fix(token-guard): skip ALWAYS_DANGEROUS check when redaction is already present

jdalton · jdalton · commit 8ad29da21f95 · 2026-04-26T20:43:35.000-04:00
diff --git a/.claude/hooks/token-guard/index.mts b/.claude/hooks/token-guard/index.mts
@@ -158,9 +158,11 @@ const check = (command: string): void => {
     }
   }
 
-  // 1. Always-dangerous patterns.
+  // 1. Always-dangerous patterns. Skip when the command already has a
+  // redaction pipeline — the suggested fix here is `env | sed ...`,
+  // which would itself match ALWAYS_DANGEROUS without this guard.
   const dangerous = matchesAlwaysDangerous(command)
-  if (dangerous) {
+  if (dangerous && !hasRedaction(command)) {
     throw new BlockError(
       `\`${dangerous.source}\` dumps env to stdout`,
       'Pipe through redaction, e.g. `env | sed "s/=.*/=<redacted>/"` or filter specific keys.',

Original file line number	Diff line number	Diff line change
`@@ -158,9 +158,11 @@ const check = (command: string): void => {`
`158`	`158`	`}`
`159`	`159`	`}`
`160`	`160`
`161`		`- // 1. Always-dangerous patterns.`
	`161`	`+ // 1. Always-dangerous patterns. Skip when the command already has a`
	`162`	+ // redaction pipeline — the suggested fix here is `env \| sed ...`,
	`163`	`+ // which would itself match ALWAYS_DANGEROUS without this guard.`
`162`	`164`	`const dangerous = matchesAlwaysDangerous(command)`
`163`		`- if (dangerous) {`
	`165`	`+ if (dangerous && !hasRedaction(command)) {`
`164`	`166`	`throw new BlockError(`
`165`	`167`	`\`${dangerous.source}\` dumps env to stdout`,
`166`	`168`	'Pipe through redaction, e.g. `env \| sed "s/=.*/=<redacted>/"` or filter specific keys.',