🚀 Socket Launch Week Day 5:Introducing Repository Access Permissions and Custom Roles.Learn more →
@filepad/claude-code-hooks
Advanced tools
@filepad/claude-code-hooks - npm Package Compare versions
+21
| MIT License | ||
| Copyright (c) 2026 Filepad | ||
| Permission is hereby granted, free of charge, to any person obtaining a copy | ||
| of this software and associated documentation files (the "Software"), to deal | ||
| in the Software without restriction, including without limitation the rights | ||
| to use, copy, modify, merge, publish, distribute, sublicense, and/or sell | ||
| copies of the Software, and to permit persons to whom the Software is | ||
| furnished to do so, subject to the following conditions: | ||
| The above copyright notice and this permission notice shall be included in all | ||
| copies or substantial portions of the Software. | ||
| THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR | ||
| IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, | ||
| FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE | ||
| AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER | ||
| LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, | ||
| OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE | ||
| SOFTWARE. |
+27
| # @filepad/claude-code-hooks | ||
| Claude Code hook adapter for Filepad Agent Access. | ||
| This package is runtime-specific. It is only installed by Claude Code pairing | ||
| profiles and should not be used for Codex, OpenClaw, Cursor, Windsurf, or | ||
| generic MCP hosts. | ||
| ## Usage | ||
| The normal path is to run the Filepad pairing command generated by the app: | ||
| ```bash | ||
| npx -y @filepad/agent-connect@latest pair <PAIRING_CODE> --runtime claude-code --base-url https://api.filepad.ai | ||
| ``` | ||
| `agent-connect` writes Claude Code hook settings that call this adapter through | ||
| the command supplied by Filepad's Claude Code runtime profile. | ||
| ## Direct Diagnostics | ||
| ```bash | ||
| npx -y @filepad/claude-code-hooks@latest --help | ||
| ``` | ||
| The hook adapter reads credentials from `FILEPAD_HOOKS_CREDENTIALS_PATH`, which | ||
| is written by `@filepad/agent-connect` during pairing. |
+16
| # Security Policy | ||
| Email security reports to `security@filepad.ai`. | ||
| Do not open a public issue for vulnerabilities involving Agent Access secrets, | ||
| hook credentials, request signing, workspace data exposure, or MCP tool | ||
| permission bypasses. | ||
| Include: | ||
| - affected package and version | ||
| - affected hook event or API/tool/resource | ||
| - reproduction steps | ||
| - expected impact | ||
| Rotate any Agent Access key whose secret or hook credentials file was exposed. |
@@ -41,4 +41,4 @@ // FILE MEMO: Enforcement mode resolution for Filepad agent hooks. | ||
| } | ||
| return 'Filepad backend unreachable — failing open (enforcement mode: warn).'; | ||
| return 'Filepad backend unreachable — failing open because enforcement is not in block mode.'; | ||
| } | ||
| //# sourceMappingURL=enforcement.js.map |
@@ -1,1 +0,1 @@ | ||
| {"version":3,"file":"enforcement.js","sourceRoot":"","sources":["../src/enforcement.ts"],"names":[],"mappings":"AAAA,kEAAkE;AAClE,6EAA6E;AAC7E,6EAA6E;AAC7E,EAAE;AACF,kEAAkE;AAClE,qEAAqE;AAKrE,MAAM,WAAW,GAAwB,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,SAAS,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;AACtF,MAAM,sBAAsB,GAAwB,IAAI,GAAG,CAAC,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC;AAE/E;;;GAGG;AACH,MAAM,UAAU,sBAAsB,CACpC,WAAgD;IAEhD,MAAM,GAAG,GAAG,WAAW,IAAI,OAAO,CAAC,GAAG,CAAC;IACvC,MAAM,GAAG,GAAG,GAAG,CAAC,+BAA+B,CAAC,CAAC;IACjD,IAAI,GAAG,IAAI,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC;QAAE,OAAO,GAAsB,CAAC;IAC/D,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,oBAAoB,CAClC,WAAgD;IAEhD,MAAM,GAAG,GAAG,WAAW,IAAI,OAAO,CAAC,GAAG,CAAC;IACvC,MAAM,GAAG,GAAG,GAAG,CAAC,6BAA6B,CAAC,CAAC;IAC/C,IAAI,GAAG,IAAI,sBAAsB,CAAC,GAAG,CAAC,GAAG,CAAC;QAAE,OAAO,GAAoB,CAAC;IACxE,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,iBAAiB,CAAC,OAAgB;IAChD,IAAI,OAAO,EAAE,CAAC;QACZ,OAAO,yHAAyH,CAAC;IACnI,CAAC;IACD,OAAO,sEAAsE,CAAC;AAChF,CAAC"} | ||
| {"version":3,"file":"enforcement.js","sourceRoot":"","sources":["../src/enforcement.ts"],"names":[],"mappings":"AAAA,kEAAkE;AAClE,6EAA6E;AAC7E,6EAA6E;AAC7E,EAAE;AACF,kEAAkE;AAClE,qEAAqE;AAKrE,MAAM,WAAW,GAAwB,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,SAAS,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;AACtF,MAAM,sBAAsB,GAAwB,IAAI,GAAG,CAAC,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC;AAE/E;;;GAGG;AACH,MAAM,UAAU,sBAAsB,CACpC,WAAgD;IAEhD,MAAM,GAAG,GAAG,WAAW,IAAI,OAAO,CAAC,GAAG,CAAC;IACvC,MAAM,GAAG,GAAG,GAAG,CAAC,+BAA+B,CAAC,CAAC;IACjD,IAAI,GAAG,IAAI,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC;QAAE,OAAO,GAAsB,CAAC;IAC/D,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,oBAAoB,CAClC,WAAgD;IAEhD,MAAM,GAAG,GAAG,WAAW,IAAI,OAAO,CAAC,GAAG,CAAC;IACvC,MAAM,GAAG,GAAG,GAAG,CAAC,6BAA6B,CAAC,CAAC;IAC/C,IAAI,GAAG,IAAI,sBAAsB,CAAC,GAAG,CAAC,GAAG,CAAC;QAAE,OAAO,GAAoB,CAAC;IACxE,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,iBAAiB,CAAC,OAAgB;IAChD,IAAI,OAAO,EAAE,CAAC;QACZ,OAAO,yHAAyH,CAAC;IACnI,CAAC;IACD,OAAO,sFAAsF,CAAC;AAChG,CAAC"} |
+21
-10
| { | ||
| "name": "@filepad/claude-code-hooks", | ||
| "version": "0.1.0", | ||
| "version": "0.1.1", | ||
| "description": "Filepad Claude Code hook adapter — PreToolUse/PostToolUse/Stop hooks for live contract enforcement.", | ||
@@ -14,2 +14,3 @@ "type": "module", | ||
| "README.md", | ||
| "SECURITY.md", | ||
| "LICENSE" | ||
@@ -27,2 +28,10 @@ ], | ||
| }, | ||
| "scripts": { | ||
| "prebuild": "pnpm -C ../agent-access-sdk build", | ||
| "pretest": "pnpm -C ../agent-access-sdk build", | ||
| "build": "tsc -p tsconfig.build.json", | ||
| "typecheck": "tsc -p tsconfig.json --noEmit", | ||
| "test": "vitest run", | ||
| "pack:check": "node ../../scripts/ci/check-package-pack.mjs" | ||
| }, | ||
| "keywords": [ | ||
@@ -37,2 +46,11 @@ "filepad", | ||
| "license": "MIT", | ||
| "repository": { | ||
| "type": "git", | ||
| "url": "git+https://github.com/filepad/agent-access.git", | ||
| "directory": "packages/claude-code-hooks" | ||
| }, | ||
| "bugs": { | ||
| "url": "https://github.com/filepad/agent-access/issues" | ||
| }, | ||
| "homepage": "https://github.com/filepad/agent-access#readme", | ||
| "engines": { | ||
@@ -45,3 +63,3 @@ "node": ">=18.0.0" | ||
| "dependencies": { | ||
| "@filepad/agent-access-sdk": "^0.1.4" | ||
| "@filepad/agent-access-sdk": "^0.1.5" | ||
| }, | ||
@@ -51,10 +69,3 @@ "devDependencies": { | ||
| "vitest": "^4.1.2" | ||
| }, | ||
| "scripts": { | ||
| "prebuild": "pnpm -C ../agent-access-sdk build", | ||
| "pretest": "pnpm -C ../agent-access-sdk build", | ||
| "build": "tsc -p tsconfig.build.json", | ||
| "typecheck": "tsc -p tsconfig.json --noEmit", | ||
| "test": "vitest run" | ||
| } | ||
| } | ||
| } |
Fixed alerts
No README
QualityPackage does not have a README. This may indicate a failed publish or a low quality package.
No bug tracker
MaintenancePackage does not have a linked bug tracker in package.json.
No repository
Supply chain riskPackage does not have a linked source code repository. Without this field, a package will have no reference to the location of the source code use to generate the package.
No website
QualityPackage does not have a website.
Improved metrics
- Total package byte prevSize
95085
2.96%- Number of package files
64
4.92%- Number of low maintenance alerts
0
-100%- Number of low quality alerts
1
-50%- Number of medium quality alerts
0
-100%- Number of lines in readme file
28
Infinity%- Number of low supply chain risk alerts
8
-11.11%