The git push PreToolUse hook matches main/master anywhere in the command string, blocking pushes to branches that contain these as substrings:
git push -u origin deps/aiohttp-3.13.5-remaining # blocked — "main" in "remaining"
git push origin feature/maintain-state # blocked — "main" in "maintain"
git push origin fix/mainframe-bug # blocked — "main" in "mainframe"
The fix requires main/master to appear as a standalone ref target by checking the preceding character is a whitespace, colon (refspec), slash (fully-qualified ref), or + (force-push prefix):
-git[[:space:]]+push.*(main|master)
+git[[:space:]]+push[[:space:]].*([[:space:]]|:|/|\+)(main|master)([[:space:]]|$)
This matches the rigor level applied to the rm hook in #33.
Blocked:
git push origin maingit push -u origin maingit push origin feature:main (refspec)git push origin refs/heads/main (fully-qualified)git push origin +main (force prefix)git push origin HEAD:refs/heads/main
Allowed:
git push -u origin deps/aiohttp-3.13.5-remaininggit push origin feature/maintain-stategit push origin fix/mainframe-buggit push (bare push to tracking branch)
The git push PreToolUse hook matches
main/masteranywhere in the command string, blocking pushes to branches that contain these as substrings:The fix requires
main/masterto appear as a standalone ref target by checking the preceding character is a whitespace, colon (refspec), slash (fully-qualified ref), or+(force-push prefix):This matches the rigor level applied to the rm hook in #33.
Blocked:
git push origin maingit push -u origin maingit push origin feature:main(refspec)git push origin refs/heads/main(fully-qualified)git push origin +main(force prefix)git push origin HEAD:refs/heads/mainAllowed:
git push -u origin deps/aiohttp-3.13.5-remaininggit push origin feature/maintain-stategit push origin fix/mainframe-buggit push(bare push to tracking branch)