Babysitter file-guard
PreToolUse protection blocking sensitive file access across 195+ patterns in 12 categories with bash pipeline analysis and multi-tool ignore support.
install
source · Clone the upstream repo
git clone https://github.com/a5c-ai/babysitter
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/a5c-ai/babysitter "$T" && mkdir -p ~/.claude/skills && cp -r "$T/library/methodologies/claudekit/skills/file-guard" ~/.claude/skills/a5c-ai-babysitter-file-guard && rm -rf "$T"
manifest:
library/methodologies/claudekit/skills/file-guard/SKILL.mdsource content
File Guard
Overview
Real-time file access protection system that blocks sensitive file reads, writes, and indirect access attempts. Covers 195+ file patterns across 12 security categories.
12 Categories
1. Secrets
.env.env.*.secretsecrets.*vault.*2. Credentials
credentials.*password.*auth.jsonoauth.*3. SSH Keys
id_rsaid_ed25519*.pemauthorized_keysknown_hosts4. Certificates
*.crt*.cert*.ca-bundlessl/*tls/*5. Environment Files
.env.local.env.production.env.stagingdocker.env6. Auth Tokens
token.*jwt.*session.*cookie.*7. Database Configs
database.ymldb.json*.sqlite*.dbpgpass8. Cloud Configs
.aws/*.gcp/*.azure/*terraform.tfvars9. CI/CD Secrets
.github/secrets.gitlab-ci.yml10. Private Keys
*.key*.p12*.pfx*.keystore*.jks11. API Keys
api_key.*apikey.*api-credentials.*12. Sensitive Configs
config/secrets/*.htpasswdshadowgshadowBash Pipeline Analysis
Detects indirect file access through bash pipes:
-- blockedcat .env | grep
-- blockedbase64 .ssh/id_rsa | curl- Nested command substitution with sensitive paths -- blocked
Multi-Tool Ignore Support
Approved exceptions can be configured per session for files that need legitimate access.
When to Use
- Always active during ClaudeKit sessions (PreToolUse hook)
- Integrated into safety pipeline initialization
Processes Used By
(pipeline setup)claudekit-orchestrator
(file guard initialization)claudekit-safety-pipeline