PR Custody

Add HardStop — pre-execution command safety plugin

@frmorettochecks…master → master5 files · +1645 −0updated 4mo ago

loading diff…

▸Description

What this adds

HardStop — a pre-execution safety layer that blocks dangerous shell commands and credential file reads before they run.

How it differs from security-guidance

Feature	security-guidance	hardstop
Scope	Warns about security issues in code being written	Blocks dangerous commands being executed
Hook target	`Edit\|Write\|MultiEdit`	`Bash\|PowerShell\|Read`
Method	Prompt-based reminder	428 regex patterns + LLM semantic analysis
Action	Warns (allows)	Blocks (denies execution)
Fail mode	N/A	Fail-closed (blocks when uncertain)

What it catches

Destructive commands (rm -rf /, dd if=/dev/zero, mkfs.ext4)
Infrastructure teardown (terraform destroy, kubectl delete namespace production)
Credential theft (cat ~/.ssh/id_rsa, env | grep secret)
Prompt injection attempts (commands disguised as safe operations)
Obfuscated attacks (base64-encoded, variable-split, shell-wrapped)
Credential file reads (.env, .aws/credentials, SSH keys)

Links

GitHub: https://github.com/frmoretto/hardstop
npm patterns: https://www.npmjs.com/package/hardstop-patterns
Tests: 88 pytest tests (hooks) + 679 vitest tests (patterns)
License: CC-BY-4.0

Checklist

Addresses a real use case (pre-execution command safety)
Doesn't duplicate existing functionality (security-guidance covers code writing, not command execution)
Follows the template structure (.claude-plugin/plugin.json + hooks/)
Has been tested (88 + 679 tests)