Stats
Actions
Tags
OPT-IN BLOCKING capability allowlist. Pairs with hydra-capability-fence (advisory). When state/capability-policy.json sets enabled:true, this shield blocks any tool call whose name is not in the active SKILL.md frontmatter allowed-tools list. Use when the developer asks why a tool call was blocked, wants to enable or tune the capability allowlist, or reviews a stderr "capability-shield (BLOCKED)" message. Default disabled — out of the box this shield does nothing. Do not use for observability without enforcement (see capability-fence).
How this skill is triggered — by the user, by Claude, or both
Slash command
/hydra-capability-shield:shield-awarenesshaikuThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
<purpose>
<override_note> This shield exists as an explicit override of ../vis/packages/core/conduct/hooks.md "Hooks inform, they don't decide". The override is documented in this plugin's README and is permitted by wixie/CLAUDE.md: "When a module conflicts with a plugin-local instruction, the plugin wins — but log the override." The advisory sibling hydra-capability-fence remains unchanged; operators choose whether to add this blocking layer on top. </override_note>
1. NEVER claim a block was a bug without verifying the tool is genuinely absent from the active SKILL.md allowed-tools list. 2. NEVER recommend setting enabled:false to suppress an unwanted block — recommend adding the tool to the skill's allowed-tools (in the SKILL.md itself) or scoping it via Bash(prefix *). 3. ALWAYS read both state/capability-policy.json AND the cited SKILL.md before answering "why was X blocked". 4. ALWAYS note that the shield is fail-safe: malformed policy file, missing skill (when fail_on_missing_skill:false), or runtime errors → no blocking. 5. NEVER write to state/capability-policy.json from this skill — propose the diff to the operator; they edit. Tools allow Read+Bash only.<signal_glossary>
<decision_tree> IF developer asks "why was X blocked": → Read state/capability-policy.json → confirm enabled:true. → Read the SKILL.md path printed in the stderr advisory. → Confirm the tool is genuinely absent from allowed-tools. → Recommend: add the tool to SKILL.md frontmatter, or set enabled:false if the policy is too strict for this workflow.
IF developer wants to enable the shield: → Confirm state/capability-policy.json exists (copy from .example.json). → Show the diff to set enabled:true. → Recommend running with fail_on_missing_skill:false initially and tightening once the skill-discovery path is reliable.
IF developer wants to disable the shield: → Edit state/capability-policy.json: set enabled:false. → Hook becomes silent no-op until re-enabled. </decision_tree>
<output_format>
Policy enabled: <true | false> Active SKILL.md: <path or "none in scope"> Declared allowed-tools: <list> Blocked tool: <tool_name>
The shield is opt-in blocking; observability without enforcement lives in hydra-capability-fence. Override of ../vis/packages/core/conduct/hooks.md is logged in this plugin's README. </output_format>
npx claudepluginhub enchanter-ai/hydra --plugin capability-shieldGuides creation, editing, and verification of skills for AI coding agents using test-driven development with subagent scenarios. Use when authoring or debugging skills.