Runtime safety plugins for AI coding agents
npx claudepluginhub cocabadger/saferun-guardRuntime safety firewall for AI coding agents. Blocks dangerous commands and protects sensitive files before they execute.
CocabadgerRuntime safety firewall for AI coding agents.
SafeRun Guard is a Claude Code Plugin that intercepts dangerous commands and file operations before they execute. It protects your codebase from accidental rm -rf /, force pushes to main, credential overwrites, and more — automatically, silently, in ~20ms.
Compound commands like echo ok && rm -rf / are split and each segment is checked independently. Secret patterns (AWS keys, private keys, API tokens) are detected in file writes before they hit disk.
95% of actions — invisible. SafeRun Guard only speaks up when something is actually dangerous.
# Add marketplace and install (two commands, one time)
claude plugin marketplace add Cocabadger/saferun-guard
claude plugin install saferun-guard@saferun-guard
That's it. SafeRun Guard is now active for every Claude Code session.
# Via marketplace — browse + install
/plugin marketplace add Cocabadger/saferun-guard
/plugin install saferun-guard@saferun-guard
# Clone and install locally
git clone https://github.com/Cocabadger/saferun-guard.git
claude plugin install ./saferun-guard
# Load for one session only
claude --plugin-dir ./saferun-guard
Add to your project's .claude/settings.json so every team member gets prompted to install:
{
"extraKnownMarketplaces": {
"saferun-guard": {
"source": {
"source": "github",
"repo": "Cocabadger/saferun-guard"
}
}
},
"enabledPlugins": {
"saferun-guard@saferun-guard": true
}
}
SafeRun Guard sits between Claude and your system. Every time Claude wants to run a shell command or write a file, SafeRun Guard checks it against 112 safety rules + 9 secret patterns in ~20ms:
Claude wants to run: git push --force origin main
│
▼
SafeRun Guard
│
┌──────────┬───────┼───────┬──────────┐
│ │ │ │ │
🔄 REDIRECT 🚫 BLOCK ❓ ASK ✅ ALLOW
(3 rules) (27+25) (25+23) (silent)
│ │ │ │
Suggest Agent User Command
safer sees sees executes
command block prompt normally
🔄 REDIRECT — suggest a safer alternative. Agent rewrites the command.
git push --force → "Use --force-with-lease instead"
🚫 BLOCK — command denied. Claude sees the reason and adapts.
sudo rm -rf / → "Recursive delete as root"
❓ ASK — user gets a confirmation prompt.
git push origin main → "Push to production branch — allow?"
✅ ALLOW — silent passthrough. No delay, no prompt.
npm test, git status, ls -la
Commands chained with &&, ||, or ; are split and each segment is checked independently:
echo ok && rm -rf /
│ │
✅ 🚫 BLOCK — caught!
Pipe | is not split — it's part of a single pipeline (grep foo | wc -l is safe).
File writes and edits are scanned for 9 secret patterns before they hit disk:
AKIA...) and secret keys-----BEGIN...PRIVATE KEY-----)ghp_, gho_, ghs_, ghr_)sk-...)xox[bpras]-...)git push --force, git reset --hard, git clean -fd, delete main/master branch, interactive rebaserm -rf /, rm -rf ., chmod 777, chmod -R 777, dd, mkfs, sudo rm -rfcurl ... | bash, wget ... | sh — remote code executionrm -rf ~/.ssh, destroy SSH keys, overwrite /etc/passwddocker system prune -a, fork bombs, kubectl delete namespacehistory -c, history --clear — audit trail destructionpackage-lock.json, yarn.lock, Cargo.lock via shellgit push origin main, git merge main, delete tagskubectl apply/delete, terraform apply/destroyhelm install/upgrade/uninstall/rollback, pulumi up/destroy, cdk deploy/destroygh pr merge/close, gh release create/deleteaws ec2 run/terminate/stop, aws s3 rm/rbansible-playbook (excluding --check/--diff/--syntax-check)npm publish, pip upload, docker push, gem pushdb migrate, db drop, SQL execution on prodsystemctl stop, service restartClaude Code marketplace entries for the plugin-safe Antigravity Awesome Skills library and its compatible editorial bundles.
Production-ready workflow orchestration with 84 marketplace plugins, 192 local specialized agents, and 156 local skills - optimized for granular installation and minimal token usage
Directory of popular Claude Code extensions including development tools, productivity plugins, and MCP integrations