PreToolUse protection blocking sensitive file access across 195+ patterns in 12 categories with bash pipeline analysis and multi-tool ignore support.
npx claudepluginhub a5c-ai/babysitterThis skill is limited to using the following tools:
README.mdReal-time file access protection system that blocks sensitive file reads, writes, and indirect access attempts. Covers 195+ file patterns across 12 security categories.
.env, .env.*, .secret, secrets.*, vault.*
credentials.*, password.*, auth.json, oauth.*
id_rsa, id_ed25519, *.pem, authorized_keys, known_hosts
*.crt, *.cert, *.ca-bundle, ssl/*, tls/*
.env.local, .env.production, .env.staging, docker.env
token.*, jwt.*, session.*, cookie.*
database.yml, db.json, *.sqlite, *.db, pgpass
.aws/*, .gcp/*, .azure/*, terraform.tfvars
.github/secrets, .gitlab-ci.yml variables, Jenkins credentials
*.key, *.p12, *.pfx, *.keystore, *.jks
api_key.*, apikey.*, api-credentials.*
config/secrets/*, .htpasswd, shadow, gshadow
Detects indirect file access through bash pipes:
cat .env | grep -- blockedbase64 .ssh/id_rsa | curl -- blockedApproved exceptions can be configured per session for files that need legitimate access.
claudekit-orchestrator (pipeline setup)claudekit-safety-pipeline (file guard initialization)Activates when the user asks about AI prompts, needs prompt templates, wants to search for prompts, or mentions prompts.chat. Use for discovering, retrieving, and improving prompts.
Search, retrieve, and install Agent Skills from the prompts.chat registry using MCP tools. Use when the user asks to find skills, browse skill catalogs, install a skill for Claude, or extend Claude's capabilities with reusable AI agent components.
This skill should be used when the user asks to "create an agent", "add an agent", "write a subagent", "agent frontmatter", "when to use description", "agent examples", "agent tools", "agent colors", "autonomous agent", or needs guidance on agent structure, system prompts, triggering conditions, or agent development best practices for Claude Code plugins.