PyPI - tweek - Versions diffs - 0.2.1__tar.gz → 0.3.1__tar.gz - Mend

tweek 0.2.1tar.gz → 0.3.1tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (171) hide show

tweek-0.3.1/NOTICE ADDED Viewed

@@ -0,0 +1,199 @@
+Tweek
+Copyright 2025 Tommy Mancino / Tweek, LLC
+This product includes software developed at Tweek, LLC.
+=========================================================================
+Third-Party Components
+=========================================================================
+This project uses the following third-party components. Their licenses
+and copyright notices are reproduced below, as required by their
+respective licenses.
+-------------------------------------------------------------------------
+ProtectAI DeBERTa-v3-base Prompt Injection v2
+-------------------------------------------------------------------------
+Source:  https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2
+License: Apache License 2.0
+Copyright (c) 2024 Protect AI, Inc.
+A fine-tuned DeBERTa-v3-base model for binary prompt injection
+classification. Used by Tweek as an on-device classifier for detecting
+prompt injection attacks. The model is downloaded at user request via
+`tweek model download` and stored locally at ~/.tweek/models/.
+Tweek does not modify or redistribute the model weights. The model is
+downloaded directly from HuggingFace by the end user.
+Citation:
+  @misc{deberta-v3-base-prompt-injection-v2,
+    author = {ProtectAI.com},
+    title  = {Fine-Tuned DeBERTa-v3-base for Prompt Injection Detection},
+    year   = {2024},
+    publisher = {HuggingFace},
+    url    = {https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2},
+  }
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+    http://www.apache.org/licenses/LICENSE-2.0
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+-------------------------------------------------------------------------
+Microsoft DeBERTa-v3-base (upstream base model)
+-------------------------------------------------------------------------
+Source:  https://huggingface.co/microsoft/deberta-v3-base
+License: MIT License
+Copyright (c) Microsoft Corporation.
+The ProtectAI prompt injection model above is fine-tuned from
+Microsoft's DeBERTa-v3-base pre-trained language model.
+Citation:
+  @misc{he2021debertav3,
+    title  = {DeBERTaV3: Improving DeBERTa using ELECTRA-Style
+              Pre-Training with Gradient-Disentangled Embedding Sharing},
+    author = {Pengcheng He and Jianfeng Gao and Weizhu Chen},
+    year   = {2021},
+    eprint = {2111.09543},
+    archivePrefix = {arXiv},
+    primaryClass  = {cs.CL},
+  }
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
+CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
+TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+-------------------------------------------------------------------------
+ONNX Runtime
+-------------------------------------------------------------------------
+Source:  https://github.com/microsoft/onnxruntime
+License: MIT License
+Copyright (c) Microsoft Corporation.
+Used as the inference engine for the local prompt injection classifier.
+Installed as an optional dependency via `pip install tweek[local-models]`.
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
+CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
+TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+-------------------------------------------------------------------------
+HuggingFace Tokenizers
+-------------------------------------------------------------------------
+Source:  https://github.com/huggingface/tokenizers
+License: Apache License 2.0
+Copyright (c) 2019 HuggingFace Inc.
+Used for tokenizing input text before feeding to the local ONNX model.
+Installed as an optional dependency via `pip install tweek[local-models]`.
+Licensed under the Apache License, Version 2.0.
+-------------------------------------------------------------------------
+NumPy
+-------------------------------------------------------------------------
+Source:  https://github.com/numpy/numpy
+License: BSD 3-Clause License
+Copyright (c) 2005-2024, NumPy Developers.
+Used for numerical operations in the local model inference pipeline
+(softmax scoring, tensor manipulation). Installed as an optional
+dependency via `pip install tweek[local-models]`.
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are
+met:
+  1. Redistributions of source code must retain the above copyright
+     notice, this list of conditions and the following disclaimer.
+  2. Redistributions in binary form must reproduce the above copyright
+     notice, this list of conditions and the following disclaimer in
+     the documentation and/or other materials provided with the
+     distribution.
+  3. Neither the name of the copyright holder nor the names of its
+     contributors may be used to endorse or promote products derived
+     from this software without specific prior written permission.
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+=========================================================================
+Runtime Dependencies
+=========================================================================
+The following packages are installed via pip as runtime dependencies.
+They are NOT bundled or vendored — each carries its own license in its
+distribution. Listed here for transparency.
+  click >=8.0             BSD-3-Clause    Pallets Projects
+  pyyaml >=6.0            MIT             Kirill Simonov / YAML community
+  rich >=13.0             MIT             Will McGugan
+  keyring >=25.0          MIT             Jason R. Coombs
+Optional dependencies (installed only when the user requests them):
+  anthropic >=0.18.0      MIT             Anthropic, PBC
+  openai >=1.0.0          MIT             OpenAI
+  google-generativeai     Apache-2.0      Google LLC
+  mcp >=1.0.0             MIT             Anthropic, PBC
+  mitmproxy >=10.0        MIT             mitmproxy contributors
+  secretstorage >=3.0     BSD-3-Clause    Dmitry Shachnev
+=========================================================================

{tweek-0.2.1 → tweek-0.3.1}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: tweek
-Version: 0.2.1
+Version: 0.3.1
 Summary: Defense-in-depth security for AI coding assistants - protect credentials, code, and system from prompt injection attacks
 Author: Tommy Mancino
 License-Expression: Apache-2.0
@@ -21,7 +21,9 @@ Classifier: Topic :: Software Development :: Quality Assurance
 Requires-Python: >=3.9
 Description-Content-Type: text/markdown
 License-File: LICENSE
+License-File: NOTICE
 Requires-Dist: click>=8.0
+Requires-Dist: pydantic>=2.0
 Requires-Dist: pyyaml>=6.0
 Requires-Dist: rich>=13.0
 Requires-Dist: keyring>=25.0
@@ -42,6 +44,8 @@ Requires-Dist: mitmproxy>=10.0; extra == "proxy"
 Provides-Extra: dev
 Requires-Dist: pytest>=7.0; extra == "dev"
 Requires-Dist: pytest-cov>=4.0; extra == "dev"
+Requires-Dist: pytest-xdist>=3.5.0; extra == "dev"
+Requires-Dist: hypothesis>=6.98.0; extra == "dev"
 Requires-Dist: black>=23.0; extra == "dev"
 Requires-Dist: ruff>=0.1.0; extra == "dev"
 Requires-Dist: twine>=4.0; extra == "dev"
@@ -105,11 +109,12 @@ pip install --user tweek
 ### Protect Your Tools
 ```bash
-tweek install                           # Claude Code (CLI hooks)
+tweek protect                           # Interactive wizard — detects and protects all tools
+tweek protect claude-code               # Claude Code (CLI hooks)
 tweek protect openclaw                  # OpenClaw (HTTP proxy)
-tweek mcp install claude-desktop        # Claude Desktop (MCP proxy)
-tweek mcp install chatgpt-desktop       # ChatGPT Desktop (MCP proxy)
-tweek mcp install gemini                # Gemini CLI (MCP proxy)
+tweek protect claude-desktop            # Claude Desktop (MCP proxy)
+tweek protect chatgpt                   # ChatGPT Desktop (MCP proxy)
+tweek protect gemini                    # Gemini CLI (MCP proxy)
 tweek proxy setup                       # Cursor, Windsurf, Continue.dev (HTTP proxy)
 ```
@@ -127,11 +132,11 @@ That's it. Tweek auto-detects your tools, applies all 259 attack patterns across
 | Client | Integration | Setup |
 |--------|------------|-------|
-| **Claude Code** | CLI hooks (native) | `tweek install` |
+| **Claude Code** | CLI hooks (native) | `tweek protect claude-code` |
 | **OpenClaw** | Proxy wrapping | `tweek protect openclaw` |
-| **Claude Desktop** | MCP proxy | `tweek mcp install claude-desktop` |
-| **ChatGPT Desktop** | MCP proxy | `tweek mcp install chatgpt-desktop` |
-| **Gemini CLI** | MCP proxy | `tweek mcp install gemini` |
+| **Claude Desktop** | MCP proxy | `tweek protect claude-desktop` |
+| **ChatGPT Desktop** | MCP proxy | `tweek protect chatgpt` |
+| **Gemini CLI** | MCP proxy | `tweek protect gemini` |
 | **Cursor** | HTTP proxy | `tweek proxy setup` |
 | **Windsurf** | HTTP proxy | `tweek proxy setup` |
 | **Continue.dev** | HTTP proxy | `tweek proxy setup` |
@@ -161,7 +166,7 @@ Turn 3: cat ~/.ssh/id_rsa → BLOCKED: path_escalation anomaly
 **Response injection** — Malicious instructions hidden in tool responses are caught at ingestion.
-See the full [Attack Patterns Reference](docs/ATTACK_PATTERNS.md) for all 259 patterns across 22 categories.
+See the full [Attack Patterns Reference](docs/ATTACK_PATTERNS.md) for all 259 patterns across 11 categories.
 ---
@@ -169,14 +174,16 @@ See the full [Attack Patterns Reference](docs/ATTACK_PATTERNS.md) for all 259 pa
 Most security tools that use AI send your data to an API. Tweek doesn't.
-Tweek ships with a **custom-trained prompt injection classifier** ([DeBERTa-v3-base](https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2)) that runs entirely on your machine via ONNX Runtime. No API keys. No cloud calls. No data leaves your computer.
+Tweek uses [ProtectAI's DeBERTa-v3-base Prompt Injection v2](https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2) classifier, fine-tuned from [Microsoft's DeBERTa-v3-base](https://huggingface.co/microsoft/deberta-v3-base), running entirely on your machine via [ONNX Runtime](https://onnxruntime.ai). No API keys. No cloud calls. No data leaves your computer.
 | Property | Value |
 |----------|-------|
-| **Model** | DeBERTa-v3-base, fine-tuned for prompt injection |
-| **Runtime** | ONNX (CPU-only, single thread) |
+| **Model** | [ProtectAI DeBERTa-v3-base Prompt Injection v2](https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2) (Apache 2.0) |
+| **Base Model** | [Microsoft DeBERTa-v3-base](https://huggingface.co/microsoft/deberta-v3-base) (MIT) |
+| **Runtime** | ONNX Runtime (CPU-only, single thread) |
 | **Privacy** | 100% on-device — zero network calls |
-| **License** | Apache 2.0 |
+See [NOTICE](./NOTICE) for full third-party license texts and attribution.
 The local model handles the gray-area attacks that pattern matching alone cannot catch — encoded instructions, novel injection techniques, social engineering disguised as legitimate content. High-confidence results are returned instantly. Uncertain results can optionally escalate to a cloud LLM for deeper analysis (you bring your own API key).
@@ -278,4 +285,4 @@ To report a security vulnerability, email security@gettweek.com.
 ## License
-[Apache 2.0](LICENSE)
+[Apache 2.0](LICENSE) | [Third-Party Notices](NOTICE)

{tweek-0.2.1 → tweek-0.3.1}/README.md RENAMED Viewed

@@ -53,11 +53,12 @@ pip install --user tweek
 ### Protect Your Tools
 ```bash
-tweek install                           # Claude Code (CLI hooks)
+tweek protect                           # Interactive wizard — detects and protects all tools
+tweek protect claude-code               # Claude Code (CLI hooks)
 tweek protect openclaw                  # OpenClaw (HTTP proxy)
-tweek mcp install claude-desktop        # Claude Desktop (MCP proxy)
-tweek mcp install chatgpt-desktop       # ChatGPT Desktop (MCP proxy)
-tweek mcp install gemini                # Gemini CLI (MCP proxy)
+tweek protect claude-desktop            # Claude Desktop (MCP proxy)
+tweek protect chatgpt                   # ChatGPT Desktop (MCP proxy)
+tweek protect gemini                    # Gemini CLI (MCP proxy)
 tweek proxy setup                       # Cursor, Windsurf, Continue.dev (HTTP proxy)
 ```
@@ -75,11 +76,11 @@ That's it. Tweek auto-detects your tools, applies all 259 attack patterns across
 | Client | Integration | Setup |
 |--------|------------|-------|
-| **Claude Code** | CLI hooks (native) | `tweek install` |
+| **Claude Code** | CLI hooks (native) | `tweek protect claude-code` |
 | **OpenClaw** | Proxy wrapping | `tweek protect openclaw` |
-| **Claude Desktop** | MCP proxy | `tweek mcp install claude-desktop` |
-| **ChatGPT Desktop** | MCP proxy | `tweek mcp install chatgpt-desktop` |
-| **Gemini CLI** | MCP proxy | `tweek mcp install gemini` |
+| **Claude Desktop** | MCP proxy | `tweek protect claude-desktop` |
+| **ChatGPT Desktop** | MCP proxy | `tweek protect chatgpt` |
+| **Gemini CLI** | MCP proxy | `tweek protect gemini` |
 | **Cursor** | HTTP proxy | `tweek proxy setup` |
 | **Windsurf** | HTTP proxy | `tweek proxy setup` |
 | **Continue.dev** | HTTP proxy | `tweek proxy setup` |
@@ -109,7 +110,7 @@ Turn 3: cat ~/.ssh/id_rsa → BLOCKED: path_escalation anomaly
 **Response injection** — Malicious instructions hidden in tool responses are caught at ingestion.
-See the full [Attack Patterns Reference](docs/ATTACK_PATTERNS.md) for all 259 patterns across 22 categories.
+See the full [Attack Patterns Reference](docs/ATTACK_PATTERNS.md) for all 259 patterns across 11 categories.
 ---
@@ -117,14 +118,16 @@ See the full [Attack Patterns Reference](docs/ATTACK_PATTERNS.md) for all 259 pa
 Most security tools that use AI send your data to an API. Tweek doesn't.
-Tweek ships with a **custom-trained prompt injection classifier** ([DeBERTa-v3-base](https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2)) that runs entirely on your machine via ONNX Runtime. No API keys. No cloud calls. No data leaves your computer.
+Tweek uses [ProtectAI's DeBERTa-v3-base Prompt Injection v2](https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2) classifier, fine-tuned from [Microsoft's DeBERTa-v3-base](https://huggingface.co/microsoft/deberta-v3-base), running entirely on your machine via [ONNX Runtime](https://onnxruntime.ai). No API keys. No cloud calls. No data leaves your computer.
 | Property | Value |
 |----------|-------|
-| **Model** | DeBERTa-v3-base, fine-tuned for prompt injection |
-| **Runtime** | ONNX (CPU-only, single thread) |
+| **Model** | [ProtectAI DeBERTa-v3-base Prompt Injection v2](https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2) (Apache 2.0) |
+| **Base Model** | [Microsoft DeBERTa-v3-base](https://huggingface.co/microsoft/deberta-v3-base) (MIT) |
+| **Runtime** | ONNX Runtime (CPU-only, single thread) |
 | **Privacy** | 100% on-device — zero network calls |
-| **License** | Apache 2.0 |
+See [NOTICE](./NOTICE) for full third-party license texts and attribution.
 The local model handles the gray-area attacks that pattern matching alone cannot catch — encoded instructions, novel injection techniques, social engineering disguised as legitimate content. High-confidence results are returned instantly. Uncertain results can optionally escalate to a cloud LLM for deeper analysis (you bring your own API key).
@@ -226,4 +229,4 @@ To report a security vulnerability, email security@gettweek.com.
 ## License
-[Apache 2.0](LICENSE)
+[Apache 2.0](LICENSE) | [Third-Party Notices](NOTICE)

{tweek-0.2.1 → tweek-0.3.1}/pyproject.toml RENAMED Viewed

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 [project]
 name = "tweek"
-version = "0.2.1"
+version = "0.3.1"
 description = "Defense-in-depth security for AI coding assistants - protect credentials, code, and system from prompt injection attacks"
 readme = "README.md"
 requires-python = ">=3.9"
@@ -27,6 +27,7 @@ classifiers = [
 ]
 dependencies = [
     "click>=8.0",
+    "pydantic>=2.0",
     "pyyaml>=6.0",
     "rich>=13.0",
     "keyring>=25.0",
@@ -55,6 +56,8 @@ proxy = [
 dev = [
     "pytest>=7.0",
     "pytest-cov>=4.0",
+    "pytest-xdist>=3.5.0",
+    "hypothesis>=6.98.0",
     "black>=23.0",
     "ruff>=0.1.0",
     "twine>=4.0",
@@ -119,7 +122,7 @@ tweek = [
 [tool.pytest.ini_options]
 testpaths = ["tests"]
 python_files = ["test_*.py"]
-addopts = "-v --cov=tweek --cov-report=term-missing"
+addopts = "-v --cov=tweek --cov-report=term-missing --cov-fail-under=65"
 markers = [
     "patterns: Regex pattern matching and prompt injection detection (slow, ~37s)",
     "hooks: Pre/post tool use hook pipeline and path boundary escalation",
@@ -170,3 +173,21 @@ ignore = [
 [tool.ruff.lint.per-file-ignores]
 "tests/**" = ["S101", "S106", "T201"]
 "tweek/hooks/**" = ["T201"]  # Hooks communicate via stdout
+[tool.coverage.run]
+branch = true
+source = ["tweek"]
+omit = [
+    "tweek/sandbox/linux.py",
+    "tweek/skill_template/*",
+]
+[tool.coverage.report]
+fail_under = 65
+show_missing = true
+exclude_lines = [
+    "pragma: no cover",
+    "if TYPE_CHECKING:",
+    "if __name__",
+    "@overload",
+]

{tweek-0.2.1 → tweek-0.3.1}/tests/test_cli.py RENAMED Viewed

@@ -3,7 +3,7 @@
 Tests for Tweek CLI commands.
 Tests coverage of:
-- Install/uninstall commands
+- Protect/unprotect commands
 - License commands
 - Config commands
 - Vault commands
@@ -20,7 +20,7 @@ import sys
 sys.path.insert(0, str(Path(__file__).parent.parent))
-from tweek.cli import main, install, uninstall, update
+from tweek.cli import main, update
 from tweek.licensing import License, Tier
 from tweek._keygen import generate_license_key
@@ -44,17 +44,17 @@ def temp_home(tmp_path):
 class TestInstallCommand:
-    """Tests for the install command."""
+    """Tests for the protect claude-code command (formerly install)."""
     def test_install_global_creates_settings(self, runner, tmp_path):
-        """Test global install creates settings.json."""
+        """Test global protect claude-code creates settings.json."""
         claude_dir = tmp_path / ".claude"
         with patch.object(Path, 'home', return_value=tmp_path):
             with patch('tweek.cli.Path.home', return_value=tmp_path):
                 result = runner.invoke(
                     main,
-                    ['install', '--skip-env-scan'],
+                    ['protect', 'claude-code', '--skip-env-scan'],
                     catch_exceptions=False
                 )
@@ -62,11 +62,11 @@ class TestInstallCommand:
         assert result.exit_code == 0 or "Installation complete" in result.output
     def test_install_project_scope(self, runner, tmp_path):
-        """Test project-scoped install."""
+        """Test project-scoped protect claude-code."""
         with runner.isolated_filesystem(temp_dir=tmp_path):
             result = runner.invoke(
                 main,
-                ['install', '--scope', 'project', '--skip-env-scan']
+                ['protect', 'claude-code', '--scope', 'project', '--skip-env-scan']
             )
             # Check .claude directory was created
@@ -76,21 +76,21 @@ class TestInstallCommand:
                 assert settings.exists() or "Installation complete" in result.output
     def test_install_with_preset(self, runner, tmp_path):
-        """Test install with security preset."""
+        """Test protect claude-code with security preset."""
         with patch.object(Path, 'home', return_value=tmp_path):
             result = runner.invoke(
                 main,
-                ['install', '--preset', 'paranoid', '--skip-env-scan']
+                ['protect', 'claude-code', '--preset', 'paranoid', '--skip-env-scan']
             )
         assert "paranoid" in result.output.lower() or result.exit_code == 0
     def test_install_skip_proxy_check(self, runner, tmp_path):
-        """Test install with --skip-proxy-check skips openclaw detection."""
+        """Test protect claude-code with --skip-proxy-check skips openclaw detection."""
         with patch.object(Path, 'home', return_value=tmp_path):
             result = runner.invoke(
                 main,
-                ['install', '--skip-env-scan', '--skip-proxy-check']
+                ['protect', 'claude-code', '--skip-env-scan', '--skip-proxy-check']
             )
         # Should not mention openclaw
@@ -98,7 +98,7 @@ class TestInstallCommand:
         assert result.exit_code == 0 or "Installation complete" in result.output
     def test_install_detects_openclaw_installed(self, runner, tmp_path):
-        """Test install detects when openclaw is installed."""
+        """Test protect claude-code detects when openclaw is installed."""
         openclaw_status = {
             "installed": True,
             "running": False,
@@ -112,7 +112,7 @@ class TestInstallCommand:
                 with patch('tweek.proxy.detect_proxy_conflicts', return_value=[]):
                     result = runner.invoke(
                         main,
-                        ['install', '--skip-env-scan'],
+                        ['protect', 'claude-code', '--skip-env-scan'],
                         input='n\n'  # Answer 'no' to proxy override prompt
                     )
@@ -120,7 +120,7 @@ class TestInstallCommand:
         assert "openclaw" in result.output.lower() or result.exit_code == 0
     def test_install_detects_openclaw_gateway_running(self, runner, tmp_path):
-        """Test install detects when openclaw gateway is actively running."""
+        """Test protect claude-code detects when openclaw gateway is actively running."""
         openclaw_status = {
             "installed": True,
             "running": True,
@@ -134,7 +134,7 @@ class TestInstallCommand:
                 with patch('tweek.proxy.detect_proxy_conflicts', return_value=[]):
                     result = runner.invoke(
                         main,
-                        ['install', '--skip-env-scan'],
+                        ['protect', 'claude-code', '--skip-env-scan'],
                         input='n\n'  # Answer 'no' to proxy override prompt
                     )
@@ -142,7 +142,7 @@ class TestInstallCommand:
         assert "gateway" in result.output.lower() or "running" in result.output.lower() or result.exit_code == 0
     def test_install_force_proxy_flag(self, runner, tmp_path):
-        """Test install with --force-proxy enables proxy override."""
+        """Test protect claude-code with --force-proxy enables proxy override."""
         openclaw_status = {
             "installed": True,
             "running": True,
@@ -156,7 +156,7 @@ class TestInstallCommand:
                 with patch('tweek.proxy.detect_proxy_conflicts', return_value=[]):
                     result = runner.invoke(
                         main,
-                        ['install', '--skip-env-scan', '--force-proxy']
+                        ['protect', 'claude-code', '--skip-env-scan', '--force-proxy']
                     )
         # Should mention force/override
@@ -179,7 +179,7 @@ class TestInstallCommand:
                 with patch('tweek.proxy.detect_proxy_conflicts', return_value=[]):
                     result = runner.invoke(
                         main,
-                        ['install', '--skip-env-scan', '--force-proxy']
+                        ['protect', 'claude-code', '--skip-env-scan', '--force-proxy']
                     )
         # Check config file was created
@@ -192,7 +192,7 @@ class TestInstallCommand:
             assert config.get("proxy", {}).get("override_openclaw") is True
     def test_install_user_accepts_proxy_override(self, runner, tmp_path):
-        """Test install when user accepts proxy override prompt."""
+        """Test protect claude-code when user accepts proxy override prompt."""
         openclaw_status = {
             "installed": True,
             "running": False,
@@ -206,7 +206,7 @@ class TestInstallCommand:
                 with patch('tweek.proxy.detect_proxy_conflicts', return_value=[]):
                     result = runner.invoke(
                         main,
-                        ['install', '--skip-env-scan'],
+                        ['protect', 'claude-code', '--skip-env-scan'],
                         input='y\n'  # Answer 'yes' to proxy override prompt
                     )
@@ -215,21 +215,21 @@ class TestInstallCommand:
 class TestUninstallCommand:
-    """Tests for the uninstall command."""
+    """Tests for the unprotect command (formerly uninstall)."""
     @patch('tweek.cli.sys')
     def test_uninstall_not_installed(self, mock_sys, runner, tmp_path):
-        """Test uninstall when not installed (project scope, empty directory)."""
+        """Test unprotect when not installed (project scope, empty directory)."""
         mock_sys.stdin.isatty.return_value = True
         mock_sys.stderr = sys.stderr
         with runner.isolated_filesystem(temp_dir=tmp_path):
-            result = runner.invoke(main, ['uninstall', '--confirm'])
+            result = runner.invoke(main, ['unprotect', 'claude-code', '--confirm'])
         assert "No Tweek installation" in result.output or result.exit_code == 0
     @patch('tweek.cli.sys')
     def test_uninstall_removes_hooks(self, mock_sys, runner, tmp_path):
-        """Test uninstall removes Tweek hooks."""
+        """Test unprotect removes Tweek hooks."""
         mock_sys.stdin.isatty.return_value = True
         mock_sys.stderr = sys.stderr
         with runner.isolated_filesystem(temp_dir=tmp_path) as td:
@@ -249,7 +249,7 @@ class TestUninstallCommand:
                 }
             }))
-            result = runner.invoke(main, ['uninstall', '--confirm'])
+            result = runner.invoke(main, ['unprotect', 'claude-code', '--confirm'])
             # Check hooks were removed
             if settings_file.exists():
@@ -450,9 +450,9 @@ class TestCLIHelp:
         assert result.exit_code == 0
         assert "Tweek" in result.output or "security" in result.output.lower()
-    def test_install_help(self, runner):
-        """Test install help message."""
-        result = runner.invoke(main, ['install', '--help'])
+    def test_protect_claude_code_help(self, runner):
+        """Test protect claude-code help message."""
+        result = runner.invoke(main, ['protect', 'claude-code', '--help'])
         assert result.exit_code == 0
         assert "global" in result.output.lower()

{tweek-0.2.1 → tweek-0.3.1}/tests/test_cli_helpers.py RENAMED Viewed

@@ -76,17 +76,17 @@ class TestFormatCommandExample:
     """Tests for format_command_example()."""
     def test_basic_example(self):
-        result = format_command_example("tweek install", "Install globally")
-        assert "tweek install" in result
-        assert "Install globally" in result
+        result = format_command_example("tweek protect claude-code", "Protect Claude Code globally")
+        assert "tweek protect claude-code" in result
+        assert "Protect Claude Code globally" in result
     def test_long_command(self):
         result = format_command_example(
-            "tweek install --scope project --force",
-            "Force install for project"
+            "tweek protect claude-code --scope project --force",
+            "Force protect for project"
         )
-        assert "tweek install --scope project --force" in result
-        assert "Force install for project" in result
+        assert "tweek protect claude-code --scope project --force" in result
+        assert "Force protect for project" in result
 class TestBuildExamplesEpilog:
@@ -94,13 +94,13 @@ class TestBuildExamplesEpilog:
     def test_builds_epilog(self):
         examples = [
-            ("tweek install", "Install globally"),
-            ("tweek install --scope project", "Install for project"),
+            ("tweek protect claude-code", "Protect Claude Code globally"),
+            ("tweek protect claude-code --scope project", "Protect for project"),
         ]
         result = build_examples_epilog(examples)
         assert "Examples:" in result
-        assert "tweek install" in result
-        assert "tweek install --scope project" in result
+        assert "tweek protect claude-code" in result
+        assert "tweek protect claude-code --scope project" in result
         assert result.endswith("\n")
     def test_empty_examples(self):

tweek 0.2.1__tar.gz → 0.3.1__tar.gz

tweek 0.2.1tar.gz → 0.3.1tar.gz