-
由 Will Chen 提交于
## Summary - **gh-permission-hook:** Allow `gh pr` commands without shell injection check (common workflow patterns need pipes, backticks in markdown bodies, etc.) - **gh-permission-hook:** Keep shell injection as deny for all other `gh` commands - **gh-permission-hook:** Allow PATCH to `/pulls/{id}` for updating PR title/body via API - **python-permission-hook:** Allow `pytest` as an exception to the `-m` module restriction for running tests - Update test data to reflect new behavior ## Test plan - Run `pytest tests/test_gh_permission_hook.py tests/test_python_permission_hook.py -v` in `.claude/hooks/` to verify all hook tests pass - Verify `gh pr create` with backticks in body works without shell injection error - Verify `gh api -X PATCH repos/owner/repo/pulls/123` is allowed - Verify `python -m pytest` is allowed #skip-bugbot🤖 Generated with [Claude Code](https://claude.com/claude-code) --------- Co-authored-by:Claude Opus 4.5 <noreply@anthropic.com>
