worclaude 2.9.3 → 2.10.1

package/CHANGELOG.md

@@ -4,6 +4,47 @@ All notable changes to worclaude are documented in this file. Format loosely fol
 
 ## [Unreleased]
 
+## [2.10.1] — 2026-04-29
+
+Adds opt-in scaffolding for Claude Code 2.1.113's `sandbox.network` deny/allow lists. Worclaude is a scaffolder, so the new `templates/settings/base.json` ships empty `deniedDomains` and `allowedDomains` stubs rather than an opinionated default list — project owners decide their own network policy. The merge paths for both fresh init (Scenario A) and existing-project init/upgrade (Scenarios B/C) union-merge the new arrays preserving any user-added domains, and a new `worclaude doctor` check warns when the block is missing or malformed (with `worclaude upgrade` as the remediation hint). Also bundles a Dependabot major bump to `commander` 14, which is now Node-20+-only and was unblocked by the v2.10.0 Node 18 drop.
+
+### Added
+
+- **Sandbox network scaffolding** (PR #172) — `templates/settings/base.json` now scaffolds `sandbox.network.deniedDomains: []` and `allowedDomains: []` between the existing `permissions` and `hooks` blocks. New `mergeSettings` helper `unionStringList(inputs, accessor)` in `src/core/scaffolder.js` handles both `permissions.allow` and the new sandbox arrays uniformly. Backward compatible: a base without `sandbox` produces output without `sandbox`, so legacy callers in tests or downstream consumers don't surface the key spuriously.
+- **`appendUnique(target, key, source)` helper** in `src/core/merger.js` (PR #172) — folds three previously-duplicated union-merge call sites in `mergeSettingsPermissionsAndHooks` (allow / deny / sandbox-arrays) into one-liners. Extracted during a `/simplify` pass after three parallel review agents flagged the duplication.
+- **`checkSandboxBlock` doctor check** (PR #172) — warns when `settings.json` is missing the `sandbox` block (with a `worclaude upgrade` remediation pointer for legacy installs), when `sandbox.network` is malformed, or when either array isn't actually an array.
+
+### Changed
+
+- **`commander` 13.1.0 → 14.0.3** (PR #171) — Dependabot major bump. Commander 14 requires Node 20+ (already satisfied after v2.10.0's Node 18 drop) and adds `helpGroup`/`optionsGroup`/`commandsGroup` APIs plus unescaped negative-number support. Worclaude's CLI surface is unaffected.
+- ⚠ **PR #171 shipped without a `Version bump:` declaration** — Dependabot-generated body, no manual annotation. Treated as `none` per `/sync`'s "missing → none" rule and surfaced here permanently. PR #172's `patch` declaration drove the release.
+
+### Tests
+
+- 967 → 992 (+25 net). Per-stack sandbox-array assertions across all 16 supported language templates (replaced one all-stacks loop test for individual failure attribution); 3 scaffolder unit tests covering union-merge, dedup, and legacy-passthrough; 2 Scenario B regressions for legacy-install upgrade and user-domain preservation through subsequent merges; 2 doctor checks for missing-block (legacy install) and malformed-block scenarios.
+
+Release group: 2 PRs (1 patch, 1 missing-declaration treated as none). v2.10.0 → v2.10.1.
+
+## [2.10.0] — 2026-04-29
+
+Drops support for Node 18, which reached LTS end-of-life on 2025-04-30 (12 months before this release). The drop unblocks two Dependabot PRs stuck on Node-20-only features (`inquirer 13`'s `util.styleText` and `ora 9`'s regex `v` flag) and ships those bumps in the same release. Also recovers from a Dependabot routing misconfiguration: `.github/dependabot.yml` now declares `target-branch: develop` for both ecosystems, fixing a config gap that caused 5 PRs in the v2.9.3 → v2.10.0 window to be opened against main instead of develop. Their content is preserved across both branches via a recovery sync.
+
+### Breaking
+
+- **Node 18 no longer supported** (PR #167) — `engines.node` is now `>=20.0.0`. Running `npm install -g worclaude` on Node 18 will print an `EBADENGINE` warning (npm doesn't block by default but the warning is visible). CI test matrix dropped from `[18, 20, 22]` to `[20, 22]`. Required-status-checks on the `develop-protection` and `main-protection` rulesets updated accordingly. Tech-stack mentions refreshed in CLAUDE.md, AGENTS.md, README.md, `docs/guide/getting-started.md`, and `templates/specs/spec-md-library.md`.
+
+### Changed
+
+- **`ora` 8.2.0 → 9.4.0** (PR #169) — major bump. ora 9 uses regex `v` flag (Node 20+); previously blocked by the v2.9.x Node 18 matrix.
+- **`inquirer` 12.11.1 → 13.4.2** (PR #169) — major bump. inquirer 13 uses `util.styleText` (Node 20.12+); previously blocked by the v2.9.x Node 18 matrix.
+- **Dependabot routing fixed** (PR #168) — added `target-branch: develop` to both `npm` and `github-actions` ecosystems in `.github/dependabot.yml`. Previously, Dependabot defaulted to the repo's default branch (main), causing PRs to misroute. Future Dependabot Monday runs will correctly target develop.
+
+### Internal
+
+- **Recovery sync develop ← main** (PR #168) — brings 5 misrouted Dependabot squash commits from main onto develop (prettier 3.8.3, claude-code-action 1.0.109, actions/cache 5, vitest 4, eslint 10). All updates were legitimate; merge made via `git merge origin/main --no-ff` with auto-resolution.
+
+Release group: 3 PRs (1 minor, 1 patch, 1 none). No missing Version bump declarations.
+
 ## [2.9.3] — 2026-04-29
 
 Security tooling refresh shipped as a paired group: a CI-tooling migration from Snyk (whose free-tier scan limit had blocked the v2.9.2 release PR) to a GitHub-native open-source SCA stack (Dependabot + OSV-Scanner), and the cleanup of the inaugural CodeQL scan after enabling the default setup. CodeQL surfaced 5 findings — 2× High "Incomplete multi-character sanitization" on the project-scanner README detector's HTML-stripping helpers, and 3× Medium "Workflow does not contain permissions" on `ci.yml`'s three jobs — all closed in this release. The sanitization fix extracts a `stripUntilStable(text, regex)` helper for the do-while-until-stable pattern; the permissions fix adds a top-level `permissions: contents: read` block matching the rest of the repo's workflows. SECURITY.md's AI-detected typosquat section also refined with the actual chain context: the `claude` npm package is `bcherny/redirect-claude`, an intentional Boris-Cherny-maintained typosquat-warning redirect, not an abandoned package as previously documented.

package/README.md

@@ -7,7 +7,7 @@
   <a href="https://www.npmjs.com/package/worclaude"><img src="https://img.shields.io/npm/dm/worclaude" alt="downloads" /></a>
   <a href="https://github.com/sefaertunc/Worclaude/actions/workflows/ci.yml"><img src="https://img.shields.io/github/actions/workflow/status/sefaertunc/Worclaude/ci.yml?label=tests" alt="tests" /></a>
   <a href="LICENSE"><img src="https://img.shields.io/github/license/sefaertunc/Worclaude" alt="license" /></a>
-  <img src="https://img.shields.io/badge/node-%3E%3D18-brightgreen" alt="node >= 18" />
+  <img src="https://img.shields.io/badge/node-%3E%3D20-brightgreen" alt="node >= 20" />
   <img src="https://img.shields.io/badge/built%20for-Claude%20Code-cc785c" alt="Built for Claude Code" />
 </p>
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "worclaude",
-  "version": "2.9.3",
+  "version": "2.10.1",
   "description": "The Workflow Layer for Claude Code — scaffold agents, commands, skills, hooks, and memory into any project",
   "type": "module",
   "bin": {
@@ -28,7 +28,7 @@
   "funding": "https://github.com/sponsors/sefaertunc",
   "author": "Sefa Ertunç",
   "engines": {
-    "node": ">=18.0.0"
+    "node": ">=20.0.0"
   },
   "scripts": {
     "test": "vitest run",
@@ -66,18 +66,18 @@
   "dependencies": {
     "@sefaertunc/anthropic-watch-client": "^1.0.2",
     "chalk": "^5.4.1",
-    "commander": "^13.1.0",
+    "commander": "^14.0.3",
     "fs-extra": "^11.3.0",
-    "inquirer": "^12.5.0",
-    "ora": "^8.2.0",
+    "inquirer": "^13.4.2",
+    "ora": "^9.4.0",
     "smol-toml": "^1.6.1",
     "yaml": "^2.8.3"
   },
   "devDependencies": {
-    "eslint": "^9.22.0",
+    "eslint": "^10.2.1",
     "prettier": "^3.5.3",
     "vitepress": "^1.6.4",
-    "vitest": "^3.0.9"
+    "vitest": "^4.1.5"
   },
   "overrides": {
     "brace-expansion": "^1.1.13",

package/src/commands/doctor.js

@@ -286,6 +286,36 @@ async function readSettingsJson(projectRoot) {
   }
 }
 
+async function checkSandboxBlock(projectRoot) {
+  const settings = await readSettingsJson(projectRoot);
+  if (!settings) return null;
+
+  if (!settings.sandbox) {
+    return result(
+      WARN,
+      'Sandbox block',
+      'settings.json missing `sandbox` block. Run `worclaude upgrade` to scaffold network deny/allow lists.'
+    );
+  }
+
+  const network = settings.sandbox.network;
+  if (!network || typeof network !== 'object') {
+    return result(WARN, 'Sandbox block', '`sandbox.network` block missing or malformed');
+  }
+
+  const issues = [];
+  if (!Array.isArray(network.deniedDomains)) {
+    issues.push('`deniedDomains` not an array');
+  }
+  if (!Array.isArray(network.allowedDomains)) {
+    issues.push('`allowedDomains` not an array');
+  }
+  if (issues.length > 0) {
+    return result(WARN, 'Sandbox block', issues.join('; '));
+  }
+  return result(PASS, 'Sandbox block', null);
+}
+
 async function checkHookEventNames(projectRoot) {
   const settings = await readSettingsJson(projectRoot);
   if (!settings) {
@@ -1047,6 +1077,7 @@ export async function doctorCommand(options = {}) {
   record('core', await checkClaudeMdMemoryGuidance(projectRoot));
   record('core', await checkAgentsMd(projectRoot));
   record('core', await checkSettingsJson(projectRoot));
+  record('core', await checkSandboxBlock(projectRoot));
   record('core', await checkSessions(projectRoot));
   spacer();
 

package/src/core/merger.js

@@ -241,20 +241,28 @@ export async function mergeSettingsPermissionsAndHooks(
   const existing = parseUserJson(existingRaw, '.claude/settings.json');
 
   // Merge permissions (Tier 1) — union-merge both allow and deny
-  const existingAllow = existing.permissions?.allow || [];
-  const workflowAllow = workflowSettings.permissions?.allow || [];
-  const newAllow = workflowAllow.filter((p) => !existingAllow.includes(p));
   if (!existing.permissions) existing.permissions = {};
-  existing.permissions.allow = [...existingAllow, ...newAllow];
+  const newAllow = appendUnique(existing.permissions, 'allow', workflowSettings.permissions?.allow);
 
-  const existingDeny = existing.permissions?.deny || [];
-  const workflowDeny = workflowSettings.permissions?.deny || [];
-  const newDeny = workflowDeny.filter((p) => !existingDeny.includes(p));
-  if (newDeny.length > 0 || existingDeny.length > 0) {
-    existing.permissions.deny = [...existingDeny, ...newDeny];
+  const existingDenyLen = (existing.permissions.deny ?? []).length;
+  const newDeny = appendUnique(existing.permissions, 'deny', workflowSettings.permissions?.deny);
+  if (existingDenyLen === 0 && newDeny === 0) {
+    delete existing.permissions.deny;
   }
 
-  report.added.permissions = newAllow.length + newDeny.length;
+  report.added.permissions = newAllow + newDeny;
+
+  // Merge sandbox block (Tier 1 — additive, preserves user customizations)
+  const workflowSandbox = workflowSettings.sandbox?.network;
+  if (workflowSandbox) {
+    if (!existing.sandbox) existing.sandbox = {};
+    if (!existing.sandbox.network || typeof existing.sandbox.network !== 'object') {
+      existing.sandbox.network = {};
+    }
+    for (const key of ['deniedDomains', 'allowedDomains']) {
+      appendUnique(existing.sandbox.network, key, workflowSandbox[key]);
+    }
+  }
 
   // Merge hooks (Tier 1 + Tier 3)
   if (!existing.hooks) existing.hooks = {};
@@ -360,6 +368,13 @@ async function mergeSettingsJson(projectRoot, existingScan, selections, report)
   }
 }
 
+function appendUnique(target, key, source) {
+  const existing = Array.isArray(target[key]) ? target[key] : [];
+  const additions = Array.isArray(source) ? source.filter((d) => !existing.includes(d)) : [];
+  target[key] = [...existing, ...additions];
+  return additions.length;
+}
+
 function countHooks(hooks) {
   if (!hooks) return 0;
   return Object.values(hooks).reduce((sum, entries) => sum + entries.length, 0);

package/src/core/scaffolder.js

@@ -204,16 +204,31 @@ export async function scaffoldMemoryDocs(projectRoot) {
 
 export function mergeSettings(base, ...stacks) {
   const merged = JSON.parse(JSON.stringify(base));
-  const baseAllow = merged.permissions?.allow || [];
+  const inputs = [base, ...stacks].filter(Boolean);
 
-  for (const stack of stacks) {
-    if (!stack) continue;
-    const stackAllow = stack.permissions?.allow || [];
-    if (stackAllow.length > 0) {
-      baseAllow.push(...stackAllow);
-    }
+  merged.permissions.allow = unionStringList(inputs, (i) => i.permissions?.allow);
+
+  if (merged.sandbox?.network) {
+    merged.sandbox.network.deniedDomains = unionStringList(
+      inputs,
+      (i) => i.sandbox?.network?.deniedDomains
+    );
+    merged.sandbox.network.allowedDomains = unionStringList(
+      inputs,
+      (i) => i.sandbox?.network?.allowedDomains
+    );
   }
 
-  merged.permissions.allow = [...new Set(baseAllow)];
   return merged;
 }
+
+function unionStringList(inputs, accessor) {
+  const set = new Set();
+  for (const input of inputs) {
+    const list = accessor(input);
+    if (Array.isArray(list)) {
+      for (const item of list) set.add(item);
+    }
+  }
+  return [...set];
+}

package/templates/settings/base.json

@@ -81,6 +81,12 @@
       "Bash(rm -rf $HOME)", "Bash(rm -rf $HOME/*)"
     ]
   },
+  "sandbox": {
+    "network": {
+      "deniedDomains": [],
+      "allowedDomains": []
+    }
+  },
   "hooks": {
     "PostToolUse": [
       {

package/templates/specs/spec-md-library.md

@@ -52,7 +52,7 @@ catch (error) { /* [ErrorType]: [message] */ }
 ## Compatibility Matrix
 | Runtime/Version        | Supported | Notes                      |
 |------------------------|-----------|----------------------------|
-| [Node.js >= 18]       | Yes       | [ESM and CJS]             |
+| [Node.js >= 20]       | Yes       | [ESM and CJS]             |
 | [Node.js 16]          | No        | [Reason]                   |
 | [Python >= 3.10]      | Yes       | [Type hints required]      |
 | [Browser (ESM)]       | Yes       | [Bundle size: ~N kB gzip]  |