Skill

session-hardening

Hardens production agent sessions with pretool guards blocking rm -rf, data exfiltration, unsafe publishes; continuous QA running tests every N file writes; git state and focus context injection. Auto-activates via hooks.

Git

Node

npx claudepluginhub 0xnyk/lacp --plugin lacp-hardening

Tool Access

This skill uses the workspace's default tool permissions.

Preview

This plugin provides three layers of production hardening:

SKILL.md

Similar Skills

skill-lookup

159.9k

Searches, retrieves, and installs Agent Skills from prompts.chat registry using MCP tools like search_skills and get_skill. Activates for finding skills, browsing catalogs, or extending Claude.

prompts.chat

prompt-lookup

159.9k

Searches prompts.chat for AI prompt templates by keyword or category, retrieves by ID with variable handling, and improves prompts via AI. Use for discovering or enhancing prompts.

prompts.chat

next-compile

139.2k

Checks Next.js compilation errors using a running Turbopack dev server after code edits. Fixes actionable issues before reporting complete. Replaces `next build`.

1 file

vercel-next-js-2

Stats

Parent Repo Stars179

Parent Repo Forks21

Last CommitApr 9, 2026

Actions

View Source View Plugin View on GitHub View README

Session Hardening

This plugin provides three layers of production hardening:

Pretool Guard (PreToolUse)

Blocks dangerous operations before they execute:

rm -rf → suggests trash instead
Co-author injection in commits
npm/cargo/pip publish without approval
curl | python/node download-first patterns
chmod 777 → suggests specific masks
git reset --hard, git clean -f
Data exfiltration via curl --data @.env
Push to main on public repos

Continuous QA (PostToolUse)

Runs your project's test command at configurable intervals during work:

Detects test command from package.json, Makefile, Cargo.toml, pyproject.toml
Fires every N file writes (default: 10)
Injects failure feedback without blocking
Includes thinking prompt on failure (think mode)

Session Context (SessionStart)

Injects at every session start:

Git branch, recent commits, modified files
Focus brief (current problem, beliefs, decisions)
Handoff artifact from previous session
System health score
Self-Memory System context

Configuration

Env Var	Default	Purpose
`LACP_EVAL_CHECKPOINT_ENABLED`	`0`	Enable continuous QA
`LACP_EVAL_CHECKPOINT_INTERVAL`	`10`	Test every N writes
`LACP_CONTEXT_MODE`	``	Active mode (tdd, debugging, sprint, etc.)