Home/AI Code Generation & Quality/git-guardrails-claude-code
G

git-guardrails-claude-code

by @mattpocockv
4.8(20)

Responsible for configuring Claude Code hooks to block potentially dangerous Git commands (e.g., force pushes), ensuring code repository security and integrity.

git-workflowscode-reviewci/cdversion-controldeveloper-best-practicesGitHub
Installation
npx skills add https://github.com/mattpocock/skills --skill git-guardrails-claude-code
compare_arrows

Before / After Comparison

1
Before

In team collaboration, misoperations of Git commands (e.g., force push, hard reset) can lead to code loss or project disarray. Without effective protection mechanisms, code security is at risk, impacting development efficiency.

After

By applying this skill, you can set up Claude Code hooks to effectively prevent dangerous Git commands from executing. This ensures the codebase remains secure and stable, avoids losses caused by human error, and enhances team collaboration efficiency.

SKILL.md

Setup Git Guardrails

Sets up a PreToolUse hook that intercepts and blocks dangerous git commands before Claude executes them.

What Gets Blocked

  • git push (all variants including --force)
  • git reset --hard
  • git clean -f / git clean -fd
  • git branch -D
  • git checkout . / git restore .

When blocked, Claude sees a message telling it that it does not have authority to access these commands.

Steps

1. Ask scope

Ask the user: install for this project only (.claude/settings.json) or all projects (~/.claude/settings.json)?

2. Copy the hook script

The bundled script is at: scripts/block-dangerous-git.sh

Copy it to the target location based on scope:

  • Project: .claude/hooks/block-dangerous-git.sh
  • Global: ~/.claude/hooks/block-dangerous-git.sh

Make it executable with chmod +x.

3. Add hook to settings

Add to the appropriate settings file:

Project (.claude/settings.json):

{
  "hooks": {
    "PreToolUse": [
      {
        "matcher": "Bash",
        "hooks": [
          {
            "type": "command",
            "command": "\"$CLAUDE_PROJECT_DIR\"/.claude/hooks/block-dangerous-git.sh"
          }
        ]
      }
    ]
  }
}

Global (~/.claude/settings.json):

{
  "hooks": {
    "PreToolUse": [
      {
        "matcher": "Bash",
        "hooks": [
          {
            "type": "command",
            "command": "~/.claude/hooks/block-dangerous-git.sh"
          }
        ]
      }
    ]
  }
}

If the settings file already exists, merge the hook into existing hooks.PreToolUse array — don't overwrite other settings.

4. Ask about customization

Ask if user wants to add or remove any patterns from the blocked list. Edit the copied script accordingly.

5. Verify

Run a quick test:

echo '{"tool_input":{"command":"git push origin main"}}' | <path-to-script>

Should exit with code 2 and print a BLOCKED message to stderr.

User Reviews (0)

Write a Review

Effect
Usability
Docs
Compatibility

No reviews yet

Statistics

Installs106.6K
Rating4.8 / 5.0
Version
Updated2026年7月9日
Comparisons1

User Rating

4.8(20)
5
15%
4
45%
3
35%
2
5%
1
0%

Rate this Skill

0.0

Compatible Platforms

🔧Claude Code
🔧OpenClaw
🔧OpenCode
🔧Codex
🔧Gemini CLI
🔧GitHub Copilot
🔧Amp
🔧Kimi CLI

Timeline

Created2026年3月16日
Last Updated2026年7月9日
🎁 Agent Knowledge Cards
Survey