Skill

careful

Safety guardrails for destructive commands. Warns before rm -rf, DROP TABLE, force-push, git reset --hard, kubectl delete, and similar destructive operations. User can override each warning. Use when touching prod, debugging live systems, or working in a shared environment. Use when asked to "be careful", "safety mode", "prod mode", or "careful mode". (gstack)

npx claudepluginhub yashs33244/my-mac-claude --plugin gstack

Tool Access

This skill is limited to using the following tools:

BashRead

Preview

Supporting Assets

SKILL.md.tmplbin/check-careful.sh

SKILL.md

Similar Skills

safe-mode

2.0k

Prevents destructive ops in Claude Code via /safe-mode: cautious warns on rm -rf/SQL drops/git force-push; lockdown restricts edits to one dir; clear resets.

pro-workflow

Safety Guard — Prevent Destructive Operations

149

Blocks destructive commands like rm -rf, git --force, DROP TABLE, docker prune, and restricts file edits to specified directories. Use on production systems and with autonomous agents.

awesome-claude-notes

safety-guard

172.9k

Blocks destructive commands like rm -rf, git force-push, kubectl delete on production systems and autonomous agents. Locks file edits to specific directories.

everything-claude-code

Stats

Stars0

Forks0

Last CommitMay 5, 2026

Used By5 plugins

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

careful

/careful — Destructive Command Guardrails

Safety mode is now active. Every bash command will be checked for destructive patterns before running. If a destructive command is detected, you'll be warned and can choose to proceed or cancel.

mkdir -p ~/.gstack/analytics echo '{"skill":"careful","ts":"'$(date -u +%Y-%m-%dT%H:%M:%SZ)'","repo":"'$(basename "$(git rev-parse --show-toplevel 2>/dev/null)" 2>/dev/null || echo "unknown")'"}' >> ~/.gstack/analytics/skill-usage.jsonl 2>/dev/null || true

What's protected

Pattern

Example

Risk

rm -rf / rm -r / rm --recursive

rm -rf /var/data

Recursive delete

DROP TABLE / DROP DATABASE

DROP TABLE users;

Data loss

TRUNCATE

TRUNCATE orders;

Data loss

git push --force / -f

git push -f origin main

History rewrite

git reset --hard

git reset --hard HEAD~3

Uncommitted work loss

git checkout . / git restore .

git checkout .

Uncommitted work loss

kubectl delete

kubectl delete pod

Production impact

docker rm -f / docker system prune

docker system prune -a

Container/image loss

Safe exceptions

These patterns are allowed without warning:

rm -rf node_modules / .next / dist / __pycache__ / .cache / build / .turbo / coverage

How it works

The hook reads the command from the tool input JSON, checks it against the patterns above, and returns permissionDecision: "ask" with a warning message if a match is found. You can always override the warning and proceed.

To deactivate, end the conversation or start a new one. Hooks are session-scoped.