vibesafu 0.1.22 → 0.1.24
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/index.js +0 -8
- package/package.json +1 -1
package/dist/index.js
CHANGED
|
@@ -811,7 +811,6 @@ var CHECKPOINT_PATTERNS = [
|
|
|
811
811
|
{ pattern: /\.ssh/i, type: "file_sensitive", description: "SSH directory access" },
|
|
812
812
|
{ pattern: /\.aws/i, type: "file_sensitive", description: "AWS credentials access" },
|
|
813
813
|
{ pattern: /credentials/i, type: "file_sensitive", description: "Credentials file access" },
|
|
814
|
-
{ pattern: /CLAUDE\.md/i, type: "file_sensitive", description: "CLAUDE.md modification" },
|
|
815
814
|
// Sensitive file copy/move (indirect path bypass)
|
|
816
815
|
{ pattern: /(cp|mv)\s+.*\.ssh\//i, type: "file_sensitive", description: "Copying/moving SSH files" },
|
|
817
816
|
{ pattern: /(cp|mv)\s+.*\.aws\//i, type: "file_sensitive", description: "Copying/moving AWS credentials" },
|
|
@@ -1281,13 +1280,6 @@ var WRITE_SENSITIVE_PATHS = [
|
|
|
1281
1280
|
legitimateUses: ["Configuring PyPI", "Publishing packages"]
|
|
1282
1281
|
},
|
|
1283
1282
|
// Claude Code config - Critical (could disable security)
|
|
1284
|
-
{
|
|
1285
|
-
pattern: /CLAUDE\.md$/i,
|
|
1286
|
-
description: "Claude instructions file",
|
|
1287
|
-
severity: "critical",
|
|
1288
|
-
risk: "Can modify AI behavior and disable security rules",
|
|
1289
|
-
legitimateUses: ["Updating project instructions", "Configuring Claude behavior"]
|
|
1290
|
-
},
|
|
1291
1283
|
{
|
|
1292
1284
|
pattern: /^~?\/?\.claude\//i,
|
|
1293
1285
|
description: "Claude config directory",
|
package/package.json
CHANGED