cc-safe-setup
Listed on Product Hunt since April 21, 2026.
One command to make Claude Code safe for autonomous operation. 897 example hooks · 73+ Anthropic Issues addressed by hook · 218 test files · 30K+ npm downloads (cumulative) · 日本語
npx cc-safe-setup
Installs 8 safety hooks in ~10 seconds. Blocks rm -rf /, prevents pushes to main, catches secret leaks, validates syntax after every edit. Zero npm dependencies. Hooks use jq at runtime (brew install jq / apt install jq).
What's a hook? A checkpoint that runs before Claude executes a command. Like airport security, it inspects what's about to happen and blocks anything dangerous before it reaches the gate.
Doesn't Claude Code already block this? Partly, and that's worth knowing. v2.1.183 (Jun 2026) added an auto-mode guard that refuses destructive git commands (git reset --hard, git clean -fd, git stash drop, …) and terraform/pulumi/cdk destroy when it judges you didn't ask for it — a real, welcome improvement. But it is auto-mode only, scoped to git + IaC, and classifier-based (it infers intent, so it's probabilistic). cc-safe-setup's hooks are deterministic (pattern → exit 2, no inference), fire in every mode, and cover what the built-in guard doesn't: rm -rf, database wipes, secret commits, pushes to main/force-push, scope escapes, cloud/k8s teardown, runaway sub-agents, and false "done" closeouts. They compose — run both.
What problem are you solving today? — routing informed by the 6 readers who actually bought the books on the right column
| Your situation | Start here (free) | Go deeper (¥800-$19) |
|---|
Stop destructive ops (rm -rf, force-push, prod commands) | Live Demo → npx cc-safe-setup | 事故防止本 (¥800) — the 6-buyer entry book |
Claude merged or deployed to production without your approval — gh pr merge --admin bypassed branch protection, or a deploy fired autonomously (#68676) | gh-cli-destructive-guard + deploy-guard — PreToolUse on Bash, refuse gh pr merge / deploy commands at the tool boundary even when --admin overrides server-side branch protection · npx cc-safe-setup | 事故防止本 — JP (¥800) — the irreversible-ops prevention book |
Claude tore down your cloud infrastructure — terraform destroy / aws … terminate-instances / aws s3 rb --force / gcloud … delete / kubectl delete namespace ran under auto-accept and wiped a whole environment, not one file (the PocketOS 9-second production-DB wipe, #27063) — rm-pattern guards miss the infra vocabulary entirely | terraform-guard + aws-production-guard + cloud-cli-guard + k8s-production-guard — PreToolUse on Bash, refuse the teardown verbs at the tool boundary; reads & normal terraform apply pass, and the k8s guard is context-aware (warns only when your kubectl context points at production) · npx cc-safe-setup | 事故防止本 — JP (¥800) — the irreversible-ops prevention book; infra is reproducible, data is not |
'%20stop-opacity%3D'0.16'%2F%3E%3Cstop%20offset%3D'1'%20stop-color%3D'rgb(200%2C90%2C60)'%20stop-opacity%3D'0.03'%2F%3E%3C%2FlinearGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D'320'%20height%3D'200'%20fill%3D'url(%23g)'%2F%3E%3Ccircle%20cx%3D'250'%20cy%3D'56'%20r%3D'92'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.06'%2F%3E%3Ccircle%20cx%3D'64'%20cy%3D'172'%20r%3D'58'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.05'%2F%3E%3C%2Fsvg%3E)
