Serendipity
1a1254f045
CI - 构建、测试和质量检查 / Rust 代码检查 (push) Has been cancelled
CI - 构建、测试和质量检查 / 单元测试 (push) Has been cancelled
CI - 构建、测试和质量检查 / 代码格式检查 (push) Has been cancelled
CI - 构建、测试和质量检查 / Clippy 代码质量检查 (push) Has been cancelled
CI - 构建、测试和质量检查 / 构建可执行文件 (claude_code_rs, macos-latest, x86_64-apple-darwin) (push) Has been cancelled
CI - 构建、测试和质量检查 / 构建可执行文件 (claude_code_rs, ubuntu-latest, x86_64-unknown-linux-gnu) (push) Has been cancelled
CI - 构建、测试和质量检查 / 构建可执行文件 (claude_code_rs.exe, windows-latest, x86_64-pc-windows-msvc) (push) Has been cancelled
- 添加 Rust GUI 桌面应用程序入口点 - 添加 TypeScript/JavaScript 项目基础结构文件 - 包含组件、工具、命令、服务和工具定义 - 添加配置文件如 .gitignore、.gitattributes 和 LICENSE - 包含图片资源和演示文件 - 为各种功能模块添加占位符和类型定义
66 lines
2.2 KiB
Bash
66 lines
2.2 KiB
Bash
#!/bin/bash
|
|
# Example hook that reads plugin settings from .claude/my-plugin.local.md
|
|
# Demonstrates the complete pattern for settings-driven hook behavior
|
|
|
|
set -euo pipefail
|
|
|
|
# Define settings file path
|
|
SETTINGS_FILE=".claude/my-plugin.local.md"
|
|
|
|
# Quick exit if settings file doesn't exist
|
|
if [[ ! -f "$SETTINGS_FILE" ]]; then
|
|
# Plugin not configured - use defaults or skip
|
|
exit 0
|
|
fi
|
|
|
|
# Parse YAML frontmatter (everything between --- markers)
|
|
FRONTMATTER=$(sed -n '/^---$/,/^---$/{ /^---$/d; p; }' "$SETTINGS_FILE")
|
|
|
|
# Extract configuration fields
|
|
ENABLED=$(echo "$FRONTMATTER" | grep '^enabled:' | sed 's/enabled: *//' | sed 's/^"\(.*\)"$/\1/')
|
|
STRICT_MODE=$(echo "$FRONTMATTER" | grep '^strict_mode:' | sed 's/strict_mode: *//' | sed 's/^"\(.*\)"$/\1/')
|
|
MAX_SIZE=$(echo "$FRONTMATTER" | grep '^max_file_size:' | sed 's/max_file_size: *//')
|
|
|
|
# Quick exit if disabled
|
|
if [[ "$ENABLED" != "true" ]]; then
|
|
exit 0
|
|
fi
|
|
|
|
# Read hook input
|
|
input=$(cat)
|
|
file_path=$(echo "$input" | jq -r '.tool_input.file_path // empty')
|
|
|
|
# Apply configured validation
|
|
if [[ "$STRICT_MODE" == "true" ]]; then
|
|
# Strict mode: apply all checks
|
|
if [[ "$file_path" == *".."* ]]; then
|
|
echo '{"hookSpecificOutput": {"permissionDecision": "deny"}, "systemMessage": "Path traversal blocked (strict mode)"}' >&2
|
|
exit 2
|
|
fi
|
|
|
|
if [[ "$file_path" == *".env"* ]] || [[ "$file_path" == *"secret"* ]]; then
|
|
echo '{"hookSpecificOutput": {"permissionDecision": "deny"}, "systemMessage": "Sensitive file blocked (strict mode)"}' >&2
|
|
exit 2
|
|
fi
|
|
else
|
|
# Standard mode: basic checks only
|
|
if [[ "$file_path" == "/etc/"* ]] || [[ "$file_path" == "/sys/"* ]]; then
|
|
echo '{"hookSpecificOutput": {"permissionDecision": "deny"}, "systemMessage": "System path blocked"}' >&2
|
|
exit 2
|
|
fi
|
|
fi
|
|
|
|
# Check file size if configured
|
|
if [[ -n "$MAX_SIZE" ]] && [[ "$MAX_SIZE" =~ ^[0-9]+$ ]]; then
|
|
content=$(echo "$input" | jq -r '.tool_input.content // empty')
|
|
content_size=${#content}
|
|
|
|
if [[ $content_size -gt $MAX_SIZE ]]; then
|
|
echo '{"hookSpecificOutput": {"permissionDecision": "deny"}, "systemMessage": "File exceeds configured max size: '"$MAX_SIZE"' bytes"}' >&2
|
|
exit 2
|
|
fi
|
|
fi
|
|
|
|
# All checks passed
|
|
exit 0
|