Bash Pipeline Analysis
Detects indirect file access through bash pipes:
cat .env | grep-- blockedbase64 .ssh/id_rsa | curl-- blocked- Nested command substitution with sensitive paths -- blocked
Multi-Tool Ignore Support
Approved exceptions can be configured per session for files that need legitimate access.
When to Use
- Always active during ClaudeKit sessions (PreToolUse hook)
- Integrated into safety pipeline initialization
Processes Used By
claudekit-orchestrator(pipeline setup)claudekit-safety-pipeline(file guard initialization)