "@type": "TechArticle",
-  "headline": "MCP Pre-Action Gates Explained",
-  "description": "Technical deep-dive into pre-action gates: how they intercept tool calls and enforce safety rules at the MCP hook layer.",
-  "author": {
-    "@type": "Person",
-    "name": "Igor Ganapolsky",
-    "url": "https://github.com/IgorGanapolsky"
-  },
-  "publisher": {
-    "@type": "Organization",
-    "name": "ThumbGate",
-    "url": "https://thumbgate-production.up.railway.app"
-  },
-  "datePublished": "2026-04-01",
-  "dateModified": "2026-04-01",
-  "mainEntityOfPage": "https://thumbgate-production.up.railway.app/learn/mcp-pre-action-gates-explained",
-  "about": [
-    {"@type": "Thing", "name": "Model Context Protocol"},
-    {"@type": "Thing", "name": "PreToolUse hooks"},
-    {"@type": "Thing", "name": "AI agent enforcement"}
-  ]
-}
-</script>
-
-<link rel="stylesheet" href="/learn/learn.css">
-<style>
-  .flow-diagram { background: var(--bg-card); border: 1px solid var(--border); border-radius: 8px; padding: 1.5rem; margin: 1.5rem 0; font-family: 'SF Mono', Consolas, monospace; font-size: 0.85rem; color: var(--text); line-height: 2; text-align: center; }
-  .flow-diagram .arrow { color: var(--cyan); }
-  .flow-diagram .block { color: var(--green); }
-  .flow-diagram .deny { color: var(--red); }
-  table { width: 100%; border-collapse: collapse; margin: 1rem 0; }
-  th, td { text-align: left; padding: 0.6rem 0.8rem; border-bottom: 1px solid var(--border); font-size: 0.9rem; }
-  th { color: var(--cyan); font-weight: 600; }
-</style>
-</head>
-<body>
-
-<nav>
-  <a href="/" class="brand">👍👎 ThumbGate</a>
-  <a href="/guide">Setup Guide</a>
-  <a href="/learn">Learn</a>
-  <a href="/dashboard">Dashboard</a>
-  <a href="https://github.com/IgorGanapolsky/ThumbGate" target="_blank" rel="noopener">GitHub</a>
-</nav>
-
-<div class="container">
-  <div class="breadcrumb"><a href="/learn">Learn</a> / MCP Pre-Action Gates</div>
-  <h1>MCP Pre-Action Gates Explained</h1>
-  <p style="color:var(--muted);">4 min read &middot; Technical deep-dive for developers building on MCP</p>
-
-  <div class="tldr"><strong>TL;DR:</strong> Pre-action gates intercept tool calls before they execute. Unlike prompt rules, they cannot be ignored. This is how enforcement actually works in MCP.</div>
-
-  <h2>What is a pre-action gate?</h2>
-  <p>A pre-action gate is an enforcement rule that intercepts an AI agent's tool call <em>before</em> it executes. If the tool call matches a known-bad pattern, the gate blocks it and returns a rejection to the agent. The agent then adapts its approach without ever having run the dangerous action.</p>
-  <p>Gates run at the hook layer of the Model Context Protocol (MCP). They are external to the agent's reasoning chain, which means they cannot be overridden by prompt injection, context overflow, or chain-of-thought reasoning.</p>
-
-  <h2>How it works: the tool call lifecycle</h2>
-  <div class="flow-diagram">
-    <span class="block">Agent decides to call tool</span><br>
-    <span class="arrow">&darr;</span><br>
-    <span class="block">PreToolUse hook fires</span><br>
-    <span class="arrow">&darr;</span><br>
-    <span class="block">ThumbGate checks tool call against gates</span><br>
-    <span class="arrow">&darr;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&darr;</span><br>
-    <span class="block">No match &rarr; ALLOW</span>&nbsp;&nbsp;&nbsp;&nbsp;<span class="deny">Match &rarr; BLOCK + reason</span><br>
-    <span class="arrow">&darr;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&darr;</span><br>
-    <span class="block">Tool executes</span>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<span class="deny">Agent receives rejection</span>
-  </div>
-
-  <h2>Prompt rules vs. pre-action gates</h2>
-  <table>
-    <thead>
-      <tr><th>Property</th><th>Prompt Rules</th><th>Pre-Action Gates</th></tr>
-    </thead>
-    <tbody>
-      <tr><td>Where they live</td><td>Inside agent context</td><td>External hook layer</td></tr>
-      <tr><td>Can be overridden</td><td>Yes (context overflow, reasoning)</td><td>No (runs outside agent)</td></tr>
-      <tr><td>Enforcement</td><td>Advisory</td><td>Physical block</td></tr>
-      <tr><td>Persistence</td><td>Per-session (context-dependent)</td><td>Permanent (database-backed)</td></tr>
-      <tr><td>Adapts over time</td><td>No</td><td>Yes (Thompson Sampling)</td></tr>
-      <tr><td>Explains why</td><td>No</td><td>Yes (reason chain per block)</td></tr>
-    </tbody>
-  </table>
-
-  <h2>The three layers of a gate</h2>
-
-  <h3>1. Pattern matcher</h3>
-  <p>Gates match against the tool name and its arguments. For a <code>Bash</code> tool call, the pattern might match <code>git push --force</code> targeting <code>main</code>. For a <code>Write</code> tool call, it might match writes to <code>.env</code> or <code>production.config</code>.</p>
-  <pre><code>{
-  "tool": "Bash",
-  "pattern": "git push.*(--force|-f).*main",
-  "action": "BLOCK"
-}</code></pre>
-
-  <h3>2. Evidence and reasoning</h3>
-  <p>Every gate decision includes a reasoning chain: why this pattern exists, how many times it has fired, what the original failure was. This transparency lets you audit the system and tune it.</p>
-  <pre><code>{
-  "gate": "no-force-push-main",
-  "decision": "BLOCK",
-  "reason": "Force-push to main blocked",
-  "evidence": "User reported loss of 14 commits (2026-03-15)",
-  "fire_count": 7,
-  "confidence": 0.94
-}</code></pre>
-
-  <h3>3. Thompson Sampling adaptation</h3>
-  <p>Not all patterns deserve the same enforcement level. Thompson Sampling uses a beta distribution to model each gate's risk profile. High-risk patterns (many failures, few successes) get strict enforcement. Low-risk patterns (rarely triggered, occasionally overridden) stay relaxed.</p>
-
-  <div class="callout">
-    <strong>Why Thompson Sampling?</strong> It balances exploration vs. exploitation. New gates start with wide confidence intervals and tighten as evidence accumulates. This prevents over-blocking on sparse data while ensuring genuinely dangerous patterns get strict enforcement fast.
-  </div>
-
-  <h2>How gates are created</h2>
-  <ol>
-    <li><strong>Feedback capture:</strong> Developer gives thumbs-down with context about what went wrong</li>
-    <li><strong>Lesson storage:</strong> Feedback is stored in SQLite with FTS5 indexing for fast retrieval</li>
-    <li><strong>Corrective inference:</strong> ThumbGate matches the failure against similar past failures and infers what should be prevented</li>
-    <li><strong>Rule promotion:</strong> After configurable repeated failures, the lesson promotes to a prevention rule</li>
-    <li><strong>Gate activation:</strong> The prevention rule becomes an active gate in the PreToolUse hook</li>
-  </ol>
-
-  <h2>Supported agents</h2>
-  <p>Pre-action gates work with any agent that supports MCP hooks:</p>
-  <ul>
-    <li><strong>Claude Code</strong> &mdash; PreToolUse hooks in <code>.claude/settings.json</code></li>
-    <li><strong>Cursor</strong> &mdash; MCP server configuration in <code>.cursor/mcp.json</code></li>
-    <li><strong>Codex</strong> &mdash; MCP tool interception via server config</li>
-    <li><strong>Gemini CLI</strong> &mdash; MCP server hooks</li>
-    <li><strong>Amp, OpenCode</strong> &mdash; any MCP-compatible agent</li>
-  </ul>
-  <p>Run <code>npx thumbgate init</code> to auto-detect your agent and configure the correct hook format.</p>
-
-  <div class="cta-box">
-    <h2 style="color:var(--text);font-size:1.3rem;margin:0 0 8px;">Build your first gate</h2>
-    <p>Install, give your first thumbs-down, and watch the gate auto-generate.</p>
-    <div class="cta-install">$ npx thumbgate init</div>
-  </div>
-
-  <div class="related">
-    <h3>Related guides</h3>
-    <a href="/learn/stop-ai-agent-force-push">How to Stop AI Agents From Force-Pushing to Main &rarr;</a>
-    <a href="/learn/vibe-coding-safety-net">The Vibe Coding Safety Net You Are Missing &rarr;</a>
-    <a href="/guide">Full Setup Guide &rarr;</a>
-  </div>
-</div>
-
-
-  <div class="sticky-cta">
-    <span style="color:var(--muted)">Try it now:</span>
-    <code>npx thumbgate init</code>
-    <a href="https://github.com/IgorGanapolsky/ThumbGate" target="_blank" rel="noopener">GitHub &rarr;</a>
-  </div>
-</body>
-</html>

package/public/learn/stop-ai-agent-force-push.html

@@ -1,134 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-<meta charset="UTF-8">
-<meta name="viewport" content="width=device-width, initial-scale=1.0">
-<title>How to Stop AI Agents From Force-Pushing to Main — ThumbGate</title>
-<script defer data-domain="thumbgate-production.up.railway.app" src="https://plausible.io/js/script.js"></script>
-<meta name="description" content="Your AI coding agent just force-pushed to main. Again. Here is how to make that physically impossible with a pre-action gate in two minutes.">
-<meta name="keywords" content="AI agent force push, Claude Code force push prevention, git push force main, AI coding agent git safety, pre-action gates, ThumbGate">
-<meta property="og:title" content="How to Stop AI Agents From Force-Pushing to Main">
-<meta property="og:description" content="Make force-push to main physically impossible for your AI coding agent with a pre-action gate.">
-<meta property="og:type" content="article">
-<meta property="og:url" content="https://thumbgate-production.up.railway.app/learn/stop-ai-agent-force-push">
-<link rel="canonical" href="https://thumbgate-production.up.railway.app/learn/stop-ai-agent-force-push">
-
-<script type="application/ld+json">
-{
-  "@context": "https://schema.org",
-  "@type": "TechArticle",
-  "headline": "How to Stop AI Agents From Force-Pushing to Main",
-  "description": "Make force-push to main physically impossible for your AI coding agent with a pre-action gate.",
-  "author": {
-    "@type": "Person",
-    "name": "Igor Ganapolsky",
-    "url": "https://github.com/IgorGanapolsky"
-  },
-  "publisher": {
-    "@type": "Organization",
-    "name": "ThumbGate",
-    "url": "https://thumbgate-production.up.railway.app"
-  },
-  "datePublished": "2026-04-01",
-  "dateModified": "2026-04-01",
-  "mainEntityOfPage": "https://thumbgate-production.up.railway.app/learn/stop-ai-agent-force-push",
-  "about": [
-    {"@type": "Thing", "name": "git force push prevention"},
-    {"@type": "Thing", "name": "AI coding agent safety"},
-    {"@type": "Thing", "name": "pre-action gates"}
-  ]
-}
-</script>
-
-<link rel="stylesheet" href="/learn/learn.css">
-</head>
-<body>
-
-<nav>
-  <a href="/" class="brand">👍👎 ThumbGate</a>
-  <a href="/guide">Setup Guide</a>
-  <a href="/learn">Learn</a>
-  <a href="/dashboard">Dashboard</a>
-  <a href="https://github.com/IgorGanapolsky/ThumbGate" target="_blank" rel="noopener">GitHub</a>
-</nav>
-
-<div class="container">
-  <div class="breadcrumb"><a href="/learn">Learn</a> / Stop AI Agent Force-Push</div>
-  <h1>How to Stop AI Agents From Force-Pushing to Main</h1>
-  <p style="color:var(--muted);">2 min read &middot; Works with Claude Code, Cursor, Codex, and any MCP agent</p>
-
-  <div class="tldr"><strong>TL;DR:</strong> Your AI agent will force-push to main unless you physically prevent it. One PreToolUse hook + two minutes = impossible.</div>
-
-  <h2>The problem</h2>
-  <p>You write <code>never force-push to main</code> in your CLAUDE.md. Your agent reads it. Then it force-pushes to main anyway. Prompt rules are suggestions. Agents can and do ignore them when the context window fills up or when a chain of reasoning overrides the instruction.</p>
-
-  <div class="callout callout-red">
-    <strong>Real example:</strong> A developer lost 14 commits when their Claude Code agent ran <code>git push --force origin main</code> during a rebase. The CLAUDE.md said "never force-push." The agent did it anyway.
-  </div>
-
-  <h2>Why prompt rules fail</h2>
-  <ul>
-    <li><strong>Context overflow</strong> &mdash; as the conversation grows, early instructions get compressed or dropped</li>
-    <li><strong>Reasoning override</strong> &mdash; the agent decides force-push is the "correct" solution to a merge conflict</li>
-    <li><strong>No enforcement layer</strong> &mdash; nothing physically stops the tool call from executing</li>
-  </ul>
-
-  <h2>The fix: a pre-action gate</h2>
-  <p>A pre-action gate intercepts the tool call <em>before</em> it executes. It pattern-matches the command against known-bad actions and blocks them. The agent cannot bypass it because the gate runs outside the agent's control, at the MCP hook layer.</p>
-
-  <h3>Step 1: Install ThumbGate</h3>
-  <pre><code>npx thumbgate init</code></pre>
-  <p>This auto-detects your agent (Claude Code, Cursor, etc.) and configures the PreToolUse hook.</p>
-
-  <h3>Step 2: Give feedback</h3>
-  <p>The next time your agent tries a force-push (or anything dangerous), give it a thumbs-down with context:</p>
-  <pre><code>👎 "Never force-push to main. This destroyed 14 commits last time."</code></pre>
-
-  <h3>Step 3: Gate auto-generates</h3>
-  <p>ThumbGate captures the feedback, matches it against the tool call pattern, and auto-generates a prevention rule. After repeated failures (configurable), it promotes to a hard gate:</p>
-  <pre><code># Auto-generated prevention rule
-pattern: "git push --force"
-target_branch: "main"
-action: BLOCK
-reason: "Force-push to main blocked — destroyed 14 commits (2026-03-15)"</code></pre>
-
-  <h3>Step 4: Gate fires on every future attempt</h3>
-  <p>The PreToolUse hook checks every <code>Bash</code> tool call. If it matches <code>git push --force</code> targeting <code>main</code>, the action is blocked before execution. The agent receives a rejection with the reason and adapts.</p>
-
-  <div class="callout">
-    <strong>Key difference:</strong> Prompt rules ask nicely. Pre-action gates physically block. The gate runs at the hook layer, outside the agent's reasoning chain, so it cannot be overridden by context or chain-of-thought.
-  </div>
-
-  <h2>What about other dangerous actions?</h2>
-  <p>The same pattern works for any tool call you want to prevent:</p>
-  <ul>
-    <li><code>DROP TABLE</code> on production databases</li>
-    <li><code>rm -rf</code> on project directories</li>
-    <li>Committing <code>.env</code> files with secrets</li>
-    <li>Running untested migrations on prod</li>
-    <li>Skipping test suites before deploy</li>
-  </ul>
-  <p>Every thumbs-down teaches the system. Thompson Sampling adapts gate sensitivity: high-risk patterns get strict enforcement, low-risk ones stay relaxed.</p>
-
-  <div class="cta-box">
-    <h2 style="color:var(--text);font-size:1.3rem;margin:0 0 8px;">Try it now</h2>
-    <p>One command. Your agent stops repeating mistakes today.</p>
-    <div class="cta-install">$ npx thumbgate init</div>
-  </div>
-
-  <div class="related">
-    <h3>Related guides</h3>
-    <a href="/learn/vibe-coding-safety-net">The Vibe Coding Safety Net You Are Missing &rarr;</a>
-    <a href="/learn/mcp-pre-action-gates-explained">MCP Pre-Action Gates Explained &rarr;</a>
-    <a href="/guide">Full Setup Guide &rarr;</a>
-  </div>
-</div>
-
-
-  <div class="sticky-cta">
-    <span style="color:var(--muted)">Try it now:</span>
-    <code>npx thumbgate init</code>
-    <a href="https://github.com/IgorGanapolsky/ThumbGate" target="_blank" rel="noopener">GitHub &rarr;</a>
-  </div>
-</body>
-</html>

package/public/learn/vibe-coding-safety-net.html

@@ -1,142 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-<meta charset="UTF-8">
-<meta name="viewport" content="width=device-width, initial-scale=1.0">
-<title>The Vibe Coding Safety Net You Are Missing — ThumbGate</title>
-<script defer data-domain="thumbgate-production.up.railway.app" src="https://plausible.io/js/script.js"></script>
-<meta name="description" content="Vibe coding is fast until your AI agent deletes a production table or rewrites a file you did not ask it to touch. Add guardrails without slowing down.">
-<meta name="keywords" content="vibe coding safety, vibe coding guardrails, AI coding mistakes, Claude Code safety net, Cursor agent guardrails, AI agent enforcement, ThumbGate">
-<meta property="og:title" content="The Vibe Coding Safety Net You Are Missing">
-<meta property="og:description" content="Vibe coding is fast until your AI agent breaks something. Add guardrails without slowing down.">
-<meta property="og:type" content="article">
-<meta property="og:url" content="https://thumbgate-production.up.railway.app/learn/vibe-coding-safety-net">
-<link rel="canonical" href="https://thumbgate-production.up.railway.app/learn/vibe-coding-safety-net">
-
-<script type="application/ld+json">
-{
-  "@context": "https://schema.org",
-  "@type": "TechArticle",
-  "headline": "The Vibe Coding Safety Net You Are Missing",
-  "description": "Vibe coding is fast until your AI agent breaks something. Here is how to add guardrails that learn from your corrections.",
-  "author": {
-    "@type": "Person",
-    "name": "Igor Ganapolsky",
-    "url": "https://github.com/IgorGanapolsky"
-  },
-  "publisher": {
-    "@type": "Organization",
-    "name": "ThumbGate",
-    "url": "https://thumbgate-production.up.railway.app"
-  },
-  "datePublished": "2026-04-01",
-  "dateModified": "2026-04-01",
-  "mainEntityOfPage": "https://thumbgate-production.up.railway.app/learn/vibe-coding-safety-net"
-}
-</script>
-
-<link rel="stylesheet" href="/learn/learn.css">
-<style>
-  .comparison { display: grid; grid-template-columns: 1fr 1fr; gap: 16px; margin: 1.5rem 0; }
-  .comparison > div { background: var(--bg-card); border: 1px solid var(--border); border-radius: 8px; padding: 1rem; }
-  .comparison h4 { font-size: 0.95rem; margin-bottom: 0.5rem; }
-  .comparison .bad h4 { color: var(--red); }
-  .comparison .good h4 { color: var(--green); }
-  @media (max-width: 700px) { .comparison { grid-template-columns: 1fr; } }
-</style>
-</head>
-<body>
-
-<nav>
-  <a href="/" class="brand">👍👎 ThumbGate</a>
-  <a href="/guide">Setup Guide</a>
-  <a href="/learn">Learn</a>
-  <a href="/dashboard">Dashboard</a>
-  <a href="https://github.com/IgorGanapolsky/ThumbGate" target="_blank" rel="noopener">GitHub</a>
-</nav>
-
-<div class="container">
-  <div class="breadcrumb"><a href="/learn">Learn</a> / Vibe Coding Safety Net</div>
-  <h1>The Vibe Coding Safety Net You Are Missing</h1>
-  <p style="color:var(--muted);">3 min read &middot; For developers who vibe-code with Claude Code, Cursor, Codex, or Gemini</p>
-
-  <div class="tldr"><strong>TL;DR:</strong> Vibe coding is 10x faster until your agent breaks something. Add a feedback-driven safety net that learns from your corrections — without slowing you down.</div>
-
-  <h2>Vibe coding is a superpower with a blindspot</h2>
-  <p>You describe what you want. The agent builds it. You ship in hours what used to take days. But every vibe-coder has hit this wall: the agent does something catastrophically wrong, and you realize there was nothing stopping it.</p>
-
-  <div class="comparison">
-    <div class="bad">
-      <h4>Without guardrails</h4>
-      <ul>
-        <li>Agent rewrites a file you did not mention</li>
-        <li>Agent runs <code>DROP TABLE</code> in prod</li>
-        <li>Agent force-pushes over teammate's commits</li>
-        <li>Agent installs a dependency you rejected yesterday</li>
-        <li>Same mistake repeats every session</li>
-      </ul>
-    </div>
-    <div class="good">
-      <h4>With ThumbGate</h4>
-      <ul>
-        <li>Gate blocks file writes outside scope</li>
-        <li>Gate blocks destructive SQL before execution</li>
-        <li>Gate blocks force-push to protected branches</li>
-        <li>Gate remembers your rejection across sessions</li>
-        <li>Mistakes are blocked permanently after feedback</li>
-      </ul>
-    </div>
-  </div>
-
-  <h2>Why CLAUDE.md and .cursorrules are not enough</h2>
-  <p>Prompt rules live inside the agent's context. They compete with your conversation, the codebase, and the agent's own reasoning. When the context window fills up, prompt rules are the first thing to get compressed or ignored.</p>
-  <p>Pre-action gates live <em>outside</em> the agent. They intercept tool calls at the hook layer (PreToolUse in MCP) before execution. The agent cannot override them because the gate runs in a separate process.</p>
-
-  <div class="callout callout-green">
-    <strong>Mental model:</strong> Prompt rules are speed limit signs. Pre-action gates are physical barriers. Signs can be ignored. Barriers cannot.
-  </div>
-
-  <h2>How to add guardrails in two minutes</h2>
-  <ol>
-    <li><strong>Install:</strong> <code>npx thumbgate init</code> — auto-detects your agent and configures hooks</li>
-    <li><strong>Code normally:</strong> vibe-code as you always do, no workflow changes</li>
-    <li><strong>Correct when needed:</strong> when the agent does something wrong, give it a thumbs-down with context</li>
-    <li><strong>Gates build themselves:</strong> repeated failures auto-promote into prevention rules that block the action next time</li>
-  </ol>
-
-  <h2>It gets smarter over time</h2>
-  <p>ThumbGate uses Thompson Sampling to adapt enforcement. Patterns that cause real damage get strict gates. Low-risk patterns stay relaxed. The system tunes itself based on your feedback — no manual rule-writing required.</p>
-  <p>Every correction you make improves the model. Every thumbs-up reinforces good behavior. Over weeks, your agent develops an immune system tailored to your codebase and workflow.</p>
-
-  <h2>What vibe-coders actually gate</h2>
-  <p>Based on real usage patterns from ThumbGate users:</p>
-  <ul>
-    <li><strong>Git operations:</strong> force-push, branch deletion, rebase on shared branches</li>
-    <li><strong>File mutations:</strong> writes to config files, package.json changes, lock file modifications</li>
-    <li><strong>Database operations:</strong> destructive SQL, schema migrations without backup</li>
-    <li><strong>Dependency management:</strong> installing packages the developer already rejected</li>
-    <li><strong>Deployment:</strong> pushing to production without test suite passing</li>
-  </ul>
-
-  <div class="cta-box">
-    <h2 style="color:var(--text);font-size:1.3rem;margin:0 0 8px;">Start with one gate</h2>
-    <p>Install, vibe-code, and give your first thumbs-down. The safety net builds itself.</p>
-    <div class="cta-install">$ npx thumbgate init</div>
-  </div>
-
-  <div class="related">
-    <h3>Related guides</h3>
-    <a href="/learn/stop-ai-agent-force-push">How to Stop AI Agents From Force-Pushing to Main &rarr;</a>
-    <a href="/learn/mcp-pre-action-gates-explained">MCP Pre-Action Gates Explained &rarr;</a>
-    <a href="/guide">Full Setup Guide &rarr;</a>
-  </div>
-</div>
-
-
-  <div class="sticky-cta">
-    <span style="color:var(--muted)">Try it now:</span>
-    <code>npx thumbgate init</code>
-    <a href="https://github.com/IgorGanapolsky/ThumbGate" target="_blank" rel="noopener">GitHub &rarr;</a>
-  </div>
-</body>
-</html>