Skip to content

AxioRank/claude-plugin

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

AxioRank — Govern your coding agent (Claude Code plugin)

Govern Claude Code's agent the way you govern production agents. This plugin blocks the things you do not want an autonomous agent doing on your machine, locally and offline, and (optionally) mints a signed, offline-verifiable proof that the session was governed.

It blocks, before the action runs:

  • Destructive commands (rm -rf, git push --force, DROP TABLE, curl ... | sh)
  • Secret exfiltration (a command or file write that ships an API key, token, or .env)
  • Prompt-injected tool results (a poisoned MCP reply or fetched page steering the agent)

Local blocking runs fully offline with no account and no API key. It is a thin, self-contained wrapper around the published @axiorank/coding-guard, which bundles the zero-dependency AxioRank detection engine.

Install

This repo is both the plugin and a one-plugin marketplace:

/plugin marketplace add AxioRank/claude-plugin
/plugin install axiorank@axiorank

Restart or run /reload-plugins. Local blocking works immediately. To try it without installing, run claude --plugin-dir ./ from a clone.

What's in the plugin

Component What it does
hooks/hooks.json Runs the guard on PreToolUse, PostToolUse, and Stop.
scripts/guard.sh Shim that prefers the vendored bin/guard.mjs (offline) and falls back to npx @axiorank/coding-guard; passes --agent claude-code. Fail-open.
bin/guard.mjs Vendored coding-guard CLI (zero deps; runs on node).
.mcp.json Registers AxioRank's remote MCP server (optional; needs AXIORANK_API_KEY).
skills/coding-guard Model-invoked reference for what the guard blocks and how sealing works.
/axiorank:verify-seal Verify the Coding Session Seal offline.
/axiorank:governance Show the current session's governance status.

Central audit + the Coding Session Seal (optional)

Set an API key and each session is reported to your AxioRank workspace and sealed at the end:

export AXIORANK_API_KEY="axr_live_..."

Sessions then appear under Coding Sessions, and a signed seal lands in <repo>/.axiorank/session-<id>.seal.json. Verify it offline:

npx -y @axiorank/audit-verify coding-seal .axiorank/session-*.seal.json

Local blocking and central audit are free (audit counts against your plan's normal event quota). The signed Coding Session Seal is a Team-plan feature.

Maintainers

bin/guard.mjs is vendored from @axiorank/coding-guard. After bumping that package, run node scripts/sync-binary.mjs and commit the updated binary. Run claude plugin validate before publishing.

MIT licensed. Part of AxioRank.

About

Govern your Claude Code agent: block destructive commands, secret exfiltration, and prompt-injected tool results locally and offline, then mint a signed Coding Session Seal. /plugin marketplace add AxioRank/claude-plugin

Resources

License

Stars

0 stars

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors