claude-jacked 0.3.1__tar.gz → 0.3.3__tar.gz

{claude_jacked-0.3.1 → claude_jacked-0.3.3}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: claude-jacked
-Version: 0.3.1
+Version: 0.3.3
 Summary: Smart reviewers, commands, and session search for Claude Code
 Project-URL: Homepage, https://github.com/jackneil/claude-jacked
 Project-URL: Repository, https://github.com/jackneil/claude-jacked
@@ -82,10 +82,10 @@ Install claude-jacked for me. Use AskUserQuestion to ask me which features I wan
    - SECURITY: Everything above + auto-approve safe bash commands (fewer permission prompts)
    - ALL: Everything
 3. Install based on my choice:
-   - BASE: pipx install claude-jacked && jacked install
-   - SEARCH: pipx install "claude-jacked[search]" && jacked install
-   - SECURITY: pipx install "claude-jacked[security]" && jacked install --security
-   - ALL: pipx install "claude-jacked[all]" && jacked install --security
+   - BASE: pipx install claude-jacked && jacked install --force
+   - SEARCH: pipx install "claude-jacked[search]" && jacked install --force
+   - SECURITY: pipx install "claude-jacked[security]" && jacked install --force --security
+   - ALL: pipx install "claude-jacked[all]" && jacked install --force --security
 4. If I chose SEARCH or ALL, help me set up Qdrant Cloud credentials
 5. Verify with: jacked --help
 ```
@@ -95,26 +95,26 @@ Install claude-jacked for me. Use AskUserQuestion to ask me which features I wan
 **Core (reviewers, commands, behavioral rules):**
 ```bash
 pipx install claude-jacked
-jacked install
+jacked install --force
 ```
 
 **Add session search (optional):**
 ```bash
 pipx install "claude-jacked[search]"
-jacked install
+jacked install --force
 # Then set up Qdrant Cloud credentials (see below)
 ```
 
 **Add security gatekeeper (optional):**
 ```bash
 pipx install "claude-jacked[security]"
-jacked install --security
+jacked install --force --security
 ```
 
 **Everything:**
 ```bash
 pipx install "claude-jacked[all]"
-jacked install --security
+jacked install --force --security
 ```
 
 ---
@@ -277,7 +277,7 @@ The security gatekeeper is opt-in. To enable it:
 
 ```bash
 pip install "claude-jacked[security]"
-jacked install --security
+jacked install --force --security
 ```
 
 To remove just the security hook:
@@ -311,7 +311,7 @@ export ANTHROPIC_API_KEY="sk-..."
 Get audio alerts so you don't have to watch the terminal:
 
 ```bash
-jacked install --sounds
+jacked install --force --sounds
 ```
 
 - **Notification sound** — Plays when Claude needs your input
@@ -444,10 +444,10 @@ jacked delete <session_id>         # Remove from index
 jacked cleardb                     # Delete all your data
 
 # Setup
-jacked install                     # Install agents, commands, rules
-jacked install --search            # Also add session indexing hook
-jacked install --security          # Also add security gatekeeper hook
-jacked install --sounds            # Also add sound notifications
+jacked install --force              # Install agents, commands, rules
+jacked install --force --search    # Also add session indexing hook
+jacked install --force --security  # Also add security gatekeeper hook
+jacked install --force --sounds    # Also add sound notifications
 jacked uninstall                   # Remove from Claude Code
 jacked uninstall --sounds          # Remove only sounds
 jacked uninstall --security        # Remove only security hook
@@ -603,10 +603,10 @@ Options:
 
 PHASE 3 - INSTALL:
 Based on user choice:
-- BASE: pipx install claude-jacked && jacked install
-- SEARCH: pipx install "claude-jacked[search]" && jacked install
-- SECURITY: pipx install "claude-jacked[security]" && jacked install --security
-- ALL: pipx install "claude-jacked[all]" && jacked install --security
+- BASE: pipx install claude-jacked && jacked install --force
+- SEARCH: pipx install "claude-jacked[search]" && jacked install --force
+- SECURITY: pipx install "claude-jacked[security]" && jacked install --force --security
+- ALL: pipx install "claude-jacked[all]" && jacked install --force --security
 
 PHASE 4 - POST-INSTALL (if SEARCH or ALL):
 Help user set up Qdrant Cloud:

{claude_jacked-0.3.1 → claude_jacked-0.3.3}/README.md

@@ -46,10 +46,10 @@ Install claude-jacked for me. Use AskUserQuestion to ask me which features I wan
    - SECURITY: Everything above + auto-approve safe bash commands (fewer permission prompts)
    - ALL: Everything
 3. Install based on my choice:
-   - BASE: pipx install claude-jacked && jacked install
-   - SEARCH: pipx install "claude-jacked[search]" && jacked install
-   - SECURITY: pipx install "claude-jacked[security]" && jacked install --security
-   - ALL: pipx install "claude-jacked[all]" && jacked install --security
+   - BASE: pipx install claude-jacked && jacked install --force
+   - SEARCH: pipx install "claude-jacked[search]" && jacked install --force
+   - SECURITY: pipx install "claude-jacked[security]" && jacked install --force --security
+   - ALL: pipx install "claude-jacked[all]" && jacked install --force --security
 4. If I chose SEARCH or ALL, help me set up Qdrant Cloud credentials
 5. Verify with: jacked --help
 ```
@@ -59,26 +59,26 @@ Install claude-jacked for me. Use AskUserQuestion to ask me which features I wan
 **Core (reviewers, commands, behavioral rules):**
 ```bash
 pipx install claude-jacked
-jacked install
+jacked install --force
 ```
 
 **Add session search (optional):**
 ```bash
 pipx install "claude-jacked[search]"
-jacked install
+jacked install --force
 # Then set up Qdrant Cloud credentials (see below)
 ```
 
 **Add security gatekeeper (optional):**
 ```bash
 pipx install "claude-jacked[security]"
-jacked install --security
+jacked install --force --security
 ```
 
 **Everything:**
 ```bash
 pipx install "claude-jacked[all]"
-jacked install --security
+jacked install --force --security
 ```
 
 ---
@@ -241,7 +241,7 @@ The security gatekeeper is opt-in. To enable it:
 
 ```bash
 pip install "claude-jacked[security]"
-jacked install --security
+jacked install --force --security
 ```
 
 To remove just the security hook:
@@ -275,7 +275,7 @@ export ANTHROPIC_API_KEY="sk-..."
 Get audio alerts so you don't have to watch the terminal:
 
 ```bash
-jacked install --sounds
+jacked install --force --sounds
 ```
 
 - **Notification sound** — Plays when Claude needs your input
@@ -408,10 +408,10 @@ jacked delete <session_id>         # Remove from index
 jacked cleardb                     # Delete all your data
 
 # Setup
-jacked install                     # Install agents, commands, rules
-jacked install --search            # Also add session indexing hook
-jacked install --security          # Also add security gatekeeper hook
-jacked install --sounds            # Also add sound notifications
+jacked install --force              # Install agents, commands, rules
+jacked install --force --search    # Also add session indexing hook
+jacked install --force --security  # Also add security gatekeeper hook
+jacked install --force --sounds    # Also add sound notifications
 jacked uninstall                   # Remove from Claude Code
 jacked uninstall --sounds          # Remove only sounds
 jacked uninstall --security        # Remove only security hook
@@ -567,10 +567,10 @@ Options:
 
 PHASE 3 - INSTALL:
 Based on user choice:
-- BASE: pipx install claude-jacked && jacked install
-- SEARCH: pipx install "claude-jacked[search]" && jacked install
-- SECURITY: pipx install "claude-jacked[security]" && jacked install --security
-- ALL: pipx install "claude-jacked[all]" && jacked install --security
+- BASE: pipx install claude-jacked && jacked install --force
+- SEARCH: pipx install "claude-jacked[search]" && jacked install --force
+- SECURITY: pipx install "claude-jacked[security]" && jacked install --force --security
+- ALL: pipx install "claude-jacked[all]" && jacked install --force --security
 
 PHASE 4 - POST-INSTALL (if SEARCH or ALL):
 Help user set up Qdrant Cloud:

{claude_jacked-0.3.1 → claude_jacked-0.3.3}/jacked/__init__.py

@@ -8,7 +8,7 @@ Install extras for additional features:
   pip install "claude-jacked[all]"       — everything
 """
 
-__version__ = "0.3.1"
+__version__ = "0.3.3"
 
 
 def _qdrant_available() -> bool:

{claude_jacked-0.3.1 → claude_jacked-0.3.3}/jacked/cli.py

@@ -807,7 +807,7 @@ def _install_behavioral_rules(claude_md_path: Path, force: bool = False):
             # Version upgrade needed
             console.print("\n[bold]Behavioral rules update available:[/bold]")
             console.print(f"[dim]{rules_text}[/dim]")
-            if not force and not click.confirm("Update behavioral rules in CLAUDE.md?"):
+            if not force and sys.stdin.isatty() and not click.confirm("Update behavioral rules in CLAUDE.md?"):
                 console.print("[yellow][-][/yellow] Skipped behavioral rules update")
                 return
 
@@ -838,7 +838,7 @@ def _install_behavioral_rules(claude_md_path: Path, force: bool = False):
     # Fresh install - show and confirm
     console.print("\n[bold]Proposed behavioral rules for ~/.claude/CLAUDE.md:[/bold]")
     console.print(f"[dim]{rules_text}[/dim]")
-    if not force and not click.confirm("Add these behavioral rules to your global CLAUDE.md?"):
+    if not force and sys.stdin.isatty() and not click.confirm("Add these behavioral rules to your global CLAUDE.md?"):
         console.print("[yellow][-][/yellow] Skipped behavioral rules")
         return
 
@@ -1142,7 +1142,7 @@ def install(sounds: bool, search: bool, security: bool, no_rules: bool, force: b
                     skipped += 1
                     continue  # Same content, skip silently
                 # Different content - ask before overwriting (unless --force)
-                if not force and not click.confirm(f"Agent '{agent_file.name}' exists with different content. Overwrite?"):
+                if not force and sys.stdin.isatty() and not click.confirm(f"Agent '{agent_file.name}' exists with different content. Overwrite?"):
                     console.print(f"[yellow][-][/yellow] Skipped {agent_file.name}")
                     continue
             shutil.copy(agent_file, dst_file)
@@ -1170,7 +1170,7 @@ def install(sounds: bool, search: bool, security: bool, no_rules: bool, force: b
                     skipped += 1
                     continue  # Same content, skip silently
                 # Different content - ask before overwriting (unless --force)
-                if not force and not click.confirm(f"Command '{cmd_file.name}' exists with different content. Overwrite?"):
+                if not force and sys.stdin.isatty() and not click.confirm(f"Command '{cmd_file.name}' exists with different content. Overwrite?"):
                     console.print(f"[yellow][-][/yellow] Skipped {cmd_file.name}")
                     continue
             shutil.copy(cmd_file, dst_file)

{claude_jacked-0.3.1 → claude_jacked-0.3.3}/jacked/data/hooks/security_gatekeeper.py

@@ -64,6 +64,9 @@ SAFE_EXACT = {
 # e.g., C:/Users/jack/.conda/envs/krac_llm/python.exe → python
 PATH_STRIP_RE = re.compile(r'^(?:.*[/\\])?([^/\\]+?)(?:\.exe)?(?:\s|$)', re.IGNORECASE)
 
+# Strip leading env var assignments: HOME=/x PATH="/y:$PATH" cmd → cmd
+ENV_ASSIGN_RE = re.compile(r"""^(?:\w+=(?:"[^"]*"|'[^']*'|\S+)\s+)+""")
+
 # Universal safe: any command that just asks for version or help
 VERSION_HELP_RE = re.compile(r'^\S+\s+(-[Vv]|--version|-h|--help)\s*$')
 
@@ -195,14 +198,18 @@ def check_permissions(command: str, cwd: str) -> bool:
     patterns.extend(_load_permissions(project_dir / ".claude" / "settings.json"))
     patterns.extend(_load_permissions(project_dir / ".claude" / "settings.local.json"))
 
+    cmd_core = _strip_env_prefix(command)
+    candidates = [command, cmd_core] if cmd_core != command else [command]
+
     for pat in patterns:
         prefix, is_wildcard = _parse_bash_pattern(pat)
-        if is_wildcard:
-            if command.startswith(prefix):
-                return True
-        else:
-            if command == prefix:
-                return True
+        for cmd in candidates:
+            if is_wildcard:
+                if cmd.startswith(prefix):
+                    return True
+            else:
+                if cmd == prefix:
+                    return True
 
     return False
 
@@ -223,9 +230,14 @@ def _get_base_command(command: str) -> str:
     return stripped
 
 
+def _strip_env_prefix(cmd: str) -> str:
+    """Strip leading env var assignments: HOME=/x PATH="/y" cmd → cmd"""
+    return ENV_ASSIGN_RE.sub('', cmd).strip()
+
+
 def local_evaluate(command: str) -> str | None:
     """Evaluate command locally. Returns 'YES', 'NO', or None (ambiguous)."""
-    cmd = command.strip()
+    cmd = _strip_env_prefix(command.strip())
     base = _get_base_command(cmd)
 
     # Check deny patterns first (on original command, not stripped)
@@ -353,11 +365,12 @@ def main():
 
     # Tier 0: Deny check FIRST — security always wins over permissions
     cmd_stripped = command.strip()
+    cmd_core = _strip_env_prefix(cmd_stripped)
     for pattern in DENY_PATTERNS:
-        if pattern.search(cmd_stripped):
+        if pattern.search(cmd_stripped) or pattern.search(cmd_core):
             elapsed = time.time() - start
             log(f"DENY MATCH ({elapsed:.3f}s)")
-            log(f"DECISION: PASS ({elapsed:.3f}s)")
+            log(f"DECISION: ASK USER ({elapsed:.3f}s)")
             sys.exit(0)
 
     # Tier 1: Check Claude's own permission rules
@@ -380,7 +393,7 @@ def main():
         # Shouldn't hit this since deny checked above, but just in case
         elapsed = time.time() - start
         log(f"LOCAL SAID: NO ({elapsed:.3f}s)")
-        log(f"DECISION: PASS ({elapsed:.3f}s)")
+        log(f"DECISION: ASK USER ({elapsed:.3f}s)")
         sys.exit(0)
 
     # Tier 3+4: API then CLI for ambiguous commands
@@ -396,7 +409,7 @@ def main():
     elapsed = time.time() - start
 
     if response is None:
-        log(f"DECISION: PASS (no response, {elapsed:.1f}s)")
+        log(f"DECISION: ASK USER (no response, {elapsed:.1f}s)")
         sys.exit(0)
 
     response_upper = response.upper()
@@ -406,7 +419,7 @@ def main():
         log(f"DECISION: ALLOW ({elapsed:.1f}s)")
         emit_allow()
     else:
-        log(f"DECISION: PASS ({elapsed:.1f}s)")
+        log(f"DECISION: ASK USER ({elapsed:.1f}s)")
 
     sys.exit(0)
 

{claude_jacked-0.3.1 → claude_jacked-0.3.3}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "hatchling.build"
 
 [project]
 name = "claude-jacked"
-version = "0.3.1"
+version = "0.3.3"
 description = "Smart reviewers, commands, and session search for Claude Code"
 readme = "README.md"
 license = "MIT"