marketing-shibata50/claude-code-ultimate-guide
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
claude-code-ultimate-guide/examples/hooks/bash
History
Florian BRUNIAUX 34b2ca7200 feat(security): add security hardening guide and hooks v3.6.0 
- Add guide/security-hardening.md (~10K) covering:
  - MCP vetting workflow with CVE-2025-53109/53110, 54135, 54136
  - Prompt injection evasion techniques (Unicode, ANSI, null bytes)
  - Secret detection tool comparison (Gitleaks, TruffleHog, GitGuardian)
  - Incident response procedures

- Add 3 new security hooks:
  - unicode-injection-scanner.sh: zero-width, RTL, ANSI escape detection
  - repo-integrity-scanner.sh: scan README/package.json for injection
  - mcp-config-integrity.sh: verify MCP config hash

- Update existing hooks:
  - prompt-injection-detector.sh: +ANSI, +null bytes, +nested cmd
  - output-secrets-scanner.sh: +env leakage, +generic tokens

- Update cross-references in ultimate-guide.md (§7.4, §8.6)
- Move MCP Security Hardening to Done in IDEAS.md

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-15 07:39:53 +01:00
..
auto-format.sh feat: add Learning Paths, examples, and project governance files 2026-01-10 14:25:22 +01:00
claudemd-scanner.sh feat(docs): add LLM Handbook + Google Whitepaper integration v3.3.0 2026-01-14 21:00:49 +01:00
dangerous-actions-blocker.sh feat(examples): add production-ready commands, hooks, and comprehensive documentation 2026-01-10 17:30:30 +01:00
mcp-config-integrity.sh feat(security): add security hardening guide and hooks v3.6.0 2026-01-15 07:39:53 +01:00
notification.sh feat(examples): add production-ready commands, hooks, and comprehensive documentation 2026-01-10 17:30:30 +01:00
output-secrets-scanner.sh feat(security): add security hardening guide and hooks v3.6.0 2026-01-15 07:39:53 +01:00
output-validator.sh feat(docs): add LLM Handbook + Google Whitepaper integration v3.3.0 2026-01-14 21:00:49 +01:00
pre-commit-evaluator.sh feat(docs): add LLM Handbook + Google Whitepaper integration v3.3.0 2026-01-14 21:00:49 +01:00
privacy-warning.sh feat(docs): add comprehensive data privacy documentation v3.2.0 2026-01-14 20:42:19 +01:00
prompt-injection-detector.sh feat(security): add security hardening guide and hooks v3.6.0 2026-01-15 07:39:53 +01:00
repo-integrity-scanner.sh feat(security): add security hardening guide and hooks v3.6.0 2026-01-15 07:39:53 +01:00
security-check.sh feat: add Learning Paths, examples, and project governance files 2026-01-10 14:25:22 +01:00
session-logger.sh feat(docs): add LLM Handbook + Google Whitepaper integration v3.3.0 2026-01-14 21:00:49 +01:00
unicode-injection-scanner.sh feat(security): add security hardening guide and hooks v3.6.0 2026-01-15 07:39:53 +01:00