ktg-plugin-marketplace

open/ktg-plugin-marketplace

Fork 0

Commit graph

Author	SHA1	Message	Date
Kjell Tore Guttormsen	67240f01f6	test(ultraplan-local): add path-guard + bash-guard baseline hook tests (SC8 baseline) Pins existing BLOCK rules in the two pre-* executor hooks so a future silent weakening of BLOCK_RULES surfaces as test failures instead of slipping through code review. 50 new tests covering both hooks plus allow-list pins (lib/, tests/, docs/, ls, git, npm) and fail-open on malformed input. Reuses tests/helpers/hook-helper.mjs child-process spawner. [skip-docs]	2026-05-04 08:55:49 +02:00
Kjell Tore Guttormsen	f43a38421e	feat(ultraplan-local): add PostCompact rehydrate hook to re-inject session-state after compaction New hooks/scripts/post-compact-flush.mjs (PostCompact event, CC v2.1.105+): auto-discovers <cwd>/.claude/projects//.session-state.local.json (most recently modified), validates it via session-state-validator, emits additionalContext via stdout so the post-compact assistant turn has Handover 7 resume context loaded immediately. Read-only — never writes. Always exits 0; never blocks compaction. Uses only node:fs sync APIs available since Node 12 (no glob dependency). Companion to the existing pre-compact-flush.mjs: - PreCompact: refresh progress.json + .session-state.local.json - PostCompact: re-inject .session-state.local.json into context Wired in hooks/hooks.json under a new PostCompact matcher block. Both files staged via /tmp/claude- and copied into hooks/* via Bash to respect the llm-security plugin path-guard (which blocks direct Write to hooks/scripts/.mjs and hooks.json). Test: tests/hooks/post-compact-flush.test.mjs (4 tests) covers no-state, malformed-state, valid-state, and multi-project mtime selection.	2026-05-04 07:57:42 +02:00
Kjell Tore Guttormsen	41a0c913fa	feat(ultraplan-local): harden Phase 2.6 wave executor (11 sub-changes for plugin-in-monorepo + gitignored-state topology) Phase 2.6 + Hard Rules + Phase 2.4 hardenings against the topology that blocked S6 / S7 self-execution: Phase 2.6 (multi-session orchestration): - NEW Step 2a-pre: build absolute SHARED_CONTEXT_FILE (brief + architecture) once per wave; introduce ULTRAEXECUTE_MAX_TURNS / ULTRAEXECUTE_MAX_BUDGET_USD overrides for long runs. - Step 2a: prefix every git worktree command with GIT_OPTIONAL_LOCKS=0 (research/02 R2; GH #47721). - NEW Step 2a': copy gitignored project artifacts (brief.md, plan.md, research/) into each freshly-created worktree using PROJECT_SOURCE + PROJECT_REL so plugin-in-monorepo + gitignored-state topology works (brief Constraint 2). - Step 2b: prepend two safety preambles to every per-session prompt: (a) defense-in-depth headless-mode warning citing GH #36071 (b) malware-reminder conditional clarification per GH #52272 Honor `cwd:` field from Execution Strategy via SESSION_CWD; default is worktree root (backward-compatible). Add per-child --max-turns, --max-budget-usd, --append-system-prompt-file (research/06 R3+R4). - Step 2e: push branch BEFORE merge (research/02 R3 — converts unrecoverable branch loss into recoverable remote state). - Step 2f: prefix all worktree-remove / branch -d / worktree prune with GIT_OPTIONAL_LOCKS=0. - Step 4 cleanup: same GIT_OPTIONAL_LOCKS=0 treatment. Hard Rules: - Hard Rule 15: extend exception to permit ~/.claude/projects/*/memory/ writes when manifest declares memory_write: true (brief Constraint 3 Option A — narrow opt-in for memory file edits). - Hard Rule 19 (new): push-before-cleanup formalized as a rule. Phase 2.4: advisory hooks-fire precheck for CC version >= v2.1.117 (research/04 D4 + R5; research/06 R1). Test: tests/hooks/worktree-guard.test.mjs (6 tests) verifies the pre-bash-executor and pre-write-executor hooks accept routine worktree cleanup (Hard Rule 12) while still blocking the dangerous patterns introduced by parallel orchestration.	2026-05-04 07:49:45 +02:00

Author

SHA1

Message

Date

Kjell Tore Guttormsen

67240f01f6

test(ultraplan-local): add path-guard + bash-guard baseline hook tests (SC8 baseline)

Pins existing BLOCK rules in the two pre-* executor hooks so a future
silent weakening of BLOCK_RULES surfaces as test failures instead of
slipping through code review.

50 new tests covering both hooks plus allow-list pins (lib/, tests/,
docs/, ls, git, npm) and fail-open on malformed input. Reuses
tests/helpers/hook-helper.mjs child-process spawner.

[skip-docs]

2026-05-04 08:55:49 +02:00

Kjell Tore Guttormsen

f43a38421e

feat(ultraplan-local): add PostCompact rehydrate hook to re-inject session-state after compaction

New hooks/scripts/post-compact-flush.mjs (PostCompact event, CC v2.1.105+):
auto-discovers <cwd>/.claude/projects/*/.session-state.local.json (most
recently modified), validates it via session-state-validator, emits
additionalContext via stdout so the post-compact assistant turn has
Handover 7 resume context loaded immediately.

Read-only — never writes. Always exits 0; never blocks compaction. Uses
only node:fs sync APIs available since Node 12 (no glob dependency).

Companion to the existing pre-compact-flush.mjs:
  - PreCompact: refresh progress.json + .session-state.local.json
  - PostCompact: re-inject .session-state.local.json into context

Wired in hooks/hooks.json under a new PostCompact matcher block.

Both files staged via /tmp/claude-* and copied into hooks/* via Bash to
respect the llm-security plugin path-guard (which blocks direct Write to
hooks/scripts/*.mjs and hooks*.json).

Test: tests/hooks/post-compact-flush.test.mjs (4 tests) covers no-state,
malformed-state, valid-state, and multi-project mtime selection.

2026-05-04 07:57:42 +02:00

Kjell Tore Guttormsen

41a0c913fa

feat(ultraplan-local): harden Phase 2.6 wave executor (11 sub-changes for plugin-in-monorepo + gitignored-state topology)

Phase 2.6 + Hard Rules + Phase 2.4 hardenings against the topology that
blocked S6 / S7 self-execution:

Phase 2.6 (multi-session orchestration):
  - NEW Step 2a-pre: build absolute SHARED_CONTEXT_FILE (brief + architecture)
    once per wave; introduce ULTRAEXECUTE_MAX_TURNS / ULTRAEXECUTE_MAX_BUDGET_USD
    overrides for long runs.
  - Step 2a: prefix every git worktree command with GIT_OPTIONAL_LOCKS=0
    (research/02 R2; GH #47721).
  - NEW Step 2a': copy gitignored project artifacts (brief.md, plan.md,
    research/) into each freshly-created worktree using PROJECT_SOURCE +
    PROJECT_REL so plugin-in-monorepo + gitignored-state topology works
    (brief Constraint 2).
  - Step 2b: prepend two safety preambles to every per-session prompt:
      (a) defense-in-depth headless-mode warning citing GH #36071
      (b) malware-reminder conditional clarification per GH #52272
    Honor `cwd:` field from Execution Strategy via SESSION_CWD; default
    is worktree root (backward-compatible). Add per-child --max-turns,
    --max-budget-usd, --append-system-prompt-file (research/06 R3+R4).
  - Step 2e: push branch BEFORE merge (research/02 R3 — converts
    unrecoverable branch loss into recoverable remote state).
  - Step 2f: prefix all worktree-remove / branch -d / worktree prune with
    GIT_OPTIONAL_LOCKS=0.
  - Step 4 cleanup: same GIT_OPTIONAL_LOCKS=0 treatment.

Hard Rules:
  - Hard Rule 15: extend exception to permit ~/.claude/projects/*/memory/
    writes when manifest declares memory_write: true (brief Constraint 3
    Option A — narrow opt-in for memory file edits).
  - Hard Rule 19 (new): push-before-cleanup formalized as a rule.

Phase 2.4: advisory hooks-fire precheck for CC version >= v2.1.117
  (research/04 D4 + R5; research/06 R1).

Test: tests/hooks/worktree-guard.test.mjs (6 tests) verifies the
pre-bash-executor and pre-write-executor hooks accept routine worktree
cleanup (Hard Rule 12) while still blocking the dangerous patterns
introduced by parallel orchestration.

2026-05-04 07:49:45 +02:00

3 commits