logic855
/
claude-mods
kopia lustrzana https://github.com/0xDarkMatter/claude-mods.git


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596
							#!/bin/bash
# hooks/pre-install-scan.sh
# PreToolUse hook — surfaces supply-chain hygiene before a dependency install runs.
# Matcher: Bash
#
# The 2026 worm campaign (Shai-Hulud / Mini Shai-Hulud) executes via package
# lifecycle scripts (postinstall, sdist setup.py) the moment you install, and
# poisons brand-new releases that are pulled before any advisory exists. This hook
# recognises install/add verbs and reminds you to scan + respect the release-age
# cooldown, routing through the Socket CLI when available.
#
# Configuration in .claude/settings.json:
# {
#   "hooks": {
#     "PreToolUse": [{
#       "matcher": "Bash",
#       "hooks": ["bash hooks/pre-install-scan.sh $TOOL_INPUT"]
#     }]
#   }
# }
#
# Behaviour:
#   Default          → ADVISORY. Prints guidance, exits 0 (command proceeds).
#   SUPPLY_CHAIN_BLOCK=1 → HARD GATE. Exits 2 (command blocked) so you scan first.
#
# Exit codes:
#   0 = allow (not an install, already wrapped, or advisory mode)
#   2 = block with message (install verb matched AND SUPPLY_CHAIN_BLOCK=1)

INPUT="$1"
# Modern Claude Code delivers the tool call as JSON on stdin
# ({"tool_input":{"command":"..."}}); older configs pass it as $TOOL_INPUT/$1.
# Support both so the hook works regardless of harness version.
if [[ -z "$INPUT" && ! -t 0 ]]; then
  RAW="$(cat 2>/dev/null)"
  if [[ -n "$RAW" ]] && command -v jq >/dev/null 2>&1; then
    INPUT="$(printf '%s' "$RAW" | jq -r '.tool_input.command // .tool_input // empty' 2>/dev/null)"
  fi
  [[ -z "$INPUT" ]] && INPUT="$RAW"
fi
[[ -z "$INPUT" ]] && exit 0

# Already routed through the behavioural scanner — let it through silently.
echo "$INPUT" | grep -qE '\bsocket\s+(npm|npx|scan|ci|package)\b' && exit 0

# Lockfile-pinned installs are the safer path we recommend — don't nag them.
echo "$INPUT" | grep -qE '\bnpm\s+ci\b|--frozen-lockfile|--locked\b' && exit 0

# ─── Recognise ecosystem install/add verbs ─────────────────────────────────
ECO=""
SAFE=""
if   echo "$INPUT" | grep -qE '\b(npm|pnpm)\s+(install|i|add)\b'; then
  ECO="npm";  SAFE="socket npm install <pkg>   # or: socket wrapper on"
elif echo "$INPUT" | grep -qE '\byarn\s+(add|install)\b'; then
  ECO="npm";  SAFE="socket npm install <pkg>   # yarn has no socket wrapper"
elif echo "$INPUT" | grep -qE '\bbun\s+(add|install)\b'; then
  ECO="npm";  SAFE="socket scan create .       # bun has no socket wrapper"
elif echo "$INPUT" | grep -qE '\b(pip|pip3)\s+install\b'; then
  ECO="pypi"; SAFE="socket scan create .       # no socket pip wrapper exists"
elif echo "$INPUT" | grep -qE '\buv\s+(add|pip\s+install)\b'; then
  ECO="pypi"; SAFE="socket scan create .       # scan the manifest after uv add"
elif echo "$INPUT" | grep -qE '\bpoetry\s+add\b'; then
  ECO="pypi"; SAFE="socket scan create ."
elif echo "$INPUT" | grep -qE '\bcomposer\s+(require|install|update)\b'; then
  ECO="composer"; SAFE="socket scan create .   # composer update re-resolves tags — tag-rewrite risk (Laravel-Lang)"
elif echo "$INPUT" | grep -qE '\bgem\s+install\b'; then
  ECO="rubygems"; SAFE="socket scan create ."
elif echo "$INPUT" | grep -qE '\bcargo\s+(add|install)\b'; then
  ECO="cargo"; SAFE="socket scan create ."
else
  exit 0
fi

# ─── Compose the advisory ──────────────────────────────────────────────────
HAS_SOCKET=0; command -v socket >/dev/null 2>&1 && HAS_SOCKET=1

echo "SUPPLY CHAIN: dependency install detected (${ECO})."
echo "Lifecycle scripts run on install — the 2026 worm vector. Before proceeding:"
echo "  1. Behavioural scan (not just npm audit / pip-audit — those miss fresh malware)."
echo "  2. Respect the 7-day release-age cooldown for anything that hits prod/CI."
if [[ "$HAS_SOCKET" -eq 1 ]]; then
  echo "  Route it through Socket:  ${SAFE}"
else
  echo "  Socket CLI not installed (free):  npm install -g socket"
  echo "  Or add depscore MCP (no key):  claude mcp add --transport http socket-mcp https://mcp.socket.dev/"
fi
echo "  Cooldown check:  bash skills/supply-chain-defense/scripts/preinstall-check.sh <pkg>"

if [[ "${SUPPLY_CHAIN_BLOCK:-0}" == "1" ]]; then
  echo ""
  echo "Blocked (SUPPLY_CHAIN_BLOCK=1). Scan the package, then re-run via the Socket"
  echo "wrapper or unset SUPPLY_CHAIN_BLOCK after you've confirmed it's safe."
  exit 2
fi

exit 0