Skip to content

Ludoonus/cc-powerpack

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
.claude-plugin
.claude-plugin
 
 
.github/workflows
.github/workflows
 
 
docs
docs
 
 
hooks
hooks
 
 
tests
tests
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
action.yml
action.yml
 
 
scan.sh
scan.sh
 
 

Repository files navigation

CC Powerpack — Guardrails for Claude Code

tests

Website · MIT · runs 100% locally · no telemetry

AI coding agents don't usually fail by writing malicious code. They fail by running correct commands with unintended blast radius. This plugin gates the dangerous ones at the harness level — before execution, not after.

/plugin marketplace add Ludoonus/cc-powerpack
/plugin install cc-powerpack

What's in the free tier

Hook Catches
secret-scan-push Secrets in outgoing commits before any git push (gitleaks + regex layer + forbidden-file check)
dangerous-cmd-gate rm -rf on dangerous paths, force-push to main, chmod 777, curl | sh, dd of=/dev/*
worktree-protect Agents deleting/staging other sessions' git worktrees; git add -A sweeping up worktree gitlinks

All hooks run locally. No telemetry, no network calls, no servers, no exposed ports.

Install

# via marketplace
/plugin install cc-powerpack

# or manual: clone, then add to ~/.claude/settings.json hooks, or:
claude plugin install ./cc-powerpack
chmod +x hooks/*.sh

Requires: bash, jq. Optional: gitleaks (strongly recommended — the regex layer is a fallback, not a replacement).

How it works

Each script is a PreToolUse hook on the Bash tool. It receives the pending tool call as JSON on stdin, pattern-matches the command, and exits 2 to block with an explanation fed back to the model — so the agent learns why and asks the user instead of retrying.

War stories (why each hook exists)

  1. The .env that almost shippedgit add -A during a "chore: sync" commit staged an untracked .env. Caught in review by luck. Now caught by secret-scan-push every time.
  2. The worktree that wasn't orphaned — an agent "cleaned up" .claude/worktrees/ dirs that looked stale. They were live sessions with uncommitted work.
  3. The variable rmrm -rf "$BUILD_DIR" with $BUILD_DIR unset expands to rm -rf "" ... or worse, /. Gated now.

Pro tier

5 more plugins (token-audit, pr-pipeline, onboard, team-sync + monthly new ones), updated monthly: https://buy.polar.sh/polar_cl_hpobp5A87nRzzgZhAgvxx6LNNkgx3XFARG8Ua1Tmjdt

Use it in CI (GitHub Action)

Scan every PR for secrets and sensitive files, not just local pushes:

# .github/workflows/secret-scan.yml
name: secret-scan
on: [push, pull_request]
jobs:
  scan:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - uses: Ludoonus/cc-powerpack@v0.1.1

License

Free tier: MIT. Use it, fork it, ship it.

About

Safety guardrails for Claude Code agents — PreToolUse hooks that block secret leaks, dangerous commands, and worktree edits. Free + Pro. Local, no telemetry.

ludoonus.github.io/cc-powerpack/

Topics

cli hooks security devtools developer-tools ai-agents claude guardrails secret-scanning llm anthropic claude-code

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 2

v0.1.1 — now also a GitHub Action Latest
Jun 12, 2026
+ 1 release

Packages

 
 
 

Contributors

Languages