From 56b7210c27255366a3930f4477f0d9b8a0ec1991 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Mon, 4 May 2026 19:01:11 +0900
Subject: [PATCH 01/16] docs: update agent guidelines with style guide
 conventions

Rewrite AGENTS.md from project-specific documentation to comprehensive
style guide covering destructuring, variables, control flow, schema
definitions, and testing conventions.

Simplify CLAUDE.md to reference AGENTS.md instead of duplicating content.
---
 AGENTS.md | 214 +++++++++++++++++-------------------------------------
 CLAUDE.md | 119 +-----------------------------
 2 files changed, 69 insertions(+), 264 deletions(-)

diff --git a/AGENTS.md b/AGENTS.md
index fd22b3e..2f2cedb 100644
--- a/AGENTS.md
+++ b/AGENTS.md
@@ -1,173 +1,95 @@
-# Agent Guidelines
+- ALWAYS USE PARALLEL TOOLS WHEN APPLICABLE.
+- Prefer automation: execute requested actions without confirmation unless blocked by missing info or safety/irreversibility.
+- ALWAYS use `bun run check` to verify changes. This runs typecheck, knip, biome lint, and tests together. Do not run these separately.
 
-A Claude Code / OpenCode plugin that blocks destructive git and filesystem commands before execution. Works as a PreToolUse hook intercepting Bash commands.
+## Style Guide
 
-## Commands
+### General Principles
 
-| Task | Command |
-|------|---------|
-| Install | `bun install` |
-| Build | `bun run build` |
-| All checks | `bun run check` |
-| Lint | `bun run lint` |
-| Type check | `bun run typecheck` |
-| Test all | `AGENT=1 bun test` |
-| Single test | `bun test tests/rules-git.test.ts` |
-| Pattern match | `bun test --test-name-pattern "pattern"` |
-| Dead code | `bun run knip` |
-| AST rules | `bun run sg:scan` |
-| Doctor | `bun src/bin/cc-safety-net.ts doctor` |
+- Keep things in one function unless composable or reusable
+- Avoid `try`/`catch` where possible
+- Avoid using the `any` type
+- Rely on type inference when possible; avoid explicit type annotations or interfaces unless necessary for exports or clarity
+- Prefer functional array methods (flatMap, filter, map) over for loops; use type guards on filter to maintain type inference downstream
+- In `src/config`, follow the existing self-export pattern at the top of the file (for example `export * as ConfigAgent from "./agent"`) when adding a new config module.
 
-**Always use `bun run check` to verify changes.** This runs typecheck, knip, biome lint, and tests together. Do not run these separately.
+Reduce total variable count by inlining when a value is only used once.
 
-## Pre-commit Hooks
-
-Runs on commit: `knip` → `lint-staged` (biome check --write, ast-grep scan)
-
-## Commit Conventions
-
-For changes to `commands/`, `hooks/`, or `.opencode/`, use only `fix` or `feat` commit types.
+```ts
+// Good
+const journal = JSON.parse(await fs.readFile(path.join(dir, "journal.json"), "utf8"))
 
-## Code Style (TypeScript)
+// Bad
+const journalPath = path.join(dir, "journal.json")
+const journal = JSON.parse(await fs.readFile(journalPath, "utf8"))
+```
 
-### Formatting (Biome)
-- 2-space indentation, 100-char line width
-- Single quotes, trailing commas, semicolons required
-- Imports: auto-sorted by Biome, use relative imports within package
-- Prefer named exports over default exports
+### Destructuring
 
-### Type Hints
-- **Required** on all functions
-- Use `| null` or `| undefined` appropriately
-- Use lowercase primitives (`string`, `number`, `boolean`)
-- Use `readonly` arrays where mutation isn't needed
+Avoid unnecessary destructuring. Use dot notation to preserve context.
 
-```typescript
+```ts
 // Good
-function analyze(command: string, options?: { strict?: boolean }): string | null { ... }
-function analyzeRm(tokens: readonly string[], cwd: string | null): string | null { ... }
+obj.a
+obj.b
 
 // Bad
-function analyze(command, strict) { ... }  // Missing types
+const { a, b } = obj
 ```
 
-### Naming
-- Functions/variables: `camelCase`
-- Types/interfaces: `PascalCase`
-- Constants: `UPPER_SNAKE_CASE` (reason strings: `REASON_*`)
-- Private/internal: `_leadingUnderscore` (for module-private functions)
-
-### Test-Only Exports
-When exporting a function solely for testing, add `@internal` JSDoc to satisfy knip:
-```typescript
-/** @internal Exported for testing */
-export const myInternalFn = () => { ... };
-```
-
-### Error Handling
-- Print errors to stderr
-- Exit codes: `0` = success, `1` = error
-- Block commands: exit 0 with JSON `permissionDecision: "deny"`
+### Variables
 
-## Testing
+Prefer `const` over `let`. Use ternaries or early returns instead of reassignment.
 
-Use Bun's built-in test runner with test helpers:
+```ts
+// Good
+const foo = condition ? 1 : 2
 
-```typescript
-import { describe, test } from 'bun:test';
-import { assertBlocked, assertAllowed } from './helpers.ts';
+// Bad
+let foo
+if (condition) foo = 1
+else foo = 2
+```
 
-describe('git rules', () => {
-  test('git reset --hard blocked', () => {
-    assertBlocked('git reset --hard', 'git reset --hard');
-  });
+### Control Flow
 
-  test('git status allowed', () => {
-    assertAllowed('git status');
-  });
+Avoid `else` statements. Prefer early returns.
 
-  test('with cwd', () => {
-    assertBlocked('rm -rf /', 'rm -rf', '/home/user');
-  });
-});
-```
+```ts
+// Good
+function foo() {
+  if (condition) return 1
+  return 2
+}
 
-### Test Helpers
-| Function | Purpose |
-|----------|---------|
-| `assertBlocked(command, reasonContains, cwd?)` | Verify command is blocked |
-| `assertAllowed(command, cwd?)` | Verify command passes through |
-| `runGuard(command, cwd?, config?)` | Run analysis and return reason or null |
-| `withEnv(env, fn)` | Run test with temporary environment variables |
-
-## Environment Variables
-
-| Variable | Effect |
-|----------|--------|
-| `SAFETY_NET_STRICT=1` | Fail-closed on unparseable hook input/commands |
-| `SAFETY_NET_PARANOID=1` | Enable all paranoid checks (rm + interpreters) |
-| `SAFETY_NET_PARANOID_RM=1` | Block non-temp `rm -rf` even within cwd |
-| `SAFETY_NET_PARANOID_INTERPRETERS=1` | Block interpreter one-liners |
-
-## What Gets Blocked
-
-**Git**: `checkout -- <files>`, `restore` (without --staged), `reset --hard/--merge`, `clean -f`, `push --force/-f` (without --force-with-lease), `branch -D`, `stash drop/clear`
-
-**Filesystem**: `rm -rf` outside cwd (except `/tmp`, `/var/tmp`, `$TMPDIR`), `rm -rf` when cwd is `$HOME`, `rm -rf /` or `~`, `find -delete`
-
-**Piped commands**: `xargs rm -rf`, `parallel rm -rf` (dynamic input to destructive commands)
-
-## Adding New Rules
-
-### Git Rule
-1. Add reason constant in `rules-git.ts`: `const REASON_* = "..."`
-2. Add detection logic in `analyzeGit()`
-3. Add tests in `tests/rules-git.test.ts`
-4. Run `bun run check`
-
-### rm Rule
-1. Add logic in `rules-rm.ts`
-2. Add tests in `tests/rules-rm.test.ts`
-3. Run `bun run check`
-
-### Other Command Rules
-1. Add reason constant in `analyze.ts`: `const REASON_* = "..."`
-2. Add detection in `analyzeSegment()`
-3. Add tests in appropriate test file
-4. Run `bun run check`
-
-## Edge Cases to Test
-
-- Shell wrappers: `bash -c '...'`, `sh -lc '...'`
-- Sudo/env: `sudo git ...`, `env VAR=1 git ...`
-- Pipelines: `echo ok | git reset --hard`
-- Interpreter one-liners: `python -c 'os.system("rm -rf /")'`
-- Xargs/parallel: `find . | xargs rm -rf`
-- Busybox: `busybox rm -rf /`
-- Nested commands: `$( rm -rf / )`, backticks
-
-## Hook Output Format
-
-Blocked commands produce JSON:
-```json
-{
-  "hookSpecificOutput": {
-    "hookEventName": "PreToolUse",
-    "permissionDecision": "deny",
-    "permissionDecisionReason": "BLOCKED by Safety Net\n\nReason: ..."
-  }
+// Bad
+function foo() {
+  if (condition) return 1
+  else return 2
 }
 ```
 
-Allowed commands produce no output (exit 0 silently).
+### Schema Definitions (Drizzle)
 
-## Bun Guidelines
+Use snake_case for field names so column names don't need to be redefined as strings.
 
-Default to Bun instead of Node.js:
-- `bun <file>` instead of `node <file>`
-- `bun test` instead of jest/vitest
-- `bun install` instead of npm/yarn/pnpm install
-- `bunx <pkg>` instead of `npx <pkg>`
-- Bun auto-loads `.env` - no dotenv needed
+```ts
+// Good
+const table = sqliteTable("session", {
+  id: text().primaryKey(),
+  project_id: text().notNull(),
+  created_at: integer().notNull(),
+})
+
+// Bad
+const table = sqliteTable("session", {
+  id: text("id").primaryKey(),
+  projectID: text("project_id").notNull(),
+  createdAt: integer("created_at").notNull(),
+})
+```
+
+## Testing
 
-Use `AGENT=1 bun test` to run tests.
+- Avoid mocks as much as possible
+- Test actual implementation, do not duplicate logic into tests
diff --git a/CLAUDE.md b/CLAUDE.md
index ffd2c7e..eef4bd2 100644
--- a/CLAUDE.md
+++ b/CLAUDE.md
@@ -1,118 +1 @@
-# CLAUDE.md
-
-This file provides guidance to Claude Code (claude.ai/code) when working with code in this repository.
-
-## Project Overview
-
-A Claude Code and OpenCode plugin that blocks destructive git and filesystem commands before execution. It works as a PreToolUse hook that intercepts Bash commands and denies dangerous operations like `git reset --hard`, `rm -rf`, and `git checkout -- <files>`.
-
-## Commands
-
-- **Setup**: `bun install`
-- **All checks**: `bun run check` (runs lint, typecheck, knip, ast-grep scan, tests)
-- **Single test**: `bun test tests/file.test.ts`
-- **Test pattern**: `bun test --test-name-pattern "pattern"`
-- **Lint**: `bun run lint` (uses Biome)
-- **Type check**: `bun run typecheck`
-- **Dead code**: `bun run knip`
-- **AST scan**: `bun run sg:scan`
-- **Build**: `bun run build`
-- **Doctor**: `bun src/bin/cc-safety-net.ts doctor` (diagnostics)
-
-**Always use `bun run check` to verify changes.** This runs typecheck, knip, biome lint, and tests together. Do not run these separately.
-
-## Pre-commit Hooks
-
-Runs on commit: `knip` → `lint-staged` (biome check --write, ast-grep scan)
-
-## Slash Commands
-
-- `/set-statusline`: Configure status line integration
-- `/set-custom-rules`: Create custom rules interactively
-- `/verify-custom-rules`: Validate custom rules config
-
-## Architecture
-
-The hook receives JSON input on stdin containing `tool_name` and `tool_input`. For `Bash` tools, it analyzes the command and outputs JSON with `permissionDecision: "deny"` to block dangerous operations.
-
-**Entry points**:
-- `src/bin/cc-safety-net.ts` — Claude Code CLI (reads stdin JSON)
-- `src/index.ts` — OpenCode plugin export
-
-**Core analysis flow**:
-1. `cc-safety-net.ts:main()` parses JSON input, extracts command
-2. `analyze.ts:analyzeCommand()` splits command on shell operators (`;`, `&&`, `|`, etc.)
-3. `analyzeSegment()` tokenizes each segment, strips wrappers (sudo, env), identifies the command
-4. Dispatches to `rules-git.ts:analyzeGit()` or `rules-rm.ts:analyzeRm()` based on command
-5. Checks custom rules via `rules-custom.ts:checkCustomRules()` if configured
-
-**Key modules** (`src/core/`):
-- `shell.ts`: Shell parsing (`splitShellCommands`, `shlexSplit`, `stripWrappers`, `shortOpts`)
-- `rules-git.ts`: Git subcommand analysis (checkout, restore, reset, clean, push, branch, stash)
-- `rules-rm.ts`: rm analysis (allows rm -rf within cwd except when cwd is $HOME; temp paths always allowed; strict mode blocks non-temp)
-- `config.ts`: Config loading, validation, merging (user `~/.cc-safety-net/config.json` + project `.safety-net.json`)
-- `rules-custom.ts`: Custom rule matching (`checkCustomRules()`)
-- `audit.ts`: Audit logging for blocked commands
-- `verify-config.ts`: Config validator
-
-**Analysis submodules** (`src/core/analyze/`):
-- `find.ts`: `find -delete` and `find -exec rm` detection
-- `interpreters.ts`: Python/Node/Ruby/Perl one-liner detection
-- `xargs.ts`: `xargs rm` and dynamic input detection
-- `parallel.ts`: GNU parallel command analysis
-- `shell-wrappers.ts`: Recursive `bash -c`/`sh -c` unwrapping
-- `tmpdir.ts`: Temp directory path detection
-
-**Test utilities** (`tests/helpers.ts`):
-- `assertBlocked()`, `assertAllowed()` helpers for testing command analysis
-
-**Advanced detection**:
-- Recursively analyzes shell wrappers (`bash -c '...'`) up to 5 levels deep
-- Detects destructive commands in interpreter one-liners (`python -c`, `node -e`, `ruby -e`, `perl -e`)
-- Handles `xargs` and `parallel` with template expansion and dynamic input detection
-- Detects `find -delete` and `find -exec rm` patterns
-- Redacts secrets (tokens, passwords, API keys) in block messages and audit logs
-- Audit logging: blocked commands logged to `~/.cc-safety-net/logs/<session_id>.jsonl`
-
-## Code Style (TypeScript)
-
-- Use Bun instead of Node.js for running, testing, and building
-- Biome for linting and formatting
-- All functions require type annotations
-- Use `type | null` syntax (not `undefined` where possible)
-- Use kebab-case for file names (`rules-git.ts`, not `rulesGit.ts`)
-- For test-only exports, add `/** @internal Exported for testing */` JSDoc to satisfy knip
-
-## Commit Conventions
-
-When committing changes to files in `commands/`, `hooks/`, or `.opencode/`, use only `fix` or `feat` commit types. These directories contain user-facing skill definitions and hook configurations that represent features or fixes to the plugin's capabilities.
-
-## Environment Variables
-
-- `SAFETY_NET_STRICT=1`: Strict mode (fail-closed on unparseable hook input/commands)
-- `SAFETY_NET_PARANOID=1`: Paranoid mode (enables all paranoid checks)
-- `SAFETY_NET_PARANOID_RM=1`: Paranoid rm (blocks non-temp `rm -rf` even within cwd)
-- `SAFETY_NET_PARANOID_INTERPRETERS=1`: Paranoid interpreters (blocks interpreter one-liners)
-
-## Custom Rules
-
-Users can define additional blocking rules in two scopes (merged, project overrides user):
-- **User scope**: `~/.cc-safety-net/config.json` (applies to all projects)
-- **Project scope**: `.safety-net.json` (in project root)
-
-Rules are additive only—cannot bypass built-in protections. Invalid config silently falls back to built-in rules only.
-
-## Testing
-
-Use `AGENT=1 bun test` to run tests.
-
-## Bun Best Practices
-
-- Use `bun <file>` instead of `node <file>` or `ts-node <file>`
-- Use `bun test` instead of `jest` or `vitest`
-- Use `bun build` instead of `webpack` or `esbuild`
-- Use `bun install` instead of `npm install`
-- Use `bun run <script>` instead of `npm run <script>`
-- Bun automatically loads .env, so don't use dotenv
-
-For more information, read the Bun API docs in `node_modules/bun-types/docs/**.mdx`.
\ No newline at end of file
+@AGENTS.md
\ No newline at end of file

From c40e58ef6b11381626ddcb661e71534645d964f2 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Mon, 4 May 2026 19:01:19 +0900
Subject: [PATCH 02/16] feat: migrate slash commands to skills format

Migrate from Claude Code slash commands to the skills format:
- Remove commands/set-custom-rules.md, set-statusline.md, verify-custom-rules.md
- Add skills/set-custom-rules and skills/verify-custom-rules with SKILL.md
  and OpenAI agent configs
- Update CONTRIBUTING.md directory structure references
- Update README.md to reference skills instead of slash commands
- Update generate-changelog.ts CLAUDE_CODE_PATHS from 'commands/' to 'skills/'
- Update test expectations for skills path migration
---
 CONTRIBUTING.md                               |   6 +-
 README.md                                     |  22 +--
 commands/set-custom-rules.md                  | 132 --------------
 commands/set-statusline.md                    | 172 ------------------
 commands/verify-custom-rules.md               |  16 --
 scripts/generate-changelog.ts                 |   2 +-
 skills/set-custom-rules/SKILL.md              |  35 ++++
 skills/set-custom-rules/agents/openai.yaml    |   6 +
 skills/verify-custom-rules/SKILL.md           |  29 +++
 skills/verify-custom-rules/agents/openai.yaml |   6 +
 tests/scripts/generate-changelog.test.ts      |   6 +-
 11 files changed, 86 insertions(+), 346 deletions(-)
 delete mode 100644 commands/set-custom-rules.md
 delete mode 100644 commands/set-statusline.md
 delete mode 100644 commands/verify-custom-rules.md
 create mode 100644 skills/set-custom-rules/SKILL.md
 create mode 100644 skills/set-custom-rules/agents/openai.yaml
 create mode 100644 skills/verify-custom-rules/SKILL.md
 create mode 100644 skills/verify-custom-rules/agents/openai.yaml

diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
index 009b0f9..bf60d2d 100644
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -176,9 +176,9 @@ claude-code-safety-net/
 │   ├── rules/                # AST-grep rule definitions
 │   ├── rule-tests/           # Rule test cases
 │   └── utils/                # Shared utilities
-├── commands/
-│   ├── set-custom-rules.md   # Slash command: configure custom rules
-│   └── verify-custom-rules.md # Slash command: validate config
+├── skills/
+│   ├── set-custom-rules/     # Skill: configure custom rules
+│   └── verify-custom-rules/  # Skill: validate config
 ├── hooks/
 │   └── hooks.json            # Hook definitions
 ├── scripts/
diff --git a/README.md b/README.md
index 8b52551..7afab6c 100644
--- a/README.md
+++ b/README.md
@@ -219,22 +219,6 @@ gemini extensions install https://github.com/kenryu42/gemini-safety-net
 
 Safety Net can display its status in Claude Code's status line, showing whether protection is active and which modes are enabled.
 
-### Setup via Slash Command
-
-The easiest way to configure the status line is using the built-in slash command:
-
-```
-/set-statusline
-```
-
-This interactive command will:
-1. Ask whether you prefer `bunx` or `npx`
-2. Check for existing status line configuration
-3. Offer to replace or pipe with existing commands
-4. Write the configuration to `~/.claude/settings.json`
-
-### Manual Setup
-
 Add the following to your `~/.claude/settings.json`:
 
 **Using Bun (recommended):**
@@ -438,9 +422,9 @@ See [CONTRIBUTING.md](CONTRIBUTING.md) for details on how to contribute to this
 Beyond the built-in protections, you can define your own blocking rules to enforce team conventions or project-specific safety policies.
 
 > [!TIP]
-> Use `/set-custom-rules` to create custom rules interactively with natural language.
+> Use the `set-custom-rules` skill to create custom rules interactively with natural language.
 >
-> **GitHub Copilot CLI users**: Since Copilot CLI doesn't support custom slash commands, prompt your agent with:
+> If your agent does not support skills, prompt it with:
 > ```text
 > run npx cc-safety-net --custom-rules-doc and help me set up custom rules
 > ```
@@ -588,7 +572,7 @@ Custom rules use **silent fallback** error handling. If your config file is inva
 
 
 > [!IMPORTANT]  
-> If you add or modify custom rules manually, always validate them with `npx -y cc-safety-net --verify-config` or `/verify-custom-rules` slash command in your coding agent.
+> If you add or modify custom rules manually, always validate them with `npx -y cc-safety-net --verify-config` or the `verify-custom-rules` skill in your coding agent.
 
 ### Block Output Format
 
diff --git a/commands/set-custom-rules.md b/commands/set-custom-rules.md
deleted file mode 100644
index 6b944a7..0000000
--- a/commands/set-custom-rules.md
+++ /dev/null
@@ -1,132 +0,0 @@
----
-description: Set custom rules for Safety Net
-allowed-tools: Bash, Read, Write, AskUserQuestion
----
-
-You are helping the user configure custom blocking rules for claude-code-safety-net.
-
-## Context
-
-### Schema Documentation
-
-!`npx -y cc-safety-net --custom-rules-doc`
-
-## Your Task
-
-Follow this flow exactly:
-
-### Step 1: Ask for Scope
-
-Use AskUserQuestion to let user select scope:
-
-```json
-{
-  "questions": [
-    {
-      "question": "Which scope would you like to configure?",
-      "header": "Configure",
-      "multiSelect": false,
-      "options": [
-        {
-          "label": "User",
-          "description": "(`~/.cc-safety-net/config.json`) - applies to all your projects"
-        },
-        {
-          "label": "Project",
-          "description": "(`.safety-net.json`) - applies only to this project"
-        }
-      ]
-    }
-  ]
-}
-```
-
-### Step 2: Show Examples and Ask for Rules
-
-Show examples in natural language:
-- "Block `git add -A` and `git add .` to prevent blanket staging"
-- "Block `npm install -g` to prevent global package installs"
-- "Block `docker system prune` to prevent accidental cleanup"
-
-Ask the user to describe rules in natural language. They can list multiple.
-
-### Step 3: Generate and Show JSON Config
-
-Parse user input and generate valid schema JSON using the schema documentation above.
-
-Then show the generated config JSON to the user.
-
-### Step 4: Ask for Confirmation
-
-Use AskUserQuestion to let user choose:
-
-```json
-{
-  "questions": [
-    {
-      "question": "Does this look correct?",
-      "header": "Confirmation",
-      "multiSelect": false,
-      "options": [
-        {
-          "label": "Yes",
-        },
-        {
-          "label": "No",
-        }
-      ]
-    }
-  ]
-}
-```
-
-### Step 5: Check and Handle Existing Config
-
-1. Check existing User Config with `cat ~/.cc-safety-net/config.json 2>/dev/null || echo "No user config found"`
-2. Check existing Project Config with `cat .safety-net.json 2>/dev/null || echo "No project config found"`
-
-If the chosen scope already has a config:
-
-Show the existing config to the user.
-Use AskUserQuestion tool to let user choose:
-```json
-{
-"questions": [
-    {
-    "question": "The chosen scope already has a config. What would you like to do?",
-    "header": "Configure",
-    "multiSelect": false,
-    "options": [
-        {
-        "label": "Merge",
-        },
-        {
-        "label": "Replace",
-        }
-    ]
-    }
-]
-}
-```
-
-### Step 6: Write and Validate
-
-Write the config to the chosen scope, then validate with `npx -y cc-safety-net --verify-config`.
-
-If validation errors:
-- Show specific errors
-- Offer to fix with your best suggestion
-- Confirm before proceeding
-
-### Step 7: Confirm Success
-
-Tell the user:
-1. Config saved to [path]
-2. **Changes take effect immediately** - no restart needed
-3. Summary of rules added
-
-## Important Notes
-
-- Custom rules can only ADD restrictions, not bypass built-in protections
-- Rule names must be unique (case-insensitive)
-- Invalid config → entire config ignored, only built-in rules apply
diff --git a/commands/set-statusline.md b/commands/set-statusline.md
deleted file mode 100644
index ab5c8eb..0000000
--- a/commands/set-statusline.md
+++ /dev/null
@@ -1,172 +0,0 @@
----
-description: Set Safety Net status line in Claude Code settings
-allowed-tools: Bash, Read, Write, AskUserQuestion
----
-
-You are helping the user configure the Safety Net status line in their Claude Code settings.
-
-## Context
-
-### Schema Documentation
-
-The `statusLine` field in `~/.claude/settings.json` has this structure:
-
-```json
-{
-  "statusLine": {
-    "type": "command",
-    "command": "<shell command to execute>",
-    "padding": <optional number>
-  }
-}
-```
-
-- `type`: Must be `"command"`
-- `command`: Shell command that outputs the status line text
-- `padding`: Optional number for spacing
-
-## Your Task
-
-Follow this flow exactly:
-
-### Step 1: Ask for Package Runner
-
-Use AskUserQuestion to let user select their preferred package runner:
-
-```json
-{
-  "questions": [
-    {
-      "question": "Which package runner would you like to use?",
-      "header": "Runner",
-      "multiSelect": false,
-      "options": [
-        {
-          "label": "bunx (Recommended)",
-          "description": "Uses Bun's package runner - faster startup"
-        },
-        {
-          "label": "npx",
-          "description": "Uses npm's package runner - more widely available"
-        }
-      ]
-    }
-  ]
-}
-```
-
-### Step 2: Check Existing Settings
-
-Read the current settings file:
-
-```bash
-cat ~/.claude/settings.json 2>/dev/null || echo "{}"
-```
-
-Parse the JSON and check if `statusLine.command` already exists.
-
-### Step 3: Handle Existing Command
-
-If `statusLine.command` already exists:
-
-1. Show the current command to the user
-2. Use AskUserQuestion to let user choose:
-
-```json
-{
-  "questions": [
-    {
-      "question": "The statusLine command is already set. What would you like to do?",
-      "header": "Existing",
-      "multiSelect": false,
-      "options": [
-        {
-          "label": "Replace",
-          "description": "Replace the existing command with Safety Net statusline"
-        },
-        {
-          "label": "Pipe",
-          "description": "Add Safety Net at the end using pipe (existing_command | cc-safety-net --statusline)"
-        }
-      ]
-    }
-  ]
-}
-```
-
-### Step 4: Generate the Configuration
-
-Based on user choices:
-
-**If Replace or no existing command:**
-```json
-{
-  "statusLine": {
-    "type": "command",
-    "command": "bunx cc-safety-net --statusline"
-  }
-}
-```
-(Use `npx -y` instead of `bunx` if user selected npx)
-
-**If Pipe:**
-```json
-{
-  "statusLine": {
-    "type": "command",
-    "command": "<existing_command> | bunx cc-safety-net --statusline"
-  }
-}
-```
-
-### Step 5: Show and Confirm
-
-Show the generated config to the user.
-
-Use AskUserQuestion to confirm:
-
-```json
-{
-  "questions": [
-    {
-      "question": "Does this configuration look correct?",
-      "header": "Confirm",
-      "multiSelect": false,
-      "options": [
-        {
-          "label": "Yes, apply it",
-          "description": "Write the configuration to ~/.claude/settings.json"
-        },
-        {
-          "label": "No, cancel",
-          "description": "Cancel without making changes"
-        }
-      ]
-    }
-  ]
-}
-```
-
-### Step 6: Write Configuration
-
-If user confirms:
-
-1. Read existing `~/.claude/settings.json` (or start with `{}` if it doesn't exist)
-2. Merge the new `statusLine` configuration
-3. Write back to `~/.claude/settings.json` with proper JSON formatting (2-space indent)
-
-Use the Write tool to update the file.
-
-### Step 7: Confirm Success
-
-Tell the user:
-1. Configuration saved to `~/.claude/settings.json`
-2. **Changes take effect immediately** - no restart needed
-3. Summary of what was configured
-
-## Important Notes
-
-- The settings file is located at `~/.claude/settings.json`
-- If the file doesn't exist, create it with the statusLine configuration
-- Preserve all existing settings when merging
-- Use `npx -y` (not just `npx`) to skip prompts when using npm
diff --git a/commands/verify-custom-rules.md b/commands/verify-custom-rules.md
deleted file mode 100644
index d8fa293..0000000
--- a/commands/verify-custom-rules.md
+++ /dev/null
@@ -1,16 +0,0 @@
----
-description: Verify custom rules for Safety Net
-allowed-tools: Bash, Read, Write, AskUserQuestion
----
-
-You are helping the user verify the custom rules config file.
-
-## Your Task
-
-Run `npx -y cc-safety-net --verify-config` to check current validation status
-
-If the config has validation errors:
-1. Show the specific validation errors
-2. Run `npx -y cc-safety-net --custom-rules-doc` to read the schema documentation
-3. Use AskUserQuestion tool to offer fixes with your best suggestions
-4. After fixing, run `npx -y cc-safety-net --verify-config` to verify again
\ No newline at end of file
diff --git a/scripts/generate-changelog.ts b/scripts/generate-changelog.ts
index 2224119..9c500ed 100644
--- a/scripts/generate-changelog.ts
+++ b/scripts/generate-changelog.ts
@@ -17,7 +17,7 @@ export const INCLUDED_COMMIT_PATTERN = /^(feat|fix)(\([^)]+\))?:/i;
 export const REPO = process.env.GITHUB_REPOSITORY ?? 'kenryu42/claude-code-safety-net';
 
 /** Paths that indicate Claude Code plugin changes */
-const CLAUDE_CODE_PATHS = ['commands/', 'hooks/', '.claude-plugin/'];
+const CLAUDE_CODE_PATHS = ['skills/', 'hooks/', '.claude-plugin/'];
 
 /** Paths that indicate OpenCode plugin changes */
 const OPENCODE_PATHS = ['.opencode/'];
diff --git a/skills/set-custom-rules/SKILL.md b/skills/set-custom-rules/SKILL.md
new file mode 100644
index 0000000..6aa08fe
--- /dev/null
+++ b/skills/set-custom-rules/SKILL.md
@@ -0,0 +1,35 @@
+---
+name: set-custom-rules
+description: Configure cc-safety-net custom rules.
+disable-model-invocation: true
+---
+
+# Set Custom Rules
+
+## Workflow
+
+Help the user configure custom blocking rules for Safety Net.
+
+1. Run `npx -y cc-safety-net --custom-rules-doc` and use that schema documentation as the source of truth.
+2. Ask which scope to configure:
+   - User scope: `~/.cc-safety-net/config.json`, applies to all projects.
+   - Project scope: `.safety-net.json`, applies only to the current project.
+3. Show a few natural-language examples, then ask the user to describe the rules they want:
+   - Block `git add -A` and `git add .` to prevent blanket staging.
+   - Block `npm install -g` to prevent global package installs.
+   - Block `docker system prune` to prevent accidental cleanup.
+4. Convert the request into valid Safety Net JSON using the schema documentation. Show the generated config to the user and ask whether it looks correct.
+5. Check existing configs before writing:
+   - User config: `cat ~/.cc-safety-net/config.json 2>/dev/null || echo "No user config found"`
+   - Project config: `cat .safety-net.json 2>/dev/null || echo "No project config found"`
+6. If the selected scope already has a config, show it and ask whether to merge or replace. When merging, preserve unrelated existing rules and update same-name rules with the new version.
+7. Write the selected config file only after user confirmation.
+8. Run `npx -y cc-safety-net --verify-config`.
+9. If validation fails, show the exact errors, suggest the smallest fix, and confirm before changing the config again.
+10. Confirm the saved path, state that changes take effect immediately, and summarize the added or updated rules.
+
+## Rules
+
+- Custom rules can only add restrictions; they cannot bypass built-in Safety Net protections.
+- Rule names must be unique case-insensitively.
+- If a config is invalid, Safety Net ignores the entire custom config and uses built-in rules only.
diff --git a/skills/set-custom-rules/agents/openai.yaml b/skills/set-custom-rules/agents/openai.yaml
new file mode 100644
index 0000000..cb3ce1f
--- /dev/null
+++ b/skills/set-custom-rules/agents/openai.yaml
@@ -0,0 +1,6 @@
+interface:
+  display_name: "Set Custom Rules"
+  short_description: "Configure Safety Net custom rules"
+  default_prompt: "Use $set-custom-rules to configure Safety Net custom blocking rules."
+policy:
+  allow_implicit_invocation: false
diff --git a/skills/verify-custom-rules/SKILL.md b/skills/verify-custom-rules/SKILL.md
new file mode 100644
index 0000000..6c0cfed
--- /dev/null
+++ b/skills/verify-custom-rules/SKILL.md
@@ -0,0 +1,29 @@
+---
+name: verify-custom-rules
+description: Verify cc-safety-net custom rules.
+disable-model-invocation: true
+---
+
+# Verify Custom Rules
+
+## Workflow
+
+Help the user verify the current Safety Net custom rules config.
+
+1. Run `npx -y cc-safety-net --verify-config` to check the current validation status.
+2. If validation succeeds, report the success and the validated config path or paths shown by the command.
+3. If validation fails, show the exact validation errors.
+4. Run `npx -y cc-safety-net --custom-rules-doc` and use the schema documentation as the source of truth for fixes.
+5. Inspect the relevant config file before proposing edits:
+   - User config: `~/.cc-safety-net/config.json`
+   - Project config: `.safety-net.json`
+6. Suggest the smallest schema-compliant fix that preserves the user's intended restrictions.
+7. Ask for confirmation before editing any config file.
+8. After fixing, run `npx -y cc-safety-net --verify-config` again.
+9. Confirm the final validation result and summarize the changes made.
+
+## Rules
+
+- Do not delete failing rules unless the user explicitly asks for removal.
+- Do not weaken or bypass built-in Safety Net protections.
+- Treat invalid configs as urgent because Safety Net ignores the entire custom config and uses built-in rules only.
diff --git a/skills/verify-custom-rules/agents/openai.yaml b/skills/verify-custom-rules/agents/openai.yaml
new file mode 100644
index 0000000..62d8265
--- /dev/null
+++ b/skills/verify-custom-rules/agents/openai.yaml
@@ -0,0 +1,6 @@
+interface:
+  display_name: "Verify Custom Rules"
+  short_description: "Validate Safety Net custom rules"
+  default_prompt: "Use $verify-custom-rules to validate Safety Net custom rules config."
+policy:
+  allow_implicit_invocation: false
diff --git a/tests/scripts/generate-changelog.test.ts b/tests/scripts/generate-changelog.test.ts
index 891d7c5..0a1ba33 100644
--- a/tests/scripts/generate-changelog.test.ts
+++ b/tests/scripts/generate-changelog.test.ts
@@ -164,13 +164,13 @@ describe('generateChangelog', () => {
     const runner = createRunner({
       'git log v1.0.0..HEAD --oneline --format="%h %s"': [
         'abc123 feat: core change',
-        'bcd234 fix(commands): adjust',
+        'bcd234 fix(skills): adjust',
         'cde345 fix(opencode): tweak',
         'eee111 feat: missing files',
         'fff222 chore: skip',
       ].join('\n'),
       'git diff-tree --no-commit-id --name-only -r abc123': 'src/core/analyze.ts\n',
-      'git diff-tree --no-commit-id --name-only -r bcd234': 'commands/example.json\n',
+      'git diff-tree --no-commit-id --name-only -r bcd234': 'skills/example/SKILL.md\n',
       'git diff-tree --no-commit-id --name-only -r cde345': '.opencode/config.json\n',
       'git diff-tree --no-commit-id --name-only -r eee111': () => {
         throw new Error('boom');
@@ -181,7 +181,7 @@ describe('generateChangelog', () => {
 
     expect(changelog).toEqual({
       core: ['- abc123 feat: core change', '- eee111 feat: missing files'],
-      claudeCode: ['- bcd234 fix(commands): adjust'],
+      claudeCode: ['- bcd234 fix(skills): adjust'],
       openCode: ['- cde345 fix(opencode): tweak'],
     });
   });

From d899bb67019339c65ffcfeaa21d96a908624130e Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Mon, 4 May 2026 20:38:33 +0900
Subject: [PATCH 03/16] feat(doctor): migrate Gemini CLI hook detection to
 extensions list output

Replace file-based detection (extension-enablement.json + settings.json)
with parsing  command output. This approach
checks for the safety-net source URL and verifies Enabled (User) and
Enabled (Workspace) flags, eliminating the need to read local config
files directly.

Also improve defaultVersionFetcher to return stderr output when a
successful command writes no stdout (needed for gemini CLI behavior).
---
 dist/bin/cc-safety-net.js            | 128 +++++++++----------
 dist/bin/doctor/hooks.d.ts           |   1 +
 dist/bin/doctor/types.d.ts           |   2 +
 src/bin/doctor/hooks.ts              | 158 ++++++++---------------
 src/bin/doctor/index.ts              |   1 +
 src/bin/doctor/system-info.ts        |  40 ++++--
 src/bin/doctor/types.ts              |   2 +
 tests/bin/doctor/format.test.ts      |   7 ++
 tests/bin/doctor/hooks.test.ts       | 181 ++++++++-------------------
 tests/bin/doctor/system-info.test.ts |  21 ++++
 tests/helpers.ts                     |   7 ++
 11 files changed, 238 insertions(+), 310 deletions(-)

diff --git a/dist/bin/cc-safety-net.js b/dist/bin/cc-safety-net.js
index bb23344..8d1e94a 100755
--- a/dist/bin/cc-safety-net.js
+++ b/dist/bin/cc-safety-net.js
@@ -5050,6 +5050,8 @@ function analyzeCommand(command, options = {}) {
 
 // src/bin/doctor/hooks.ts
 var COPILOT_PLUGIN_CONFIG_PATH = "copilot-plugin";
+var GEMINI_EXTENSIONS_LIST_CONFIG_PATH = "gemini extensions list";
+var GEMINI_SAFETY_NET_SOURCE = "https://github.com/kenryu42/gemini-safety-net";
 var SELF_TEST_CASES = [
   { command: "git reset --hard", description: "git reset --hard", expectBlocked: true },
   { command: "rm -rf /", description: "rm -rf /", expectBlocked: true },
@@ -5234,81 +5236,59 @@ function detectOpenCode(homeDir) {
     errors: errors.length > 0 ? errors : undefined
   };
 }
-function checkGeminiHooksEnabled(homeDir, cwd, errors) {
-  const candidates = [
-    join5(homeDir, ".gemini", "settings.json"),
-    join5(cwd, ".gemini", "settings.json")
-  ];
-  for (const settingsPath of candidates) {
-    if (existsSync6(settingsPath)) {
-      try {
-        const settings = JSON.parse(readFileSync6(settingsPath, "utf-8"));
-        if (settings.tools?.enableHooks === true) {
-          return { enabled: true, configPath: settingsPath };
-        }
-      } catch (e) {
-        errors.push(`Failed to parse ${settingsPath}: ${e instanceof Error ? e.message : String(e)}`);
-      }
-    }
-  }
-  return { enabled: false };
-}
-function detectGeminiCLI(homeDir, cwd) {
-  const errors = [];
-  const extensionPath = join5(homeDir, ".gemini", "extensions", "extension-enablement.json");
-  if (!existsSync6(extensionPath)) {
+function detectGeminiCLI(extensionsListOutput) {
+  if (!extensionsListOutput) {
     return { platform: "gemini-cli", status: "n/a" };
   }
-  let isInstalled = false;
-  let isEnabled = false;
-  try {
-    const extensionConfig = JSON.parse(readFileSync6(extensionPath, "utf-8"));
-    const pluginConfig = extensionConfig["gemini-safety-net"];
-    if (pluginConfig) {
-      isInstalled = true;
-      const overrides = pluginConfig.overrides ?? [];
-      isEnabled = overrides.some((o) => !o.startsWith("!"));
-    }
-  } catch (e) {
-    errors.push(`Failed to parse extension-enablement.json: ${e instanceof Error ? e.message : String(e)}`);
-  }
-  if (!isInstalled) {
-    return {
-      platform: "gemini-cli",
-      status: "n/a",
-      errors: errors.length > 0 ? errors : undefined
-    };
+  const extension = _parseGeminiExtensionsList(extensionsListOutput).find((item) => item.source?.includes(GEMINI_SAFETY_NET_SOURCE));
+  if (!extension) {
+    return { platform: "gemini-cli", status: "n/a" };
   }
-  if (!isEnabled) {
-    errors.push("Plugin is installed but disabled (no enabled workspace overrides)");
+  const errors = [
+    ...extension.enabledUser === true ? [] : ["Enabled (User) is not true"],
+    ...extension.enabledWorkspace === true ? [] : ["Enabled (Workspace) is not true"]
+  ];
+  if (errors.length > 0) {
     return {
       platform: "gemini-cli",
       status: "disabled",
-      method: "extension plugin",
-      configPath: extensionPath,
+      method: "extension list",
+      configPath: GEMINI_EXTENSIONS_LIST_CONFIG_PATH,
       errors
     };
   }
-  const hooksCheck = checkGeminiHooksEnabled(homeDir, cwd, errors);
-  if (hooksCheck.enabled) {
-    return {
-      platform: "gemini-cli",
-      status: "configured",
-      method: "extension plugin",
-      configPath: extensionPath,
-      selfTest: runSelfTest(),
-      errors: errors.length > 0 ? errors : undefined
-    };
-  }
-  errors.push("Hooks are not enabled (set tools.enableHooks: true in settings.json)");
   return {
     platform: "gemini-cli",
-    status: "n/a",
-    method: "extension plugin",
-    configPath: extensionPath,
-    errors
+    status: "configured",
+    method: "extension list",
+    configPath: GEMINI_EXTENSIONS_LIST_CONFIG_PATH,
+    selfTest: runSelfTest()
   };
 }
+function _parseGeminiExtensionsList(output) {
+  const blocks = output.split(`
+`).reduce((result, line) => {
+    if (/^\S/.test(line) || result.length === 0) {
+      result.push(line);
+      return result;
+    }
+    const index = result.length - 1;
+    result[index] = `${result[index]}
+${line}`;
+    return result;
+  }, []);
+  return blocks.map((block) => ({
+    source: /^\s*Source:\s*(.+)$/m.exec(block)?.[1],
+    enabledUser: _parseGeminiEnabledValue(block, "User"),
+    enabledWorkspace: _parseGeminiEnabledValue(block, "Workspace")
+  }));
+}
+function _parseGeminiEnabledValue(block, scope) {
+  const match = new RegExp(`^\\s*Enabled \\(${scope}\\):\\s*(true|false)\\s*$`, "im").exec(block);
+  if (!match)
+    return;
+  return match[1] === "true";
+}
 function _isSafetyNetCopilotCommand(command) {
   if (!command?.includes("cc-safety-net"))
     return false;
@@ -5519,7 +5499,7 @@ function detectAllHooks(cwd, options) {
   return [
     detectClaudeCode(homeDir),
     detectOpenCode(homeDir),
-    detectGeminiCLI(homeDir, cwd),
+    detectGeminiCLI(options?.geminiExtensionsListOutput),
     detectCopilot()
   ];
 }
@@ -5543,10 +5523,13 @@ var defaultVersionFetcher = async (args) => {
       });
       let isSettled = false;
       let output = "";
+      let errorOutput = "";
       proc.stdout.on("data", (data) => {
         output += data.toString();
       });
-      proc.stderr.on("data", () => {});
+      proc.stderr.on("data", (data) => {
+        errorOutput += data.toString();
+      });
       const finish = (value) => {
         if (isSettled)
           return;
@@ -5559,7 +5542,7 @@ var defaultVersionFetcher = async (args) => {
         finish(null);
       }, VERSION_FETCH_TIMEOUT_MS);
       proc.on("close", (code) => {
-        finish(code === 0 ? output.trim() || null : null);
+        finish(code === 0 ? output.trim() || errorOutput.trim() || null : null);
       });
       proc.on("error", () => {
         finish(null);
@@ -5598,10 +5581,21 @@ async function getSystemInfo(fetcher = defaultVersionFetcher) {
     }
     return fallbackVersionPromise;
   };
-  const [claudeRaw, openCodeRaw, geminiRaw, copilotRaw, nodeRaw, npmRaw, bunRaw, pluginListRaw] = await Promise.all([
+  const [
+    claudeRaw,
+    openCodeRaw,
+    geminiRaw,
+    geminiExtensionsListOutput,
+    copilotRaw,
+    nodeRaw,
+    npmRaw,
+    bunRaw,
+    pluginListRaw
+  ] = await Promise.all([
     fetcher(["claude", "--version"]),
     fetcher(["opencode", "--version"]),
     fetcher(["gemini", "--version"]),
+    fetcher(["gemini", "extensions", "list"]),
     fetchCopilotVersion(),
     fetcher(["node", "--version"]),
     fetcher(["npm", "--version"]),
@@ -5613,6 +5607,7 @@ async function getSystemInfo(fetcher = defaultVersionFetcher) {
     claudeCodeVersion: parseVersion(claudeRaw),
     openCodeVersion: parseVersion(openCodeRaw),
     geminiCliVersion: parseVersion(geminiRaw),
+    geminiExtensionsListOutput,
     copilotCliVersion: parseVersion(copilotRaw),
     nodeVersion: parseVersion(nodeRaw),
     npmVersion: parseVersion(npmRaw),
@@ -5684,6 +5679,7 @@ async function runDoctor(options = {}) {
   const cwd = options.cwd ?? process.cwd();
   const system = await getSystemInfo();
   const hooks = detectAllHooks(cwd, {
+    geminiExtensionsListOutput: system.geminiExtensionsListOutput,
     copilotCliVersion: system.copilotCliVersion,
     copilotPluginInstalled: system.copilotPluginInstalled
   });
diff --git a/dist/bin/doctor/hooks.d.ts b/dist/bin/doctor/hooks.d.ts
index 616cbf6..1dfd515 100644
--- a/dist/bin/doctor/hooks.d.ts
+++ b/dist/bin/doctor/hooks.d.ts
@@ -5,6 +5,7 @@ import type { HookStatus } from '@/bin/doctor/types';
 import type { LoadConfigOptions } from '@/core/config';
 interface HookDetectOptions extends LoadConfigOptions {
     homeDir?: string;
+    geminiExtensionsListOutput?: string | null;
     copilotCliVersion?: string | null;
     copilotPluginInstalled?: boolean;
 }
diff --git a/dist/bin/doctor/types.d.ts b/dist/bin/doctor/types.d.ts
index 1cc8e55..a374e90 100644
--- a/dist/bin/doctor/types.d.ts
+++ b/dist/bin/doctor/types.d.ts
@@ -97,6 +97,8 @@ export interface SystemInfo {
     openCodeVersion: string | null;
     /** Gemini CLI version (from `gemini --version`) */
     geminiCliVersion: string | null;
+    /** Gemini CLI extension list output (from `gemini extensions list`) */
+    geminiExtensionsListOutput: string | null;
     /** Copilot CLI version (from `copilot --binary-version`, falling back to `copilot --version`) */
     copilotCliVersion: string | null;
     /** Node.js version (from `node --version`) */
diff --git a/src/bin/doctor/hooks.ts b/src/bin/doctor/hooks.ts
index 520f114..cafccff 100644
--- a/src/bin/doctor/hooks.ts
+++ b/src/bin/doctor/hooks.ts
@@ -12,6 +12,7 @@ import type { Config } from '@/types';
 
 interface HookDetectOptions extends LoadConfigOptions {
   homeDir?: string;
+  geminiExtensionsListOutput?: string | null;
   copilotCliVersion?: string | null;
   copilotPluginInstalled?: boolean;
 }
@@ -41,6 +42,8 @@ interface CopilotDetectionState {
 }
 
 const COPILOT_PLUGIN_CONFIG_PATH = 'copilot-plugin';
+const GEMINI_EXTENSIONS_LIST_CONFIG_PATH = 'gemini extensions list';
+const GEMINI_SAFETY_NET_SOURCE = 'https://github.com/kenryu42/gemini-safety-net';
 
 /** Self-test cases for validating the analyzer */
 const SELF_TEST_CASES: SelfTestCase[] = [
@@ -297,135 +300,82 @@ function detectOpenCode(homeDir: string): HookStatus {
   };
 }
 
-/**
- * Check if hooks are enabled in Gemini CLI settings.
- * Returns true if tools.enableHooks is true in either global or local settings.
- */
-function checkGeminiHooksEnabled(
-  homeDir: string,
-  cwd: string,
-  errors: string[],
-): { enabled: boolean; configPath?: string } {
-  const candidates = [
-    join(homeDir, '.gemini', 'settings.json'), // Global settings
-    join(cwd, '.gemini', 'settings.json'), // Local project settings
-  ];
-
-  for (const settingsPath of candidates) {
-    if (existsSync(settingsPath)) {
-      try {
-        const settings = JSON.parse(readFileSync(settingsPath, 'utf-8')) as {
-          tools?: { enableHooks?: boolean };
-        };
-        if (settings.tools?.enableHooks === true) {
-          return { enabled: true, configPath: settingsPath };
-        }
-      } catch (e) {
-        errors.push(
-          `Failed to parse ${settingsPath}: ${e instanceof Error ? e.message : String(e)}`,
-        );
-      }
-    }
-  }
-
-  return { enabled: false };
-}
-
 /**
  * Detect Gemini CLI hook configuration.
  *
  * Checks:
- * 1. ~/.gemini/extensions/extension-enablement.json for plugin installation
- *    - Plugin key "gemini-safety-net" must exist
- *    - At least one override must NOT start with "!" (not negated)
- * 2. ~/.gemini/settings.json or .gemini/settings.json for hooks being enabled
- *    - tools.enableHooks must be true
+ * 1. `gemini extensions list` output for the safety-net source URL
+ * 2. Enabled (User) and Enabled (Workspace) are both true
  *
  * Status meanings:
- * - 'configured': Plugin installed, has enabled overrides, and hooks enabled
- * - 'disabled': Plugin installed but all overrides are negated (start with '!')
- * - 'n/a': Plugin not installed, or installed but hooks not enabled
+ * - 'configured': Extension source is installed and enabled for user and workspace
+ * - 'disabled': Extension source is installed but not enabled for user or workspace
+ * - 'n/a': Extension source is not installed, or list output is unavailable
  */
-function detectGeminiCLI(homeDir: string, cwd: string): HookStatus {
-  const errors: string[] = [];
-
-  // Step 1: Check extension enablement for plugin installation
-  const extensionPath = join(homeDir, '.gemini', 'extensions', 'extension-enablement.json');
-
-  if (!existsSync(extensionPath)) {
+function detectGeminiCLI(extensionsListOutput: string | null | undefined): HookStatus {
+  if (!extensionsListOutput) {
     return { platform: 'gemini-cli', status: 'n/a' };
   }
 
-  let isInstalled = false;
-  let isEnabled = false;
+  const extension = _parseGeminiExtensionsList(extensionsListOutput).find((item) =>
+    item.source?.includes(GEMINI_SAFETY_NET_SOURCE),
+  );
 
-  try {
-    const extensionConfig = JSON.parse(readFileSync(extensionPath, 'utf-8')) as Record<
-      string,
-      { overrides?: string[] }
-    >;
-    const pluginConfig = extensionConfig['gemini-safety-net'];
-
-    if (pluginConfig) {
-      isInstalled = true;
-      const overrides = pluginConfig.overrides ?? [];
-      // Plugin is enabled if there's at least one override that doesn't start with "!"
-      // Empty overrides array means disabled (no workspaces enabled)
-      isEnabled = overrides.some((o) => !o.startsWith('!'));
-    }
-  } catch (e) {
-    errors.push(
-      `Failed to parse extension-enablement.json: ${e instanceof Error ? e.message : String(e)}`,
-    );
+  if (!extension) {
+    return { platform: 'gemini-cli', status: 'n/a' };
   }
 
-  // Plugin not found
-  if (!isInstalled) {
-    return {
-      platform: 'gemini-cli',
-      status: 'n/a',
-      errors: errors.length > 0 ? errors : undefined,
-    };
-  }
+  const errors = [
+    ...(extension.enabledUser === true ? [] : ['Enabled (User) is not true']),
+    ...(extension.enabledWorkspace === true ? [] : ['Enabled (Workspace) is not true']),
+  ];
 
-  // Plugin installed but all overrides are negated (disabled)
-  if (!isEnabled) {
-    errors.push('Plugin is installed but disabled (no enabled workspace overrides)');
+  if (errors.length > 0) {
     return {
       platform: 'gemini-cli',
       status: 'disabled',
-      method: 'extension plugin',
-      configPath: extensionPath,
+      method: 'extension list',
+      configPath: GEMINI_EXTENSIONS_LIST_CONFIG_PATH,
       errors,
     };
   }
 
-  // Step 2: Check if hooks are enabled in settings
-  const hooksCheck = checkGeminiHooksEnabled(homeDir, cwd, errors);
-
-  // Plugin is fully configured if installed, enabled, and hooks are enabled
-  if (hooksCheck.enabled) {
-    return {
-      platform: 'gemini-cli',
-      status: 'configured',
-      method: 'extension plugin',
-      configPath: extensionPath,
-      selfTest: runSelfTest(),
-      errors: errors.length > 0 ? errors : undefined,
-    };
-  }
-
-  // Plugin enabled but hooks not enabled in settings
-  errors.push('Hooks are not enabled (set tools.enableHooks: true in settings.json)');
   return {
     platform: 'gemini-cli',
-    status: 'n/a',
-    method: 'extension plugin',
-    configPath: extensionPath,
-    errors,
+    status: 'configured',
+    method: 'extension list',
+    configPath: GEMINI_EXTENSIONS_LIST_CONFIG_PATH,
+    selfTest: runSelfTest(),
   };
 }
 
+function _parseGeminiExtensionsList(
+  output: string,
+): Array<{ source?: string; enabledUser?: boolean; enabledWorkspace?: boolean }> {
+  const blocks = output.split('\n').reduce<string[]>((result, line) => {
+    if (/^\S/.test(line) || result.length === 0) {
+      result.push(line);
+      return result;
+    }
+
+    const index = result.length - 1;
+    result[index] = `${result[index]}\n${line}`;
+    return result;
+  }, []);
+
+  return blocks.map((block) => ({
+    source: /^\s*Source:\s*(.+)$/m.exec(block)?.[1],
+    enabledUser: _parseGeminiEnabledValue(block, 'User'),
+    enabledWorkspace: _parseGeminiEnabledValue(block, 'Workspace'),
+  }));
+}
+
+function _parseGeminiEnabledValue(block: string, scope: 'User' | 'Workspace'): boolean | undefined {
+  const match = new RegExp(`^\\s*Enabled \\(${scope}\\):\\s*(true|false)\\s*$`, 'im').exec(block);
+  if (!match) return undefined;
+  return match[1] === 'true';
+}
+
 function _isSafetyNetCopilotCommand(command: string | undefined): boolean {
   if (!command?.includes('cc-safety-net')) return false;
   return /(^|\s)(--copilot-cli|-cp)(\s|$)/.test(command);
@@ -712,7 +662,7 @@ export function detectAllHooks(cwd: string, options?: HookDetectOptions): HookSt
   return [
     detectClaudeCode(homeDir),
     detectOpenCode(homeDir),
-    detectGeminiCLI(homeDir, cwd),
+    detectGeminiCLI(options?.geminiExtensionsListOutput),
     detectCopilot(),
   ];
 }
diff --git a/src/bin/doctor/index.ts b/src/bin/doctor/index.ts
index 30654e4..7183a1c 100644
--- a/src/bin/doctor/index.ts
+++ b/src/bin/doctor/index.ts
@@ -28,6 +28,7 @@ export async function runDoctor(options: DoctorOptions = {}): Promise<number> {
   // Collect all data
   const system = await getSystemInfo();
   const hooks = detectAllHooks(cwd, {
+    geminiExtensionsListOutput: system.geminiExtensionsListOutput,
     copilotCliVersion: system.copilotCliVersion,
     copilotPluginInstalled: system.copilotPluginInstalled,
   });
diff --git a/src/bin/doctor/system-info.ts b/src/bin/doctor/system-info.ts
index 3eb426c..281cfc2 100644
--- a/src/bin/doctor/system-info.ts
+++ b/src/bin/doctor/system-info.ts
@@ -44,10 +44,13 @@ export const defaultVersionFetcher: VersionFetcher = async (args: string[]) => {
       let isSettled = false;
 
       let output = '';
+      let errorOutput = '';
       proc.stdout.on('data', (data: Buffer) => {
         output += data.toString();
       });
-      proc.stderr.on('data', () => {});
+      proc.stderr.on('data', (data: Buffer) => {
+        errorOutput += data.toString();
+      });
 
       const finish = (value: string | null): void => {
         if (isSettled) return;
@@ -62,7 +65,7 @@ export const defaultVersionFetcher: VersionFetcher = async (args: string[]) => {
       }, VERSION_FETCH_TIMEOUT_MS);
 
       proc.on('close', (code) => {
-        finish(code === 0 ? output.trim() || null : null);
+        finish(code === 0 ? output.trim() || errorOutput.trim() || null : null);
       });
 
       proc.on('error', () => {
@@ -120,23 +123,34 @@ export async function getSystemInfo(
   };
 
   // Run all version fetches in parallel
-  const [claudeRaw, openCodeRaw, geminiRaw, copilotRaw, nodeRaw, npmRaw, bunRaw, pluginListRaw] =
-    await Promise.all([
-      fetcher(['claude', '--version']),
-      fetcher(['opencode', '--version']),
-      fetcher(['gemini', '--version']),
-      fetchCopilotVersion(),
-      fetcher(['node', '--version']),
-      fetcher(['npm', '--version']),
-      fetcher(['bun', '--version']),
-      fetcher(['copilot', 'plugin', 'list']),
-    ]);
+  const [
+    claudeRaw,
+    openCodeRaw,
+    geminiRaw,
+    geminiExtensionsListOutput,
+    copilotRaw,
+    nodeRaw,
+    npmRaw,
+    bunRaw,
+    pluginListRaw,
+  ] = await Promise.all([
+    fetcher(['claude', '--version']),
+    fetcher(['opencode', '--version']),
+    fetcher(['gemini', '--version']),
+    fetcher(['gemini', 'extensions', 'list']),
+    fetchCopilotVersion(),
+    fetcher(['node', '--version']),
+    fetcher(['npm', '--version']),
+    fetcher(['bun', '--version']),
+    fetcher(['copilot', 'plugin', 'list']),
+  ]);
 
   return {
     version: CURRENT_VERSION,
     claudeCodeVersion: parseVersion(claudeRaw),
     openCodeVersion: parseVersion(openCodeRaw),
     geminiCliVersion: parseVersion(geminiRaw),
+    geminiExtensionsListOutput,
     copilotCliVersion: parseVersion(copilotRaw),
     nodeVersion: parseVersion(nodeRaw),
     npmVersion: parseVersion(npmRaw),
diff --git a/src/bin/doctor/types.ts b/src/bin/doctor/types.ts
index 9e1eeed..2f79a97 100644
--- a/src/bin/doctor/types.ts
+++ b/src/bin/doctor/types.ts
@@ -110,6 +110,8 @@ export interface SystemInfo {
   openCodeVersion: string | null;
   /** Gemini CLI version (from `gemini --version`) */
   geminiCliVersion: string | null;
+  /** Gemini CLI extension list output (from `gemini extensions list`) */
+  geminiExtensionsListOutput: string | null;
   /** Copilot CLI version (from `copilot --binary-version`, falling back to `copilot --version`) */
   copilotCliVersion: string | null;
   /** Node.js version (from `node --version`) */
diff --git a/tests/bin/doctor/format.test.ts b/tests/bin/doctor/format.test.ts
index b66f729..2f441db 100644
--- a/tests/bin/doctor/format.test.ts
+++ b/tests/bin/doctor/format.test.ts
@@ -367,6 +367,7 @@ describe('formatSystemInfoSection', () => {
       claudeCodeVersion: null,
       openCodeVersion: null,
       geminiCliVersion: null,
+      geminiExtensionsListOutput: null,
       copilotCliVersion: null,
       nodeVersion: '22.0.0',
       npmVersion: null,
@@ -409,6 +410,7 @@ describe('formatConfigSection', () => {
         claudeCodeVersion: '1.0.0',
         openCodeVersion: '0.1.0',
         geminiCliVersion: null,
+        geminiExtensionsListOutput: null,
         copilotCliVersion: null,
         nodeVersion: '22.0.0',
         npmVersion: '10.0.0',
@@ -461,6 +463,7 @@ describe('formatConfigSection', () => {
         claudeCodeVersion: '1.0.0',
         openCodeVersion: '0.1.0',
         geminiCliVersion: null,
+        geminiExtensionsListOutput: null,
         copilotCliVersion: null,
         nodeVersion: '22.0.0',
         npmVersion: '10.0.0',
@@ -504,6 +507,7 @@ describe('formatConfigSection', () => {
         claudeCodeVersion: '1.0.0',
         openCodeVersion: '0.1.0',
         geminiCliVersion: null,
+        geminiExtensionsListOutput: null,
         copilotCliVersion: null,
         nodeVersion: '22.0.0',
         npmVersion: '10.0.0',
@@ -535,6 +539,7 @@ describe('formatSummary', () => {
         claudeCodeVersion: null,
         openCodeVersion: null,
         geminiCliVersion: null,
+        geminiExtensionsListOutput: null,
         copilotCliVersion: null,
         nodeVersion: '22.0.0',
         npmVersion: '10.0.0',
@@ -562,6 +567,7 @@ describe('formatSummary', () => {
         claudeCodeVersion: null,
         openCodeVersion: null,
         geminiCliVersion: null,
+        geminiExtensionsListOutput: null,
         copilotCliVersion: null,
         nodeVersion: '22.0.0',
         npmVersion: '10.0.0',
@@ -589,6 +595,7 @@ describe('formatSummary', () => {
         claudeCodeVersion: null,
         openCodeVersion: null,
         geminiCliVersion: null,
+        geminiExtensionsListOutput: null,
         copilotCliVersion: null,
         nodeVersion: '22.0.0',
         npmVersion: '10.0.0',
diff --git a/tests/bin/doctor/hooks.test.ts b/tests/bin/doctor/hooks.test.ts
index 8ea142c..e6bf7de 100644
--- a/tests/bin/doctor/hooks.test.ts
+++ b/tests/bin/doctor/hooks.test.ts
@@ -59,6 +59,19 @@ function _writeCopilotInlineConfig(
   );
 }
 
+function _geminiExtensionsListOutput(options: {
+  source?: string;
+  enabledUser?: boolean;
+  enabledWorkspace?: boolean;
+}): string {
+  return `✓ gemini-safety-net (1.0.0)
+ ID: 9ca2544181766a522b98bbd5d0b327b297d2582960a40db855dc048a3b8e91e3
+ Path: /Users/kenryu/.gemini/extensions/gemini-safety-net
+ Source: ${options.source ?? 'https://github.com/kenryu42/gemini-safety-net'} (Type: github-release)
+ Enabled (User): ${options.enabledUser ?? true}
+ Enabled (Workspace): ${options.enabledWorkspace ?? true}`;
+}
+
 describe('detectAllHooks', () => {
   test('detects configured hooks and runs self-test', () => {
     const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
@@ -86,28 +99,15 @@ describe('detectAllHooks', () => {
       }`,
     );
 
-    const geminiDir = join(homeDir, '.gemini');
-    const geminiExtDir = join(geminiDir, 'extensions');
-    mkdirSync(geminiExtDir, { recursive: true });
-    writeFileSync(
-      join(geminiExtDir, 'extension-enablement.json'),
-      JSON.stringify({
-        'gemini-safety-net': { overrides: ['/Users/kenryu/*'] },
-      }),
-    );
-    writeFileSync(
-      join(geminiDir, 'settings.json'),
-      JSON.stringify({
-        tools: { enableHooks: true },
-      }),
-    );
-
     const copilotDir = join(projectDir, '.github', 'hooks');
     mkdirSync(copilotDir, { recursive: true });
     _writeCopilotHook(join(copilotDir, 'safety-net.json'));
 
     try {
-      const hooks = detectAllHooks(projectDir, { homeDir });
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        geminiExtensionsListOutput: _geminiExtensionsListOutput({}),
+      });
 
       const claude = hooks.find((hook) => hook.platform === 'claude-code');
       expect(claude?.status).toBe('configured');
@@ -121,7 +121,7 @@ describe('detectAllHooks', () => {
 
       const gemini = hooks.find((hook) => hook.platform === 'gemini-cli');
       expect(gemini?.status).toBe('configured');
-      expect(gemini?.method).toBe('extension plugin');
+      expect(gemini?.method).toBe('extension list');
       expect(gemini?.selfTest?.passed).toBe(gemini?.selfTest?.total);
 
       const copilot = hooks.find((hook) => hook.platform === 'copilot-cli');
@@ -174,11 +174,6 @@ describe('detectAllHooks', () => {
     mkdirSync(opencodeDir, { recursive: true });
     writeFileSync(join(opencodeDir, 'opencode.json'), '{ invalid json }');
 
-    const geminiDir = join(homeDir, '.gemini');
-    const geminiExtDir = join(geminiDir, 'extensions');
-    mkdirSync(geminiExtDir, { recursive: true });
-    writeFileSync(join(geminiExtDir, 'extension-enablement.json'), '{ invalid json }');
-
     try {
       const hooks = detectAllHooks(projectDir, { homeDir });
 
@@ -192,7 +187,7 @@ describe('detectAllHooks', () => {
 
       const gemini = hooks.find((hook) => hook.platform === 'gemini-cli');
       expect(gemini?.status).toBe('n/a');
-      expect(gemini?.errors?.some((e) => e.includes('Failed to parse'))).toBe(true);
+      expect(gemini?.errors).toBeUndefined();
     } finally {
       rmSync(tmpBase, { recursive: true, force: true });
     }
@@ -249,172 +244,104 @@ describe('detectAllHooks', () => {
     }
   });
 
-  test('Gemini CLI: disabled when overrides is empty', () => {
+  test('Gemini CLI: configured when safety-net source is enabled for user and workspace', () => {
     const tmpBase = join(tmpdir(), `doctor-gemini-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');
     const projectDir = join(tmpBase, 'project');
     mkdirSync(homeDir, { recursive: true });
     mkdirSync(projectDir, { recursive: true });
 
-    const geminiExtDir = join(homeDir, '.gemini', 'extensions');
-    mkdirSync(geminiExtDir, { recursive: true });
-    writeFileSync(
-      join(geminiExtDir, 'extension-enablement.json'),
-      JSON.stringify({
-        'gemini-safety-net': { overrides: [] },
-      }),
-    );
-
     try {
-      const hooks = detectAllHooks(projectDir, { homeDir });
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        geminiExtensionsListOutput: _geminiExtensionsListOutput({}),
+      });
       const gemini = hooks.find((hook) => hook.platform === 'gemini-cli');
-      expect(gemini?.status).toBe('disabled');
-      expect(gemini?.errors?.some((e) => e.includes('no enabled workspace overrides'))).toBe(true);
+      expect(gemini?.status).toBe('configured');
+      expect(gemini?.method).toBe('extension list');
+      expect(gemini?.selfTest?.failed).toBe(0);
     } finally {
       rmSync(tmpBase, { recursive: true, force: true });
     }
   });
 
-  test('Gemini CLI: disabled when all overrides are negated', () => {
+  test('Gemini CLI: disabled when safety-net source is disabled for user', () => {
     const tmpBase = join(tmpdir(), `doctor-gemini-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');
     const projectDir = join(tmpBase, 'project');
     mkdirSync(homeDir, { recursive: true });
     mkdirSync(projectDir, { recursive: true });
 
-    const geminiExtDir = join(homeDir, '.gemini', 'extensions');
-    mkdirSync(geminiExtDir, { recursive: true });
-    writeFileSync(
-      join(geminiExtDir, 'extension-enablement.json'),
-      JSON.stringify({
-        'gemini-safety-net': { overrides: ['!/Users/disabled/*', '!/other/*'] },
-      }),
-    );
-
     try {
-      const hooks = detectAllHooks(projectDir, { homeDir });
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        geminiExtensionsListOutput: _geminiExtensionsListOutput({ enabledUser: false }),
+      });
       const gemini = hooks.find((hook) => hook.platform === 'gemini-cli');
       expect(gemini?.status).toBe('disabled');
-      expect(gemini?.errors?.some((e) => e.includes('no enabled workspace overrides'))).toBe(true);
-    } finally {
-      rmSync(tmpBase, { recursive: true, force: true });
-    }
-  });
-
-  test('Gemini CLI: not configured when hooks not enabled in settings', () => {
-    const tmpBase = join(tmpdir(), `doctor-gemini-${Date.now()}`);
-    const homeDir = join(tmpBase, 'home');
-    const projectDir = join(tmpBase, 'project');
-    mkdirSync(homeDir, { recursive: true });
-    mkdirSync(projectDir, { recursive: true });
-
-    const geminiDir = join(homeDir, '.gemini');
-    const geminiExtDir = join(geminiDir, 'extensions');
-    mkdirSync(geminiExtDir, { recursive: true });
-    writeFileSync(
-      join(geminiExtDir, 'extension-enablement.json'),
-      JSON.stringify({
-        'gemini-safety-net': { overrides: ['/Users/kenryu/*'] },
-      }),
-    );
-
-    try {
-      const hooks = detectAllHooks(projectDir, { homeDir });
-      const gemini = hooks.find((hook) => hook.platform === 'gemini-cli');
-      expect(gemini?.status).toBe('n/a');
-      expect(gemini?.errors?.some((e) => e.includes('tools.enableHooks'))).toBe(true);
+      expect(gemini?.errors?.some((e) => e.includes('Enabled (User)'))).toBe(true);
+      expect(gemini?.selfTest).toBeUndefined();
     } finally {
       rmSync(tmpBase, { recursive: true, force: true });
     }
   });
 
-  test('Gemini CLI: uses local project settings.json for hooks check', () => {
+  test('Gemini CLI: disabled when safety-net source is disabled for workspace', () => {
     const tmpBase = join(tmpdir(), `doctor-gemini-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');
     const projectDir = join(tmpBase, 'project');
     mkdirSync(homeDir, { recursive: true });
     mkdirSync(projectDir, { recursive: true });
 
-    const geminiExtDir = join(homeDir, '.gemini', 'extensions');
-    mkdirSync(geminiExtDir, { recursive: true });
-    writeFileSync(
-      join(geminiExtDir, 'extension-enablement.json'),
-      JSON.stringify({
-        'gemini-safety-net': { overrides: ['/Users/kenryu/*'] },
-      }),
-    );
-
-    const localGeminiDir = join(projectDir, '.gemini');
-    mkdirSync(localGeminiDir, { recursive: true });
-    writeFileSync(
-      join(localGeminiDir, 'settings.json'),
-      JSON.stringify({
-        tools: { enableHooks: true },
-      }),
-    );
-
     try {
-      const hooks = detectAllHooks(projectDir, { homeDir });
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        geminiExtensionsListOutput: _geminiExtensionsListOutput({ enabledWorkspace: false }),
+      });
       const gemini = hooks.find((hook) => hook.platform === 'gemini-cli');
-      expect(gemini?.status).toBe('configured');
-      expect(gemini?.method).toBe('extension plugin');
+      expect(gemini?.status).toBe('disabled');
+      expect(gemini?.errors?.some((e) => e.includes('Enabled (Workspace)'))).toBe(true);
+      expect(gemini?.selfTest).toBeUndefined();
     } finally {
       rmSync(tmpBase, { recursive: true, force: true });
     }
   });
 
-  test('Gemini CLI: not configured when plugin key does not exist', () => {
+  test('Gemini CLI: not configured when safety-net source is missing', () => {
     const tmpBase = join(tmpdir(), `doctor-gemini-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');
     const projectDir = join(tmpBase, 'project');
     mkdirSync(homeDir, { recursive: true });
     mkdirSync(projectDir, { recursive: true });
 
-    const geminiExtDir = join(homeDir, '.gemini', 'extensions');
-    mkdirSync(geminiExtDir, { recursive: true });
-    writeFileSync(
-      join(geminiExtDir, 'extension-enablement.json'),
-      JSON.stringify({
-        'other-plugin': { overrides: ['/Users/kenryu/*'] },
-      }),
-    );
-
     try {
-      const hooks = detectAllHooks(projectDir, { homeDir });
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        geminiExtensionsListOutput: _geminiExtensionsListOutput({
+          source: 'https://github.com/gemini-cli-extensions/code-review',
+        }),
+      });
       const gemini = hooks.find((hook) => hook.platform === 'gemini-cli');
       expect(gemini?.status).toBe('n/a');
-      expect(gemini?.errors).toBeUndefined();
+      expect(gemini?.selfTest).toBeUndefined();
     } finally {
       rmSync(tmpBase, { recursive: true, force: true });
     }
   });
 
-  test('Gemini CLI: reports error when settings.json is malformed', () => {
+  test('Gemini CLI: not configured when extensions list is unavailable', () => {
     const tmpBase = join(tmpdir(), `doctor-gemini-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');
     const projectDir = join(tmpBase, 'project');
     mkdirSync(homeDir, { recursive: true });
     mkdirSync(projectDir, { recursive: true });
 
-    const geminiDir = join(homeDir, '.gemini');
-    const geminiExtDir = join(geminiDir, 'extensions');
-    mkdirSync(geminiExtDir, { recursive: true });
-
-    writeFileSync(
-      join(geminiExtDir, 'extension-enablement.json'),
-      JSON.stringify({
-        'gemini-safety-net': { overrides: ['/Users/kenryu/*'] },
-      }),
-    );
-
-    writeFileSync(join(geminiDir, 'settings.json'), '{ invalid json }');
-
     try {
-      const hooks = detectAllHooks(projectDir, { homeDir });
+      const hooks = detectAllHooks(projectDir, { homeDir, geminiExtensionsListOutput: null });
       const gemini = hooks.find((hook) => hook.platform === 'gemini-cli');
       expect(gemini?.status).toBe('n/a');
-      expect(gemini?.errors?.some((e) => e.includes('Failed to parse'))).toBe(true);
-      expect(gemini?.errors?.some((e) => e.includes('tools.enableHooks'))).toBe(true);
+      expect(gemini?.errors).toBeUndefined();
+      expect(gemini?.selfTest).toBeUndefined();
     } finally {
       rmSync(tmpBase, { recursive: true, force: true });
     }
diff --git a/tests/bin/doctor/system-info.test.ts b/tests/bin/doctor/system-info.test.ts
index 418f516..b829dbf 100644
--- a/tests/bin/doctor/system-info.test.ts
+++ b/tests/bin/doctor/system-info.test.ts
@@ -35,6 +35,10 @@ describe('getSystemInfo', () => {
     expect(sysInfo.geminiCliVersion === null || typeof sysInfo.geminiCliVersion === 'string').toBe(
       true,
     );
+    expect(
+      sysInfo.geminiExtensionsListOutput === null ||
+        typeof sysInfo.geminiExtensionsListOutput === 'string',
+    ).toBe(true);
     expect(
       sysInfo.copilotCliVersion === null || typeof sysInfo.copilotCliVersion === 'string',
     ).toBe(true);
@@ -54,6 +58,13 @@ describe('getSystemInfo', () => {
     expect(sysInfo.copilotCliVersion).toBe('1.0.9');
   });
 
+  test('includes Gemini extensions list output with mock fetcher', async () => {
+    const sysInfo = await getSystemInfo(mockVersionFetcher);
+    expect(sysInfo.geminiExtensionsListOutput).toContain(
+      'https://github.com/kenryu42/gemini-safety-net',
+    );
+  });
+
   test('starts both copilot version probes immediately and prefers --binary-version', async () => {
     const calls: string[][] = [];
     const binaryVersion = createDeferred<string | null>();
@@ -141,6 +152,7 @@ describe('getSystemInfo', () => {
     const result = await getSystemInfo(failingFetcher);
     expect(result.claudeCodeVersion).toBeNull();
     expect(result.copilotCliVersion).toBeNull();
+    expect(result.geminiExtensionsListOutput).toBeNull();
     expect(result.copilotPluginInstalled).toBe(false);
     expect(result.bunVersion).toBeNull();
     expect(result.nodeVersion).toBeNull();
@@ -229,6 +241,15 @@ describe('defaultVersionFetcher', () => {
     expect(result).toMatch(/^\d+\.\d+/);
   });
 
+  test('returns stderr output when a successful command writes no stdout', async () => {
+    const result = await defaultVersionFetcher([
+      'bun',
+      '-e',
+      'console.error("stderr-only output")',
+    ]);
+    expect(result).toBe('stderr-only output');
+  });
+
   test('returns null for commands that time out', async () => {
     const startedAt = Date.now();
     const result = await defaultVersionFetcher(['bun', '-e', 'setTimeout(() => {}, 3000)']);
diff --git a/tests/helpers.ts b/tests/helpers.ts
index 41a3a3f..0724468 100644
--- a/tests/helpers.ts
+++ b/tests/helpers.ts
@@ -75,6 +75,13 @@ export const mockVersionFetcher: VersionFetcher = async (args: string[]) => {
     return 'Installed plugins:\n  • copilot-safety-net (v1.0.0)';
   }
 
+  if (args[0] === 'gemini' && args[1] === 'extensions') {
+    return `✓ gemini-safety-net (1.0.0)
+ Source: https://github.com/kenryu42/gemini-safety-net (Type: github-release)
+ Enabled (User): true
+ Enabled (Workspace): true`;
+  }
+
   const cmd = args[0];
   const mockVersions: Record<string, string> = {
     claude: '1.0.0',

From 69c7f8a59251f6e5241c2c6390f40b541a83298a Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Mon, 4 May 2026 20:56:30 +0900
Subject: [PATCH 04/16] fix(doctor): parse commented JSON in Copilot CLI config
 files

---
 dist/bin/cc-safety-net.js      |  2 +-
 src/bin/doctor/hooks.ts        |  2 +-
 tests/bin/doctor/hooks.test.ts | 39 ++++++++++++++++++++++++++++++++++
 3 files changed, 41 insertions(+), 2 deletions(-)

diff --git a/dist/bin/cc-safety-net.js b/dist/bin/cc-safety-net.js
index 8d1e94a..f4471fa 100755
--- a/dist/bin/cc-safety-net.js
+++ b/dist/bin/cc-safety-net.js
@@ -5341,7 +5341,7 @@ function _hasSafetyNetCopilotHook(config) {
 }
 function _readCopilotConfigFile(configPath, errors) {
   try {
-    return JSON.parse(readFileSync6(configPath, "utf-8"));
+    return JSON.parse(stripJsonComments(readFileSync6(configPath, "utf-8")));
   } catch (e) {
     errors?.push(`Failed to parse ${configPath}: ${e instanceof Error ? e.message : String(e)}`);
     return;
diff --git a/src/bin/doctor/hooks.ts b/src/bin/doctor/hooks.ts
index cafccff..2dbe351 100644
--- a/src/bin/doctor/hooks.ts
+++ b/src/bin/doctor/hooks.ts
@@ -440,7 +440,7 @@ function _readCopilotConfigFile(
   errors?: string[],
 ): CopilotHookConfig | undefined {
   try {
-    return JSON.parse(readFileSync(configPath, 'utf-8')) as CopilotHookConfig;
+    return JSON.parse(stripJsonComments(readFileSync(configPath, 'utf-8'))) as CopilotHookConfig;
   } catch (e) {
     errors?.push(`Failed to parse ${configPath}: ${e instanceof Error ? e.message : String(e)}`);
     return undefined;
diff --git a/tests/bin/doctor/hooks.test.ts b/tests/bin/doctor/hooks.test.ts
index e6bf7de..5ae0d32 100644
--- a/tests/bin/doctor/hooks.test.ts
+++ b/tests/bin/doctor/hooks.test.ts
@@ -389,6 +389,45 @@ describe('detectAllHooks', () => {
     }
   });
 
+  test('Copilot CLI: accepts commented managed config when configured from installed plugin list', () => {
+    const tmpBase = join(tmpdir(), `doctor-copilot-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    const configDir = join(homeDir, '.copilot');
+    mkdirSync(projectDir, { recursive: true });
+    mkdirSync(configDir, { recursive: true });
+    writeFileSync(
+      join(configDir, 'config.json'),
+      `// User settings belong in settings.json.
+// This file is managed automatically.
+{
+  "installedPlugins": [
+    {
+      "name": "copilot-safety-net",
+      "version": "1.0.0"
+    }
+  ]
+}`,
+    );
+
+    try {
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        copilotCliVersion: '1.0.40',
+        copilotPluginInstalled: true,
+      });
+      const copilot = hooks.find((hook) => hook.platform === 'copilot-cli');
+
+      expect(copilot?.status).toBe('configured');
+      expect(copilot?.method).toBe('plugin list');
+      expect(copilot?.errors?.some((error) => error.includes('Failed to parse')) ?? false).toBe(
+        false,
+      );
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
   test('Copilot CLI: installed plugin list overrides legacy hook config as configured signal', () => {
     const tmpBase = join(tmpdir(), `doctor-copilot-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');

From bbf70377883a7decb57d408c80255c59e182e9fc Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Mon, 4 May 2026 21:07:08 +0900
Subject: [PATCH 05/16] refactor(doctor): rename detectCopilot to
 detectCopilotCLI for clarity

---
 dist/bin/cc-safety-net.js | 4 ++--
 src/bin/doctor/hooks.ts   | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/dist/bin/cc-safety-net.js b/dist/bin/cc-safety-net.js
index f4471fa..cb618a9 100755
--- a/dist/bin/cc-safety-net.js
+++ b/dist/bin/cc-safety-net.js
@@ -5464,7 +5464,7 @@ function _checkCopilotEnabled(homeDir, cwd, copilotCliVersion, errors) {
 }
 function detectAllHooks(cwd, options) {
   const homeDir = options?.homeDir ?? homedir4();
-  const detectCopilot = () => {
+  const detectCopilotCLI = () => {
     const errors = [];
     const hooksCheck = _checkCopilotEnabled(homeDir, cwd, options?.copilotCliVersion, errors);
     if (hooksCheck.disabledBy) {
@@ -5500,7 +5500,7 @@ function detectAllHooks(cwd, options) {
     detectClaudeCode(homeDir),
     detectOpenCode(homeDir),
     detectGeminiCLI(options?.geminiExtensionsListOutput),
-    detectCopilot()
+    detectCopilotCLI()
   ];
 }
 
diff --git a/src/bin/doctor/hooks.ts b/src/bin/doctor/hooks.ts
index 2dbe351..272fcde 100644
--- a/src/bin/doctor/hooks.ts
+++ b/src/bin/doctor/hooks.ts
@@ -622,7 +622,7 @@ function _checkCopilotEnabled(
  */
 export function detectAllHooks(cwd: string, options?: HookDetectOptions): HookStatus[] {
   const homeDir = options?.homeDir ?? homedir();
-  const detectCopilot = (): HookStatus => {
+  const detectCopilotCLI = (): HookStatus => {
     const errors: string[] = [];
     const hooksCheck = _checkCopilotEnabled(homeDir, cwd, options?.copilotCliVersion, errors);
 
@@ -663,6 +663,6 @@ export function detectAllHooks(cwd: string, options?: HookDetectOptions): HookSt
     detectClaudeCode(homeDir),
     detectOpenCode(homeDir),
     detectGeminiCLI(options?.geminiExtensionsListOutput),
-    detectCopilot(),
+    detectCopilotCLI(),
   ];
 }

From 7f76606b5aca39873ed19d98334709b1d9718c39 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Mon, 4 May 2026 21:55:33 +0900
Subject: [PATCH 06/16] chore: sync dist

---
 dist/bin/cc-safety-net.js  | 73 ++++++++++++++++++++++----------------
 dist/bin/doctor/hooks.d.ts |  1 +
 dist/bin/doctor/types.d.ts |  2 ++
 3 files changed, 45 insertions(+), 31 deletions(-)

diff --git a/dist/bin/cc-safety-net.js b/dist/bin/cc-safety-net.js
index cb618a9..9c325fb 100755
--- a/dist/bin/cc-safety-net.js
+++ b/dist/bin/cc-safety-net.js
@@ -5050,6 +5050,8 @@ function analyzeCommand(command, options = {}) {
 
 // src/bin/doctor/hooks.ts
 var COPILOT_PLUGIN_CONFIG_PATH = "copilot-plugin";
+var CLAUDE_PLUGIN_LIST_CONFIG_PATH = "claude plugin list";
+var CLAUDE_SAFETY_NET_PLUGIN_ID = "safety-net@cc-marketplace";
 var GEMINI_EXTENSIONS_LIST_CONFIG_PATH = "gemini extensions list";
 var GEMINI_SAFETY_NET_SOURCE = "https://github.com/kenryu42/gemini-safety-net";
 var SELF_TEST_CASES = [
@@ -5167,41 +5169,46 @@ function stripJsonComments(content) {
   }
   return result;
 }
-function detectClaudeCode(homeDir) {
-  const errors = [];
-  const settingsPath = join5(homeDir, ".claude", "settings.json");
-  const pluginKey = "safety-net@cc-marketplace";
-  if (existsSync6(settingsPath)) {
-    try {
-      const settings = JSON.parse(readFileSync6(settingsPath, "utf-8"));
-      const pluginValue = settings.enabledPlugins?.[pluginKey];
-      if (pluginValue === true) {
-        return {
-          platform: "claude-code",
-          status: "configured",
-          method: "marketplace plugin",
-          configPath: settingsPath,
-          selfTest: runSelfTest()
-        };
-      }
-      if (pluginValue === false) {
-        return {
-          platform: "claude-code",
-          status: "disabled",
-          method: "marketplace plugin",
-          configPath: settingsPath
-        };
-      }
-    } catch (e) {
-      errors.push(`Failed to parse settings.json: ${e instanceof Error ? e.message : String(e)}`);
-    }
+function detectClaudeCode(pluginListOutput) {
+  if (!pluginListOutput) {
+    return { platform: "claude-code", status: "n/a" };
+  }
+  const pluginBlock = _findClaudeSafetyNetPluginBlock(pluginListOutput);
+  if (!pluginBlock) {
+    return { platform: "claude-code", status: "n/a" };
+  }
+  if (/^\s*Status:\s*.*\bdisabled\b\s*$/im.test(pluginBlock)) {
+    return {
+      platform: "claude-code",
+      status: "disabled",
+      method: "plugin list",
+      configPath: CLAUDE_PLUGIN_LIST_CONFIG_PATH
+    };
+  }
+  if (/^\s*Status:\s*.*\benabled\b\s*$/im.test(pluginBlock)) {
+    return {
+      platform: "claude-code",
+      status: "configured",
+      method: "plugin list",
+      configPath: CLAUDE_PLUGIN_LIST_CONFIG_PATH,
+      selfTest: runSelfTest()
+    };
   }
   return {
     platform: "claude-code",
-    status: "n/a",
-    errors: errors.length > 0 ? errors : undefined
+    status: "disabled",
+    method: "plugin list",
+    configPath: CLAUDE_PLUGIN_LIST_CONFIG_PATH,
+    errors: ["Status is not enabled"]
   };
 }
+function _findClaudeSafetyNetPluginBlock(output) {
+  const pluginLinePattern = new RegExp(`^\\s*(?:\\S+\\s+)?${_escapeRegExp(CLAUDE_SAFETY_NET_PLUGIN_ID)}\\s*$`, "m");
+  return output.split(/\n\s*\n/).find((block) => pluginLinePattern.test(block));
+}
+function _escapeRegExp(value) {
+  return value.replace(/[.*+?^${}()|[\]\\]/g, "\\$&");
+}
 function detectOpenCode(homeDir) {
   const errors = [];
   const configDir = join5(homeDir, ".config", "opencode");
@@ -5497,7 +5504,7 @@ function detectAllHooks(cwd, options) {
     };
   };
   return [
-    detectClaudeCode(homeDir),
+    detectClaudeCode(options?.claudePluginListOutput),
     detectOpenCode(homeDir),
     detectGeminiCLI(options?.geminiExtensionsListOutput),
     detectCopilotCLI()
@@ -5583,6 +5590,7 @@ async function getSystemInfo(fetcher = defaultVersionFetcher) {
   };
   const [
     claudeRaw,
+    claudePluginListOutput,
     openCodeRaw,
     geminiRaw,
     geminiExtensionsListOutput,
@@ -5593,6 +5601,7 @@ async function getSystemInfo(fetcher = defaultVersionFetcher) {
     pluginListRaw
   ] = await Promise.all([
     fetcher(["claude", "--version"]),
+    fetcher(["claude", "plugin", "list"]),
     fetcher(["opencode", "--version"]),
     fetcher(["gemini", "--version"]),
     fetcher(["gemini", "extensions", "list"]),
@@ -5605,6 +5614,7 @@ async function getSystemInfo(fetcher = defaultVersionFetcher) {
   return {
     version: CURRENT_VERSION,
     claudeCodeVersion: parseVersion(claudeRaw),
+    claudePluginListOutput,
     openCodeVersion: parseVersion(openCodeRaw),
     geminiCliVersion: parseVersion(geminiRaw),
     geminiExtensionsListOutput,
@@ -5679,6 +5689,7 @@ async function runDoctor(options = {}) {
   const cwd = options.cwd ?? process.cwd();
   const system = await getSystemInfo();
   const hooks = detectAllHooks(cwd, {
+    claudePluginListOutput: system.claudePluginListOutput,
     geminiExtensionsListOutput: system.geminiExtensionsListOutput,
     copilotCliVersion: system.copilotCliVersion,
     copilotPluginInstalled: system.copilotPluginInstalled
diff --git a/dist/bin/doctor/hooks.d.ts b/dist/bin/doctor/hooks.d.ts
index 1dfd515..932bd63 100644
--- a/dist/bin/doctor/hooks.d.ts
+++ b/dist/bin/doctor/hooks.d.ts
@@ -5,6 +5,7 @@ import type { HookStatus } from '@/bin/doctor/types';
 import type { LoadConfigOptions } from '@/core/config';
 interface HookDetectOptions extends LoadConfigOptions {
     homeDir?: string;
+    claudePluginListOutput?: string | null;
     geminiExtensionsListOutput?: string | null;
     copilotCliVersion?: string | null;
     copilotPluginInstalled?: boolean;
diff --git a/dist/bin/doctor/types.d.ts b/dist/bin/doctor/types.d.ts
index a374e90..61f320b 100644
--- a/dist/bin/doctor/types.d.ts
+++ b/dist/bin/doctor/types.d.ts
@@ -93,6 +93,8 @@ export interface SystemInfo {
     version: string;
     /** Claude Code version (from `claude --version`) */
     claudeCodeVersion: string | null;
+    /** Claude Code plugin list output (from `claude plugin list`) */
+    claudePluginListOutput: string | null;
     /** OpenCode version (from `opencode --version`) */
     openCodeVersion: string | null;
     /** Gemini CLI version (from `gemini --version`) */

From 7569540601fed42340e280f7b6b16369871ce910 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Mon, 4 May 2026 21:56:16 +0900
Subject: [PATCH 07/16] feat(doctor): migrate Claude Code hook detection to
 plugin list output
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Detect safety-net@cc-marketplace plugin status by parsing Installed plugins:

  ❯ code-simplifier@claude-plugins-official
    Version: 1.0.0
    Scope: user
    Status: ✔ enabled

  ❯ frontend-design@claude-plugins-official
    Version: unknown
    Scope: project
    Status: ✘ disabled

  ❯ safety-net@cc-marketplace
    Version: 0.8.2
    Scope: user
    Status: ✔ enabled

  ❯ skill-creator@claude-plugins-official
    Version: unknown
    Scope: user
    Status: ✔ enabled

  ❯ telegram@claude-plugins-official
    Version: 0.0.6
    Scope: user
    Status: ✔ enabled
output instead of reading ~/.claude/settings.json directly. This mirrors
the Gemini CLI detection migration and provides more reliable status
information from the actual plugin registry.

- Detect plugin blocks by matching the safety-net plugin ID
- Parse enabled/disabled status from the plugin block
- Return n/a when plugin list is unavailable or plugin not found
- Return disabled with error when status is unrecognized
---
 src/bin/doctor/hooks.ts              |  83 ++++++++------
 src/bin/doctor/index.ts              |   1 +
 src/bin/doctor/system-info.ts        |   3 +
 src/bin/doctor/types.ts              |   2 +
 tests/bin/doctor/format.test.ts      |   7 ++
 tests/bin/doctor/hooks.test.ts       | 160 ++++++++++++++++++++++-----
 tests/bin/doctor/system-info.test.ts |   9 ++
 tests/helpers.ts                     |   9 ++
 8 files changed, 209 insertions(+), 65 deletions(-)

diff --git a/src/bin/doctor/hooks.ts b/src/bin/doctor/hooks.ts
index 272fcde..068cf4d 100644
--- a/src/bin/doctor/hooks.ts
+++ b/src/bin/doctor/hooks.ts
@@ -12,6 +12,7 @@ import type { Config } from '@/types';
 
 interface HookDetectOptions extends LoadConfigOptions {
   homeDir?: string;
+  claudePluginListOutput?: string | null;
   geminiExtensionsListOutput?: string | null;
   copilotCliVersion?: string | null;
   copilotPluginInstalled?: boolean;
@@ -42,6 +43,8 @@ interface CopilotDetectionState {
 }
 
 const COPILOT_PLUGIN_CONFIG_PATH = 'copilot-plugin';
+const CLAUDE_PLUGIN_LIST_CONFIG_PATH = 'claude plugin list';
+const CLAUDE_SAFETY_NET_PLUGIN_ID = 'safety-net@cc-marketplace';
 const GEMINI_EXTENSIONS_LIST_CONFIG_PATH = 'gemini extensions list';
 const GEMINI_SAFETY_NET_SOURCE = 'https://github.com/kenryu42/gemini-safety-net';
 
@@ -213,49 +216,57 @@ export function stripJsonComments(content: string): string {
 /**
  * Detect Claude Code hook configuration.
  */
-function detectClaudeCode(homeDir: string): HookStatus {
-  const errors: string[] = [];
-  const settingsPath = join(homeDir, '.claude', 'settings.json');
-  const pluginKey = 'safety-net@cc-marketplace';
-
-  // Check marketplace plugin in settings.json
-  if (existsSync(settingsPath)) {
-    try {
-      const settings = JSON.parse(readFileSync(settingsPath, 'utf-8')) as {
-        enabledPlugins?: Record<string, boolean>;
-      };
-      const pluginValue = settings.enabledPlugins?.[pluginKey];
-
-      if (pluginValue === true) {
-        return {
-          platform: 'claude-code',
-          status: 'configured',
-          method: 'marketplace plugin',
-          configPath: settingsPath,
-          selfTest: runSelfTest(),
-        };
-      }
+function detectClaudeCode(pluginListOutput: string | null | undefined): HookStatus {
+  if (!pluginListOutput) {
+    return { platform: 'claude-code', status: 'n/a' };
+  }
 
-      if (pluginValue === false) {
-        return {
-          platform: 'claude-code',
-          status: 'disabled',
-          method: 'marketplace plugin',
-          configPath: settingsPath,
-        };
-      }
-    } catch (e) {
-      errors.push(`Failed to parse settings.json: ${e instanceof Error ? e.message : String(e)}`);
-    }
+  const pluginBlock = _findClaudeSafetyNetPluginBlock(pluginListOutput);
+  if (!pluginBlock) {
+    return { platform: 'claude-code', status: 'n/a' };
+  }
+
+  if (/^\s*Status:\s*.*\bdisabled\b\s*$/im.test(pluginBlock)) {
+    return {
+      platform: 'claude-code',
+      status: 'disabled',
+      method: 'plugin list',
+      configPath: CLAUDE_PLUGIN_LIST_CONFIG_PATH,
+    };
+  }
+
+  if (/^\s*Status:\s*.*\benabled\b\s*$/im.test(pluginBlock)) {
+    return {
+      platform: 'claude-code',
+      status: 'configured',
+      method: 'plugin list',
+      configPath: CLAUDE_PLUGIN_LIST_CONFIG_PATH,
+      selfTest: runSelfTest(),
+    };
   }
 
   return {
     platform: 'claude-code',
-    status: 'n/a',
-    errors: errors.length > 0 ? errors : undefined,
+    status: 'disabled',
+    method: 'plugin list',
+    configPath: CLAUDE_PLUGIN_LIST_CONFIG_PATH,
+    errors: ['Status is not enabled'],
   };
 }
 
+function _findClaudeSafetyNetPluginBlock(output: string): string | undefined {
+  const pluginLinePattern = new RegExp(
+    `^\\s*(?:\\S+\\s+)?${_escapeRegExp(CLAUDE_SAFETY_NET_PLUGIN_ID)}\\s*$`,
+    'm',
+  );
+
+  return output.split(/\n\s*\n/).find((block) => pluginLinePattern.test(block));
+}
+
+function _escapeRegExp(value: string): string {
+  return value.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+}
+
 /**
  * Detect OpenCode plugin configuration.
  * OpenCode only has 'configured' or 'n/a' status (no disabled state).
@@ -660,7 +671,7 @@ export function detectAllHooks(cwd: string, options?: HookDetectOptions): HookSt
   };
 
   return [
-    detectClaudeCode(homeDir),
+    detectClaudeCode(options?.claudePluginListOutput),
     detectOpenCode(homeDir),
     detectGeminiCLI(options?.geminiExtensionsListOutput),
     detectCopilotCLI(),
diff --git a/src/bin/doctor/index.ts b/src/bin/doctor/index.ts
index 7183a1c..428af96 100644
--- a/src/bin/doctor/index.ts
+++ b/src/bin/doctor/index.ts
@@ -28,6 +28,7 @@ export async function runDoctor(options: DoctorOptions = {}): Promise<number> {
   // Collect all data
   const system = await getSystemInfo();
   const hooks = detectAllHooks(cwd, {
+    claudePluginListOutput: system.claudePluginListOutput,
     geminiExtensionsListOutput: system.geminiExtensionsListOutput,
     copilotCliVersion: system.copilotCliVersion,
     copilotPluginInstalled: system.copilotPluginInstalled,
diff --git a/src/bin/doctor/system-info.ts b/src/bin/doctor/system-info.ts
index 281cfc2..d8bbe16 100644
--- a/src/bin/doctor/system-info.ts
+++ b/src/bin/doctor/system-info.ts
@@ -125,6 +125,7 @@ export async function getSystemInfo(
   // Run all version fetches in parallel
   const [
     claudeRaw,
+    claudePluginListOutput,
     openCodeRaw,
     geminiRaw,
     geminiExtensionsListOutput,
@@ -135,6 +136,7 @@ export async function getSystemInfo(
     pluginListRaw,
   ] = await Promise.all([
     fetcher(['claude', '--version']),
+    fetcher(['claude', 'plugin', 'list']),
     fetcher(['opencode', '--version']),
     fetcher(['gemini', '--version']),
     fetcher(['gemini', 'extensions', 'list']),
@@ -148,6 +150,7 @@ export async function getSystemInfo(
   return {
     version: CURRENT_VERSION,
     claudeCodeVersion: parseVersion(claudeRaw),
+    claudePluginListOutput,
     openCodeVersion: parseVersion(openCodeRaw),
     geminiCliVersion: parseVersion(geminiRaw),
     geminiExtensionsListOutput,
diff --git a/src/bin/doctor/types.ts b/src/bin/doctor/types.ts
index 2f79a97..6647eba 100644
--- a/src/bin/doctor/types.ts
+++ b/src/bin/doctor/types.ts
@@ -106,6 +106,8 @@ export interface SystemInfo {
   version: string;
   /** Claude Code version (from `claude --version`) */
   claudeCodeVersion: string | null;
+  /** Claude Code plugin list output (from `claude plugin list`) */
+  claudePluginListOutput: string | null;
   /** OpenCode version (from `opencode --version`) */
   openCodeVersion: string | null;
   /** Gemini CLI version (from `gemini --version`) */
diff --git a/tests/bin/doctor/format.test.ts b/tests/bin/doctor/format.test.ts
index 2f441db..7636c27 100644
--- a/tests/bin/doctor/format.test.ts
+++ b/tests/bin/doctor/format.test.ts
@@ -365,6 +365,7 @@ describe('formatSystemInfoSection', () => {
     const sysInfo = {
       version: 'dev',
       claudeCodeVersion: null,
+      claudePluginListOutput: null,
       openCodeVersion: null,
       geminiCliVersion: null,
       geminiExtensionsListOutput: null,
@@ -408,6 +409,7 @@ describe('formatConfigSection', () => {
       system: {
         version: '0.6.0',
         claudeCodeVersion: '1.0.0',
+        claudePluginListOutput: null,
         openCodeVersion: '0.1.0',
         geminiCliVersion: null,
         geminiExtensionsListOutput: null,
@@ -461,6 +463,7 @@ describe('formatConfigSection', () => {
       system: {
         version: '0.6.0',
         claudeCodeVersion: '1.0.0',
+        claudePluginListOutput: null,
         openCodeVersion: '0.1.0',
         geminiCliVersion: null,
         geminiExtensionsListOutput: null,
@@ -505,6 +508,7 @@ describe('formatConfigSection', () => {
       system: {
         version: '0.6.0',
         claudeCodeVersion: '1.0.0',
+        claudePluginListOutput: null,
         openCodeVersion: '0.1.0',
         geminiCliVersion: null,
         geminiExtensionsListOutput: null,
@@ -537,6 +541,7 @@ describe('formatSummary', () => {
       system: {
         version: '0.6.0',
         claudeCodeVersion: null,
+        claudePluginListOutput: null,
         openCodeVersion: null,
         geminiCliVersion: null,
         geminiExtensionsListOutput: null,
@@ -565,6 +570,7 @@ describe('formatSummary', () => {
       system: {
         version: '0.6.0',
         claudeCodeVersion: null,
+        claudePluginListOutput: null,
         openCodeVersion: null,
         geminiCliVersion: null,
         geminiExtensionsListOutput: null,
@@ -593,6 +599,7 @@ describe('formatSummary', () => {
       system: {
         version: '0.6.0',
         claudeCodeVersion: null,
+        claudePluginListOutput: null,
         openCodeVersion: null,
         geminiCliVersion: null,
         geminiExtensionsListOutput: null,
diff --git a/tests/bin/doctor/hooks.test.ts b/tests/bin/doctor/hooks.test.ts
index 5ae0d32..b09aca0 100644
--- a/tests/bin/doctor/hooks.test.ts
+++ b/tests/bin/doctor/hooks.test.ts
@@ -72,6 +72,20 @@ function _geminiExtensionsListOutput(options: {
  Enabled (Workspace): ${options.enabledWorkspace ?? true}`;
 }
 
+function _claudePluginListOutput(options: { pluginId?: string; status?: string } = {}): string {
+  return `Installed plugins:
+
+  ❯ code-simplifier@claude-plugins-official
+    Version: 1.0.0
+    Scope: user
+    Status: ✔ enabled
+
+  ❯ ${options.pluginId ?? 'safety-net@cc-marketplace'}
+    Version: 0.8.2
+    Scope: user
+    ${options.status === undefined ? 'Status: ✔ enabled' : options.status}`;
+}
+
 describe('detectAllHooks', () => {
   test('detects configured hooks and runs self-test', () => {
     const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
@@ -80,15 +94,6 @@ describe('detectAllHooks', () => {
     mkdirSync(homeDir, { recursive: true });
     mkdirSync(projectDir, { recursive: true });
 
-    const claudeDir = join(homeDir, '.claude');
-    mkdirSync(claudeDir, { recursive: true });
-    writeFileSync(
-      join(claudeDir, 'settings.json'),
-      JSON.stringify({
-        enabledPlugins: { 'safety-net@cc-marketplace': true },
-      }),
-    );
-
     const opencodeDir = join(homeDir, '.config', 'opencode');
     mkdirSync(opencodeDir, { recursive: true });
     writeFileSync(
@@ -106,12 +111,14 @@ describe('detectAllHooks', () => {
     try {
       const hooks = detectAllHooks(projectDir, {
         homeDir,
+        claudePluginListOutput: _claudePluginListOutput(),
         geminiExtensionsListOutput: _geminiExtensionsListOutput({}),
       });
 
       const claude = hooks.find((hook) => hook.platform === 'claude-code');
       expect(claude?.status).toBe('configured');
-      expect(claude?.method).toBe('marketplace plugin');
+      expect(claude?.method).toBe('plugin list');
+      expect(claude?.configPath).toBe('claude plugin list');
       expect(claude?.selfTest?.failed).toBe(0);
 
       const opencode = hooks.find((hook) => hook.platform === 'opencode');
@@ -133,42 +140,137 @@ describe('detectAllHooks', () => {
     }
   });
 
-  test('Claude Code: disabled when enabledPlugins value is false', () => {
+  test('Claude Code: configured when plugin list shows safety-net enabled', () => {
     const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');
     const projectDir = join(tmpBase, 'project');
     mkdirSync(homeDir, { recursive: true });
     mkdirSync(projectDir, { recursive: true });
 
-    const claudeDir = join(homeDir, '.claude');
-    mkdirSync(claudeDir, { recursive: true });
-    writeFileSync(
-      join(claudeDir, 'settings.json'),
-      JSON.stringify({
-        enabledPlugins: { 'safety-net@cc-marketplace': false },
-      }),
-    );
+    try {
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        claudePluginListOutput: _claudePluginListOutput(),
+      });
+      const claude = hooks.find((hook) => hook.platform === 'claude-code');
+      expect(claude?.status).toBe('configured');
+      expect(claude?.method).toBe('plugin list');
+      expect(claude?.configPath).toBe('claude plugin list');
+      expect(claude?.selfTest?.failed).toBe(0);
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('Claude Code: disabled when plugin list shows safety-net disabled', () => {
+    const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
 
     try {
-      const hooks = detectAllHooks(projectDir, { homeDir });
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        claudePluginListOutput: _claudePluginListOutput({ status: 'Status: ✘ disabled' }),
+      });
       const claude = hooks.find((hook) => hook.platform === 'claude-code');
       expect(claude?.status).toBe('disabled');
-      expect(claude?.method).toBe('marketplace plugin');
+      expect(claude?.method).toBe('plugin list');
+      expect(claude?.configPath).toBe('claude plugin list');
     } finally {
       rmSync(tmpBase, { recursive: true, force: true });
     }
   });
 
-  test('reports parse errors for invalid hook configs', () => {
+  test('Claude Code: n/a when plugin list is unavailable', () => {
     const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');
     const projectDir = join(tmpBase, 'project');
     mkdirSync(homeDir, { recursive: true });
     mkdirSync(projectDir, { recursive: true });
 
-    const claudeDir = join(homeDir, '.claude');
-    mkdirSync(claudeDir, { recursive: true });
-    writeFileSync(join(claudeDir, 'settings.json'), '{ invalid json }');
+    try {
+      const hooks = detectAllHooks(projectDir, { homeDir, claudePluginListOutput: null });
+      const claude = hooks.find((hook) => hook.platform === 'claude-code');
+      expect(claude?.status).toBe('n/a');
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('Claude Code: n/a when plugin list does not include safety-net', () => {
+    const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
+
+    try {
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        claudePluginListOutput: `Installed plugins:
+
+  ❯ code-simplifier@claude-plugins-official
+    Version: 1.0.0
+    Scope: user
+    Status: ✔ enabled`,
+      });
+      const claude = hooks.find((hook) => hook.platform === 'claude-code');
+      expect(claude?.status).toBe('n/a');
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('Claude Code: n/a for partial plugin id match', () => {
+    const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
+
+    try {
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        claudePluginListOutput: _claudePluginListOutput({
+          pluginId: 'other-safety-net@cc-marketplace',
+        }),
+      });
+      const claude = hooks.find((hook) => hook.platform === 'claude-code');
+      expect(claude?.status).toBe('n/a');
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('Claude Code: disabled with error when safety-net status is unrecognized', () => {
+    const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
+
+    try {
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        claudePluginListOutput: _claudePluginListOutput({ status: 'Status: pending' }),
+      });
+      const claude = hooks.find((hook) => hook.platform === 'claude-code');
+      expect(claude?.status).toBe('disabled');
+      expect(claude?.method).toBe('plugin list');
+      expect(claude?.errors).toEqual(['Status is not enabled']);
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('reports parse errors for invalid hook configs', () => {
+    const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
 
     const opencodeDir = join(homeDir, '.config', 'opencode');
     mkdirSync(opencodeDir, { recursive: true });
@@ -179,7 +281,7 @@ describe('detectAllHooks', () => {
 
       const claude = hooks.find((hook) => hook.platform === 'claude-code');
       expect(claude?.status).toBe('n/a');
-      expect(claude?.errors?.some((e) => e.includes('Failed to parse'))).toBe(true);
+      expect(claude?.errors).toBeUndefined();
 
       const opencode = hooks.find((hook) => hook.platform === 'opencode');
       expect(opencode?.status).toBe('n/a');
@@ -193,7 +295,7 @@ describe('detectAllHooks', () => {
     }
   });
 
-  test('Claude Code: returns n/a with error when settings.json is invalid', () => {
+  test('Claude Code: ignores settings.json when plugin list is unavailable', () => {
     const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');
     const projectDir = join(tmpBase, 'project');
@@ -205,10 +307,10 @@ describe('detectAllHooks', () => {
     writeFileSync(join(claudeDir, 'settings.json'), '{ invalid json }');
 
     try {
-      const hooks = detectAllHooks(projectDir, { homeDir });
+      const hooks = detectAllHooks(projectDir, { homeDir, claudePluginListOutput: null });
       const claude = hooks.find((hook) => hook.platform === 'claude-code');
       expect(claude?.status).toBe('n/a');
-      expect(claude?.errors?.some((e) => e.includes('Failed to parse'))).toBe(true);
+      expect(claude?.errors).toBeUndefined();
     } finally {
       rmSync(tmpBase, { recursive: true, force: true });
     }
diff --git a/tests/bin/doctor/system-info.test.ts b/tests/bin/doctor/system-info.test.ts
index b829dbf..36c52e4 100644
--- a/tests/bin/doctor/system-info.test.ts
+++ b/tests/bin/doctor/system-info.test.ts
@@ -29,6 +29,9 @@ describe('getSystemInfo', () => {
     expect(
       sysInfo.claudeCodeVersion === null || typeof sysInfo.claudeCodeVersion === 'string',
     ).toBe(true);
+    expect(
+      sysInfo.claudePluginListOutput === null || typeof sysInfo.claudePluginListOutput === 'string',
+    ).toBe(true);
     expect(sysInfo.openCodeVersion === null || typeof sysInfo.openCodeVersion === 'string').toBe(
       true,
     );
@@ -65,6 +68,11 @@ describe('getSystemInfo', () => {
     );
   });
 
+  test('includes Claude plugin list output with mock fetcher', async () => {
+    const sysInfo = await getSystemInfo(mockVersionFetcher);
+    expect(sysInfo.claudePluginListOutput).toContain('safety-net@cc-marketplace');
+  });
+
   test('starts both copilot version probes immediately and prefers --binary-version', async () => {
     const calls: string[][] = [];
     const binaryVersion = createDeferred<string | null>();
@@ -151,6 +159,7 @@ describe('getSystemInfo', () => {
     const failingFetcher = async (_args: string[]) => null;
     const result = await getSystemInfo(failingFetcher);
     expect(result.claudeCodeVersion).toBeNull();
+    expect(result.claudePluginListOutput).toBeNull();
     expect(result.copilotCliVersion).toBeNull();
     expect(result.geminiExtensionsListOutput).toBeNull();
     expect(result.copilotPluginInstalled).toBe(false);
diff --git a/tests/helpers.ts b/tests/helpers.ts
index 0724468..128697d 100644
--- a/tests/helpers.ts
+++ b/tests/helpers.ts
@@ -70,6 +70,15 @@ export function withEnv<T>(env: Record<string, string>, fn: () => T): T {
  * @internal Exported for testing
  */
 export const mockVersionFetcher: VersionFetcher = async (args: string[]) => {
+  if (args[0] === 'claude' && args[1] === 'plugin') {
+    return `Installed plugins:
+
+  ❯ safety-net@cc-marketplace
+    Version: 0.8.2
+    Scope: user
+    Status: ✔ enabled`;
+  }
+
   // Handle multi-word commands like `copilot plugin list`
   if (args[0] === 'copilot' && args[1] === 'plugin') {
     return 'Installed plugins:\n  • copilot-safety-net (v1.0.0)';

From 744ffba032e37267bd24b4248a8b9f788ee15b20 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Tue, 5 May 2026 01:54:16 +0900
Subject: [PATCH 08/16] feat(doctor): add Codex platform hook detection

Add Codex platform support to the doctor command's hook detection system.

- Add 'codex' to HookPlatform type union
- Add detectCodex function that checks plugin cache and config.toml
- Add CodexConfig interface for parsing codex configuration
- Detect plugin_hooks feature flag and safety-net plugin enabled status
- Support CODEX_HOME environment variable for custom codex directory
- Add comprehensive tests for all Codex detection scenarios
---
 dist/bin/cc-safety-net.js      |  96 ++++++++++++++++++-
 dist/bin/doctor/types.d.ts     |   2 +-
 src/bin/doctor/hooks.ts        | 108 ++++++++++++++++++++++
 src/bin/doctor/types.ts        |   2 +-
 tests/bin/doctor/hooks.test.ts | 163 +++++++++++++++++++++++++++++++++
 5 files changed, 366 insertions(+), 5 deletions(-)

diff --git a/dist/bin/cc-safety-net.js b/dist/bin/cc-safety-net.js
index 9c325fb..fc86cb3 100755
--- a/dist/bin/cc-safety-net.js
+++ b/dist/bin/cc-safety-net.js
@@ -974,7 +974,8 @@ var PLATFORM_NAMES = {
   "claude-code": "Claude Code",
   opencode: "OpenCode",
   "gemini-cli": "Gemini CLI",
-  "copilot-cli": "Copilot CLI"
+  "copilot-cli": "Copilot CLI",
+  codex: "Codex"
 };
 function formatHooksSection(hooks) {
   const lines = [];
@@ -1014,7 +1015,7 @@ function formatHooksSection(hooks) {
     lines.push(`   Warning (${w.platform}): ${w.message}`);
   }
   for (const e of errors) {
-    lines.push(`   Error (${e.platform}): ${e.message}`);
+    lines.push(colors.red(`   Error (${e.platform}): ${e.message}`));
   }
   return lines.join(`
 `);
@@ -5054,6 +5055,8 @@ var CLAUDE_PLUGIN_LIST_CONFIG_PATH = "claude plugin list";
 var CLAUDE_SAFETY_NET_PLUGIN_ID = "safety-net@cc-marketplace";
 var GEMINI_EXTENSIONS_LIST_CONFIG_PATH = "gemini extensions list";
 var GEMINI_SAFETY_NET_SOURCE = "https://github.com/kenryu42/gemini-safety-net";
+var CODEX_PLUGIN_HOOKS_WARNING = "Codex plugin hooks are behind a feature flag. Add `plugin_hooks = true` under [features] in $CODEX_HOME/config.toml.";
+var CODEX_SAFETY_NET_PLUGIN_ID = "safety-net@cc-marketplace";
 var SELF_TEST_CASES = [
   { command: "git reset --hard", description: "git reset --hard", expectBlocked: true },
   { command: "rm -rf /", description: "rm -rf /", expectBlocked: true },
@@ -5296,6 +5299,92 @@ function _parseGeminiEnabledValue(block, scope) {
     return;
   return match[1] === "true";
 }
+function _getCodexHome(homeDir) {
+  return process.env.CODEX_HOME || join5(homeDir, ".codex");
+}
+function _parseCodexConfig(content) {
+  const result = {};
+  content.split(`
+`).reduce((activeSection, line) => {
+    const trimmed = line.trim();
+    if (trimmed === "" || trimmed.startsWith("#"))
+      return activeSection;
+    const sectionMatch = /^\[([^\]]+)]$/.exec(trimmed);
+    if (sectionMatch)
+      return sectionMatch[1];
+    if (activeSection === "features") {
+      const pluginHooksMatch = /^plugin_hooks\s*=\s*(true|false)\s*(?:#.*)?$/.exec(trimmed);
+      if (pluginHooksMatch)
+        result.pluginHooks = pluginHooksMatch[1] === "true";
+    }
+    if (activeSection === `plugins."${CODEX_SAFETY_NET_PLUGIN_ID}"`) {
+      const enabledMatch = /^enabled\s*=\s*(true|false)\s*(?:#.*)?$/.exec(trimmed);
+      if (enabledMatch)
+        result.safetyNetEnabled = enabledMatch[1] === "true";
+    }
+    return activeSection;
+  }, undefined);
+  return result;
+}
+function _readCodexConfig(configPath, errors) {
+  try {
+    return _parseCodexConfig(readFileSync6(configPath, "utf-8"));
+  } catch (e) {
+    errors.push(`Failed to read ${configPath}: ${e instanceof Error ? e.message : String(e)}`);
+    return {};
+  }
+}
+function detectCodex(homeDir) {
+  const codexHome = _getCodexHome(homeDir);
+  const pluginCachePath = join5(codexHome, "plugins", "cache", "cc-marketplace", "safety-net");
+  const errors = [];
+  if (!existsSync6(pluginCachePath)) {
+    return { platform: "codex", status: "n/a", configPath: pluginCachePath };
+  }
+  try {
+    if (readdirSync2(pluginCachePath).length === 0) {
+      return { platform: "codex", status: "n/a", configPath: pluginCachePath };
+    }
+  } catch (e) {
+    return {
+      platform: "codex",
+      status: "n/a",
+      configPath: pluginCachePath,
+      errors: [`Failed to read ${pluginCachePath}: ${e instanceof Error ? e.message : String(e)}`]
+    };
+  }
+  const configPath = join5(codexHome, "config.toml");
+  const config = _readCodexConfig(configPath, errors);
+  if (config.safetyNetEnabled !== true) {
+    return {
+      platform: "codex",
+      status: "disabled",
+      method: "plugin cache",
+      configPath,
+      errors: [
+        ...errors,
+        `Codex plugin ${CODEX_SAFETY_NET_PLUGIN_ID} is not enabled. Add enabled = true under [plugins."${CODEX_SAFETY_NET_PLUGIN_ID}"] in $CODEX_HOME/config.toml.`
+      ]
+    };
+  }
+  if (config.pluginHooks !== true) {
+    return {
+      platform: "codex",
+      status: "disabled",
+      method: "plugin cache",
+      configPath,
+      errors: [...errors, CODEX_PLUGIN_HOOKS_WARNING]
+    };
+  }
+  return {
+    platform: "codex",
+    status: "configured",
+    method: "plugin cache",
+    configPath,
+    selfTest: runSelfTest(),
+    errors: errors.length > 0 ? errors : undefined
+  };
+}
 function _isSafetyNetCopilotCommand(command) {
   if (!command?.includes("cc-safety-net"))
     return false;
@@ -5507,7 +5596,8 @@ function detectAllHooks(cwd, options) {
     detectClaudeCode(options?.claudePluginListOutput),
     detectOpenCode(homeDir),
     detectGeminiCLI(options?.geminiExtensionsListOutput),
-    detectCopilotCLI()
+    detectCopilotCLI(),
+    detectCodex(homeDir)
   ];
 }
 
diff --git a/dist/bin/doctor/types.d.ts b/dist/bin/doctor/types.d.ts
index 61f320b..30a03b3 100644
--- a/dist/bin/doctor/types.d.ts
+++ b/dist/bin/doctor/types.d.ts
@@ -2,7 +2,7 @@
  * Type definitions for the doctor command.
  */
 /** Hook platform identifiers */
-export type HookPlatform = 'claude-code' | 'opencode' | 'gemini-cli' | 'copilot-cli';
+export type HookPlatform = 'claude-code' | 'opencode' | 'gemini-cli' | 'copilot-cli' | 'codex';
 /** Self-test case definition */
 export interface SelfTestCase {
     command: string;
diff --git a/src/bin/doctor/hooks.ts b/src/bin/doctor/hooks.ts
index 068cf4d..c23d35b 100644
--- a/src/bin/doctor/hooks.ts
+++ b/src/bin/doctor/hooks.ts
@@ -42,11 +42,19 @@ interface CopilotDetectionState {
   disabledBy?: string;
 }
 
+interface CodexConfig {
+  pluginHooks?: boolean;
+  safetyNetEnabled?: boolean;
+}
+
 const COPILOT_PLUGIN_CONFIG_PATH = 'copilot-plugin';
 const CLAUDE_PLUGIN_LIST_CONFIG_PATH = 'claude plugin list';
 const CLAUDE_SAFETY_NET_PLUGIN_ID = 'safety-net@cc-marketplace';
 const GEMINI_EXTENSIONS_LIST_CONFIG_PATH = 'gemini extensions list';
 const GEMINI_SAFETY_NET_SOURCE = 'https://github.com/kenryu42/gemini-safety-net';
+const CODEX_PLUGIN_HOOKS_WARNING =
+  'Codex plugin hooks are behind a feature flag. Add `plugin_hooks = true` under [features] in $CODEX_HOME/config.toml.';
+const CODEX_SAFETY_NET_PLUGIN_ID = 'safety-net@cc-marketplace';
 
 /** Self-test cases for validating the analyzer */
 const SELF_TEST_CASES: SelfTestCase[] = [
@@ -387,6 +395,105 @@ function _parseGeminiEnabledValue(block: string, scope: 'User' | 'Workspace'): b
   return match[1] === 'true';
 }
 
+function _getCodexHome(homeDir: string): string {
+  return process.env.CODEX_HOME || join(homeDir, '.codex');
+}
+
+function _parseCodexConfig(content: string): CodexConfig {
+  const result: CodexConfig = {};
+  content.split('\n').reduce<string | undefined>((activeSection, line) => {
+    const trimmed = line.trim();
+    if (trimmed === '' || trimmed.startsWith('#')) return activeSection;
+
+    const sectionMatch = /^\[([^\]]+)]$/.exec(trimmed);
+    if (sectionMatch) return sectionMatch[1];
+
+    if (activeSection === 'features') {
+      const pluginHooksMatch = /^plugin_hooks\s*=\s*(true|false)\s*(?:#.*)?$/.exec(trimmed);
+      if (pluginHooksMatch) result.pluginHooks = pluginHooksMatch[1] === 'true';
+    }
+
+    if (activeSection === `plugins."${CODEX_SAFETY_NET_PLUGIN_ID}"`) {
+      const enabledMatch = /^enabled\s*=\s*(true|false)\s*(?:#.*)?$/.exec(trimmed);
+      if (enabledMatch) result.safetyNetEnabled = enabledMatch[1] === 'true';
+    }
+
+    return activeSection;
+  }, undefined);
+
+  return result;
+}
+
+function _readCodexConfig(configPath: string, errors: string[]): CodexConfig {
+  try {
+    return _parseCodexConfig(readFileSync(configPath, 'utf-8'));
+  } catch (e) {
+    errors.push(`Failed to read ${configPath}: ${e instanceof Error ? e.message : String(e)}`);
+    return {};
+  }
+}
+
+/**
+ * Detect Codex plugin configuration.
+ */
+function detectCodex(homeDir: string): HookStatus {
+  const codexHome = _getCodexHome(homeDir);
+  const pluginCachePath = join(codexHome, 'plugins', 'cache', 'cc-marketplace', 'safety-net');
+  const errors: string[] = [];
+
+  if (!existsSync(pluginCachePath)) {
+    return { platform: 'codex', status: 'n/a', configPath: pluginCachePath };
+  }
+
+  try {
+    if (readdirSync(pluginCachePath).length === 0) {
+      return { platform: 'codex', status: 'n/a', configPath: pluginCachePath };
+    }
+  } catch (e) {
+    return {
+      platform: 'codex',
+      status: 'n/a',
+      configPath: pluginCachePath,
+      errors: [`Failed to read ${pluginCachePath}: ${e instanceof Error ? e.message : String(e)}`],
+    };
+  }
+
+  const configPath = join(codexHome, 'config.toml');
+  const config = _readCodexConfig(configPath, errors);
+
+  if (config.safetyNetEnabled !== true) {
+    return {
+      platform: 'codex',
+      status: 'disabled',
+      method: 'plugin cache',
+      configPath,
+      errors: [
+        ...errors,
+        `Codex plugin ${CODEX_SAFETY_NET_PLUGIN_ID} is not enabled. Add enabled = true under [plugins."${CODEX_SAFETY_NET_PLUGIN_ID}"] in $CODEX_HOME/config.toml.`,
+      ],
+    };
+  }
+
+  if (config.pluginHooks !== true) {
+    return {
+      platform: 'codex',
+      status: 'disabled',
+      method: 'plugin cache',
+      configPath,
+      errors: [...errors, CODEX_PLUGIN_HOOKS_WARNING],
+    };
+  }
+
+  return {
+    platform: 'codex',
+    status: 'configured',
+    method: 'plugin cache',
+    configPath,
+    selfTest: runSelfTest(),
+    errors: errors.length > 0 ? errors : undefined,
+  };
+}
+
 function _isSafetyNetCopilotCommand(command: string | undefined): boolean {
   if (!command?.includes('cc-safety-net')) return false;
   return /(^|\s)(--copilot-cli|-cp)(\s|$)/.test(command);
@@ -675,5 +782,6 @@ export function detectAllHooks(cwd: string, options?: HookDetectOptions): HookSt
     detectOpenCode(homeDir),
     detectGeminiCLI(options?.geminiExtensionsListOutput),
     detectCopilotCLI(),
+    detectCodex(homeDir),
   ];
 }
diff --git a/src/bin/doctor/types.ts b/src/bin/doctor/types.ts
index 6647eba..4b239c1 100644
--- a/src/bin/doctor/types.ts
+++ b/src/bin/doctor/types.ts
@@ -3,7 +3,7 @@
  */
 
 /** Hook platform identifiers */
-export type HookPlatform = 'claude-code' | 'opencode' | 'gemini-cli' | 'copilot-cli';
+export type HookPlatform = 'claude-code' | 'opencode' | 'gemini-cli' | 'copilot-cli' | 'codex';
 
 /** Self-test case definition */
 export interface SelfTestCase {
diff --git a/tests/bin/doctor/hooks.test.ts b/tests/bin/doctor/hooks.test.ts
index b09aca0..5abb9f0 100644
--- a/tests/bin/doctor/hooks.test.ts
+++ b/tests/bin/doctor/hooks.test.ts
@@ -86,6 +86,22 @@ function _claudePluginListOutput(options: { pluginId?: string; status?: string }
     ${options.status === undefined ? 'Status: ✔ enabled' : options.status}`;
 }
 
+function _writeCodexConfig(
+  codexHome: string,
+  options: { pluginHooks?: boolean; enabled?: boolean } = {},
+): void {
+  writeFileSync(
+    join(codexHome, 'config.toml'),
+    `${options.pluginHooks === undefined ? '' : `[features]\nplugin_hooks = ${options.pluginHooks}\n\n`}[plugins."safety-net@cc-marketplace"]\nenabled = ${options.enabled ?? true}\n`,
+  );
+}
+
+function _createCodexPluginVersion(codexHome: string): void {
+  mkdirSync(join(codexHome, 'plugins', 'cache', 'cc-marketplace', 'safety-net', '0.8.2'), {
+    recursive: true,
+  });
+}
+
 describe('detectAllHooks', () => {
   test('detects configured hooks and runs self-test', () => {
     const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
@@ -1208,6 +1224,153 @@ describe('detectAllHooks', () => {
       rmSync(tmpBase, { recursive: true, force: true });
     }
   });
+
+  test('Codex: configured when plugin is installed, enabled, and plugin hooks are enabled', () => {
+    const tmpBase = join(tmpdir(), `doctor-codex-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    const codexHome = join(homeDir, '.codex');
+    mkdirSync(projectDir, { recursive: true });
+    mkdirSync(codexHome, { recursive: true });
+    _createCodexPluginVersion(codexHome);
+    _writeCodexConfig(codexHome, { pluginHooks: true, enabled: true });
+
+    try {
+      const hooks = detectAllHooks(projectDir, { homeDir });
+      const codex = hooks.find((hook) => hook.platform === 'codex');
+
+      expect(codex?.status).toBe('configured');
+      expect(codex?.method).toBe('plugin cache');
+      expect(codex?.configPath).toBe(join(codexHome, 'config.toml'));
+      expect(codex?.errors).toBeUndefined();
+      expect(codex?.selfTest?.failed).toBe(0);
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('Codex: uses CODEX_HOME when set', () => {
+    const tmpBase = join(tmpdir(), `doctor-codex-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    const codexHome = join(tmpBase, 'custom-codex');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
+    mkdirSync(codexHome, { recursive: true });
+    _createCodexPluginVersion(codexHome);
+    _writeCodexConfig(codexHome, { pluginHooks: true, enabled: true });
+
+    try {
+      const hooks = withEnv({ CODEX_HOME: codexHome }, () =>
+        detectAllHooks(projectDir, { homeDir }),
+      );
+      const codex = hooks.find((hook) => hook.platform === 'codex');
+
+      expect(codex?.status).toBe('configured');
+      expect(codex?.configPath).toBe(join(codexHome, 'config.toml'));
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('Codex: disabled with warning when plugin hooks feature flag is missing', () => {
+    const tmpBase = join(tmpdir(), `doctor-codex-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    const codexHome = join(homeDir, '.codex');
+    mkdirSync(projectDir, { recursive: true });
+    mkdirSync(codexHome, { recursive: true });
+    _createCodexPluginVersion(codexHome);
+    _writeCodexConfig(codexHome, { enabled: true });
+
+    try {
+      const hooks = detectAllHooks(projectDir, { homeDir });
+      const codex = hooks.find((hook) => hook.platform === 'codex');
+
+      expect(codex?.status).toBe('disabled');
+      expect(
+        codex?.errors?.some((error) =>
+          error.includes('Codex plugin hooks are behind a feature flag'),
+        ),
+      ).toBe(true);
+      expect(codex?.selfTest).toBeUndefined();
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('Codex: disabled when plugin enabled config is missing or false', () => {
+    const tmpBase = join(tmpdir(), `doctor-codex-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    const missingEnabledHome = join(tmpBase, 'missing-enabled');
+    const disabledHome = join(tmpBase, 'disabled');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
+    mkdirSync(missingEnabledHome, { recursive: true });
+    mkdirSync(disabledHome, { recursive: true });
+    _createCodexPluginVersion(missingEnabledHome);
+    _createCodexPluginVersion(disabledHome);
+    writeFileSync(join(missingEnabledHome, 'config.toml'), '[features]\nplugin_hooks = true\n');
+    _writeCodexConfig(disabledHome, { pluginHooks: true, enabled: false });
+
+    try {
+      const missingEnabledHooks = withEnv({ CODEX_HOME: missingEnabledHome }, () =>
+        detectAllHooks(projectDir, { homeDir }),
+      );
+      const disabledHooks = withEnv({ CODEX_HOME: disabledHome }, () =>
+        detectAllHooks(projectDir, { homeDir }),
+      );
+
+      expect(missingEnabledHooks.find((hook) => hook.platform === 'codex')?.status).toBe(
+        'disabled',
+      );
+      expect(disabledHooks.find((hook) => hook.platform === 'codex')?.status).toBe('disabled');
+      expect(disabledHooks.find((hook) => hook.platform === 'codex')?.selfTest).toBeUndefined();
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('Codex: n/a when plugin cache is missing', () => {
+    const tmpBase = join(tmpdir(), `doctor-codex-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
+
+    try {
+      const hooks = detectAllHooks(projectDir, { homeDir });
+      const codex = hooks.find((hook) => hook.platform === 'codex');
+
+      expect(codex?.status).toBe('n/a');
+      expect(codex?.selfTest).toBeUndefined();
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('Codex: n/a when plugin cache has no version entries', () => {
+    const tmpBase = join(tmpdir(), `doctor-codex-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    const codexHome = join(homeDir, '.codex');
+    mkdirSync(join(codexHome, 'plugins', 'cache', 'cc-marketplace', 'safety-net'), {
+      recursive: true,
+    });
+    mkdirSync(projectDir, { recursive: true });
+    _writeCodexConfig(codexHome, { pluginHooks: true, enabled: true });
+
+    try {
+      const hooks = detectAllHooks(projectDir, { homeDir });
+      const codex = hooks.find((hook) => hook.platform === 'codex');
+
+      expect(codex?.status).toBe('n/a');
+      expect(codex?.selfTest).toBeUndefined();
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
 });
 
 describe('stripJsonComments', () => {

From c58a6018022123cf12739a8d96bd895c0c452795 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Tue, 5 May 2026 01:54:22 +0900
Subject: [PATCH 09/16] feat(doctor): color error messages red in hooks section

Wrap error messages in the hooks section with red ANSI color codes
to make them more visually distinct and noticeable. Add test coverage
for TTY color output behavior.
---
 src/bin/doctor/format.ts        |  3 ++-
 tests/bin/doctor/format.test.ts | 39 ++++++++++++++++++++++++++++++++-
 2 files changed, 40 insertions(+), 2 deletions(-)

diff --git a/src/bin/doctor/format.ts b/src/bin/doctor/format.ts
index c043159..ff8348a 100644
--- a/src/bin/doctor/format.ts
+++ b/src/bin/doctor/format.ts
@@ -19,6 +19,7 @@ const PLATFORM_NAMES: Record<string, string> = {
   opencode: 'OpenCode',
   'gemini-cli': 'Gemini CLI',
   'copilot-cli': 'Copilot CLI',
+  codex: 'Codex',
 };
 
 /**
@@ -77,7 +78,7 @@ export function formatHooksSection(hooks: HookStatus[]): string {
 
   // Show errors
   for (const e of errors) {
-    lines.push(`   Error (${e.platform}): ${e.message}`);
+    lines.push(colors.red(`   Error (${e.platform}): ${e.message}`));
   }
 
   return lines.join('\n');
diff --git a/tests/bin/doctor/format.test.ts b/tests/bin/doctor/format.test.ts
index 7636c27..73b140d 100644
--- a/tests/bin/doctor/format.test.ts
+++ b/tests/bin/doctor/format.test.ts
@@ -2,7 +2,7 @@
  * Tests for the doctor command formatting functions.
  */
 
-import { describe, expect, test } from 'bun:test';
+import { afterEach, beforeEach, describe, expect, test } from 'bun:test';
 import { getEnvironmentInfo } from '@/bin/doctor/environment';
 import {
   formatActivitySection,
@@ -71,6 +71,27 @@ describe('formatRulesTable', () => {
 });
 
 describe('formatHooksSection', () => {
+  let originalIsTTY: boolean | undefined;
+  let originalNoColor: string | undefined;
+
+  beforeEach(() => {
+    originalIsTTY = process.stdout.isTTY;
+    originalNoColor = process.env.NO_COLOR;
+  });
+
+  afterEach(() => {
+    Object.defineProperty(process.stdout, 'isTTY', {
+      value: originalIsTTY,
+      writable: true,
+      configurable: true,
+    });
+    if (originalNoColor === undefined) {
+      delete process.env.NO_COLOR;
+      return;
+    }
+    process.env.NO_COLOR = originalNoColor;
+  });
+
   test('formats configured hooks with self-test', () => {
     const hooks: HookStatus[] = [
       {
@@ -139,6 +160,22 @@ describe('formatHooksSection', () => {
     expect(output).toContain('Error (OpenCode): Parse error');
   });
 
+  test('shows hook errors in red when colors are enabled', () => {
+    Object.defineProperty(process.stdout, 'isTTY', {
+      value: true,
+      writable: true,
+      configurable: true,
+    });
+    delete process.env.NO_COLOR;
+
+    const hooks: HookStatus[] = [
+      { platform: 'codex', status: 'disabled', errors: ['Parse error'] },
+    ];
+
+    const output = formatHooksSection(hooks);
+    expect(output).toContain('\x1b[31m   Error (Codex): Parse error\x1b[0m');
+  });
+
   test('shows warning for configured hooks with errors', () => {
     const hooks: HookStatus[] = [
       {

From 2be2231f184e8ea754ee09723e79a3b33b1e7474 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Tue, 5 May 2026 23:54:06 +0900
Subject: [PATCH 10/16] docs: add Codex installation instructions to README

---
 README.md | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)

diff --git a/README.md b/README.md
index 7afab6c..14772a9 100644
--- a/README.md
+++ b/README.md
@@ -7,6 +7,7 @@
 [![OpenCode](https://img.shields.io/badge/OpenCode-black)](#opencode-installation)
 [![Gemini CLI](https://img.shields.io/badge/Gemini%20CLI-678AE3)](#gemini-cli-installation)
 [![Copilot CLI](https://img.shields.io/badge/Copilot%20CLI-4EA5C9)](#github-copilot-cli-installation)
+[![Codex](https://img.shields.io/badge/Codex-white)](#codex-installation)
 [![License: MIT](https://img.shields.io/badge/License-MIT-red.svg)](https://opensource.org/licenses/MIT)
 
 <div align="center">
@@ -28,6 +29,7 @@ A Claude Code plugin that acts as a safety net, catching destructive git and fil
   - [OpenCode Installation](#opencode-installation)
   - [Gemini CLI Installation](#gemini-cli-installation)
   - [GitHub Copilot CLI Installation](#github-copilot-cli-installation)
+  - [Codex Installation](#codex-installation)
 - [Status Line Integration](#status-line-integration)
   - [Setup via Slash Command](#setup-via-slash-command)
   - [Manual Setup](#manual-setup)
@@ -215,6 +217,28 @@ gemini extensions install https://github.com/kenryu42/gemini-safety-net
 
 ---
 
+### Codex Installation
+
+1. Enable Codex plugin hooks in `~/.codex/config.toml`:
+
+  ```toml
+  [features]
+  plugin_hooks = true
+  ```
+
+2. Add the marketplace:
+
+  ```bash
+  codex plugin marketplace add kenryu42/cc-marketplace
+  ```
+
+3. Start Codex.
+4. In the TUI, run `/plugins`.
+5. Use arrow keys to select `[cc-marketplace]`.
+6. Press Enter to install the plugin.
+
+---
+
 ## Status Line Integration
 
 Safety Net can display its status in Claude Code's status line, showing whether protection is active and which modes are enabled.

From f4bab764fa03134682a4430ae0e986b2342824c2 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Tue, 5 May 2026 23:55:02 +0900
Subject: [PATCH 11/16] docs: add Codex to PR template testing checklist

---
 .github/pull_request_template.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/pull_request_template.md b/.github/pull_request_template.md
index f6f7ada..da40f90 100644
--- a/.github/pull_request_template.md
+++ b/.github/pull_request_template.md
@@ -45,6 +45,6 @@ bun run check
 - [ ] Code follows project conventions (type hints, naming, etc.)
 - [ ] `bun run check` passes (lint, types, dead code, rules, tests)
 - [ ] Tests added for new rules (minimum 90% coverage required)
-- [ ] Tested locally with Claude Code, OpenCode, Gemini CLI or GitHub Copilot CLI
+- [ ] Tested locally with Claude Code, OpenCode, Gemini CLI, GitHub Copilot CLI or Codex
 - [ ] Updated documentation if needed (README, AGENTS.md)
 - [ ] No version changes in `package.json`
\ No newline at end of file

From ef5321ec6a62c94e7c1692c3ea924653fa32329f Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Wed, 6 May 2026 09:05:29 +0900
Subject: [PATCH 12/16] fix(doctor): handle Claude Code plugin list without
 blank separators

---
 dist/bin/cc-safety-net.js      | 12 ++++++++++--
 src/bin/doctor/hooks.ts        | 11 +++++++++--
 tests/bin/doctor/hooks.test.ts | 28 ++++++++++++++++++++++++++++
 3 files changed, 47 insertions(+), 4 deletions(-)

diff --git a/dist/bin/cc-safety-net.js b/dist/bin/cc-safety-net.js
index fc86cb3..d0d2d21 100755
--- a/dist/bin/cc-safety-net.js
+++ b/dist/bin/cc-safety-net.js
@@ -5206,8 +5206,16 @@ function detectClaudeCode(pluginListOutput) {
   };
 }
 function _findClaudeSafetyNetPluginBlock(output) {
-  const pluginLinePattern = new RegExp(`^\\s*(?:\\S+\\s+)?${_escapeRegExp(CLAUDE_SAFETY_NET_PLUGIN_ID)}\\s*$`, "m");
-  return output.split(/\n\s*\n/).find((block) => pluginLinePattern.test(block));
+  const pluginLinePattern = new RegExp(`^\\s*(?:\\S+\\s+)?${_escapeRegExp(CLAUDE_SAFETY_NET_PLUGIN_ID)}\\s*$`);
+  const pluginStartPattern = /^\s*(?:\S+\s+)?\S+@\S+\s*$/;
+  const lines = output.split(`
+`);
+  const startIndex = lines.findIndex((line) => pluginLinePattern.test(line));
+  if (startIndex === -1)
+    return;
+  const endIndex = lines.findIndex((line, index) => index > startIndex && pluginStartPattern.test(line));
+  return lines.slice(startIndex, endIndex === -1 ? undefined : endIndex).join(`
+`);
 }
 function _escapeRegExp(value) {
   return value.replace(/[.*+?^${}()|[\]\\]/g, "\\$&");
diff --git a/src/bin/doctor/hooks.ts b/src/bin/doctor/hooks.ts
index c23d35b..2c297ed 100644
--- a/src/bin/doctor/hooks.ts
+++ b/src/bin/doctor/hooks.ts
@@ -265,10 +265,17 @@ function detectClaudeCode(pluginListOutput: string | null | undefined): HookStat
 function _findClaudeSafetyNetPluginBlock(output: string): string | undefined {
   const pluginLinePattern = new RegExp(
     `^\\s*(?:\\S+\\s+)?${_escapeRegExp(CLAUDE_SAFETY_NET_PLUGIN_ID)}\\s*$`,
-    'm',
   );
+  const pluginStartPattern = /^\s*(?:\S+\s+)?\S+@\S+\s*$/;
+  const lines = output.split('\n');
+  const startIndex = lines.findIndex((line) => pluginLinePattern.test(line));
 
-  return output.split(/\n\s*\n/).find((block) => pluginLinePattern.test(block));
+  if (startIndex === -1) return undefined;
+
+  const endIndex = lines.findIndex(
+    (line, index) => index > startIndex && pluginStartPattern.test(line),
+  );
+  return lines.slice(startIndex, endIndex === -1 ? undefined : endIndex).join('\n');
 }
 
 function _escapeRegExp(value: string): string {
diff --git a/tests/bin/doctor/hooks.test.ts b/tests/bin/doctor/hooks.test.ts
index 5abb9f0..4b5d603 100644
--- a/tests/bin/doctor/hooks.test.ts
+++ b/tests/bin/doctor/hooks.test.ts
@@ -199,6 +199,34 @@ describe('detectAllHooks', () => {
     }
   });
 
+  test('Claude Code: reads status from safety-net entry without blank separators', () => {
+    const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
+
+    try {
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        claudePluginListOutput: `Installed plugins:
+  ❯ code-simplifier@claude-plugins-official
+    Version: 1.0.0
+    Scope: user
+    Status: ✘ disabled
+  ❯ safety-net@cc-marketplace
+    Version: 0.8.2
+    Scope: user
+    Status: ✔ enabled`,
+      });
+      const claude = hooks.find((hook) => hook.platform === 'claude-code');
+      expect(claude?.status).toBe('configured');
+      expect(claude?.method).toBe('plugin list');
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
   test('Claude Code: n/a when plugin list is unavailable', () => {
     const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');

From de0a01f31431a875c7878fbb06d0af8a3c8342e8 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Wed, 6 May 2026 09:07:29 +0900
Subject: [PATCH 13/16] fix(doctor): parse Codex config section headers with
 inline comments

---
 dist/bin/cc-safety-net.js      |  2 +-
 src/bin/doctor/hooks.ts        |  2 +-
 tests/bin/doctor/hooks.test.ts | 30 ++++++++++++++++++++++++++++++
 3 files changed, 32 insertions(+), 2 deletions(-)

diff --git a/dist/bin/cc-safety-net.js b/dist/bin/cc-safety-net.js
index d0d2d21..b48fedb 100755
--- a/dist/bin/cc-safety-net.js
+++ b/dist/bin/cc-safety-net.js
@@ -5317,7 +5317,7 @@ function _parseCodexConfig(content) {
     const trimmed = line.trim();
     if (trimmed === "" || trimmed.startsWith("#"))
       return activeSection;
-    const sectionMatch = /^\[([^\]]+)]$/.exec(trimmed);
+    const sectionMatch = /^\[([^\]]+)]\s*(?:#.*)?$/.exec(trimmed);
     if (sectionMatch)
       return sectionMatch[1];
     if (activeSection === "features") {
diff --git a/src/bin/doctor/hooks.ts b/src/bin/doctor/hooks.ts
index 2c297ed..bd869de 100644
--- a/src/bin/doctor/hooks.ts
+++ b/src/bin/doctor/hooks.ts
@@ -412,7 +412,7 @@ function _parseCodexConfig(content: string): CodexConfig {
     const trimmed = line.trim();
     if (trimmed === '' || trimmed.startsWith('#')) return activeSection;
 
-    const sectionMatch = /^\[([^\]]+)]$/.exec(trimmed);
+    const sectionMatch = /^\[([^\]]+)]\s*(?:#.*)?$/.exec(trimmed);
     if (sectionMatch) return sectionMatch[1];
 
     if (activeSection === 'features') {
diff --git a/tests/bin/doctor/hooks.test.ts b/tests/bin/doctor/hooks.test.ts
index 4b5d603..5d1c9fb 100644
--- a/tests/bin/doctor/hooks.test.ts
+++ b/tests/bin/doctor/hooks.test.ts
@@ -1277,6 +1277,36 @@ describe('detectAllHooks', () => {
     }
   });
 
+  test('Codex: parses config section headers with inline comments', () => {
+    const tmpBase = join(tmpdir(), `doctor-codex-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    const codexHome = join(homeDir, '.codex');
+    mkdirSync(projectDir, { recursive: true });
+    mkdirSync(codexHome, { recursive: true });
+    _createCodexPluginVersion(codexHome);
+    writeFileSync(
+      join(codexHome, 'config.toml'),
+      `[features] # required for plugin hooks
+plugin_hooks = true
+
+[plugins."safety-net@cc-marketplace"] # installed from marketplace
+enabled = true
+`,
+    );
+
+    try {
+      const hooks = detectAllHooks(projectDir, { homeDir });
+      const codex = hooks.find((hook) => hook.platform === 'codex');
+
+      expect(codex?.status).toBe('configured');
+      expect(codex?.method).toBe('plugin cache');
+      expect(codex?.errors).toBeUndefined();
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
   test('Codex: uses CODEX_HOME when set', () => {
     const tmpBase = join(tmpdir(), `doctor-codex-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');

From a2fe8946c5bd25a0aae85662c9ee90e6849e2e93 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Wed, 6 May 2026 20:37:14 +0900
Subject: [PATCH 14/16] fix(doctor): use effective enabled state for Gemini CLI
 extension detection

Previously required both User and Workspace enabled scopes to be true.
Now uses workspace scope when present, falls back to user scope, and
defaults to enabled when neither is specified. This handles Gemini CLI
versions that don't list enabled scopes in extension output.
---
 dist/bin/cc-safety-net.js      |  6 ++--
 src/bin/doctor/hooks.ts        | 18 +++++++----
 tests/bin/doctor/hooks.test.ts | 58 ++++++++++++++++++++++++++++++++--
 3 files changed, 69 insertions(+), 13 deletions(-)

diff --git a/dist/bin/cc-safety-net.js b/dist/bin/cc-safety-net.js
index b48fedb..bc2c260 100755
--- a/dist/bin/cc-safety-net.js
+++ b/dist/bin/cc-safety-net.js
@@ -5262,9 +5262,9 @@ function detectGeminiCLI(extensionsListOutput) {
   if (!extension) {
     return { platform: "gemini-cli", status: "n/a" };
   }
-  const errors = [
-    ...extension.enabledUser === true ? [] : ["Enabled (User) is not true"],
-    ...extension.enabledWorkspace === true ? [] : ["Enabled (Workspace) is not true"]
+  const effectiveEnabled = extension.enabledWorkspace ?? extension.enabledUser ?? true;
+  const errors = effectiveEnabled ? [] : [
+    extension.enabledWorkspace === false ? "Enabled (Workspace) is false" : "Enabled (User) is false"
   ];
   if (errors.length > 0) {
     return {
diff --git a/src/bin/doctor/hooks.ts b/src/bin/doctor/hooks.ts
index bd869de..298ec64 100644
--- a/src/bin/doctor/hooks.ts
+++ b/src/bin/doctor/hooks.ts
@@ -331,11 +331,11 @@ function detectOpenCode(homeDir: string): HookStatus {
  *
  * Checks:
  * 1. `gemini extensions list` output for the safety-net source URL
- * 2. Enabled (User) and Enabled (Workspace) are both true
+ * 2. Effective enabled state using workspace over user scope, defaulting to enabled
  *
  * Status meanings:
- * - 'configured': Extension source is installed and enabled for user and workspace
- * - 'disabled': Extension source is installed but not enabled for user or workspace
+ * - 'configured': Extension source is installed and effectively enabled
+ * - 'disabled': Extension source is installed but effectively disabled
  * - 'n/a': Extension source is not installed, or list output is unavailable
  */
 function detectGeminiCLI(extensionsListOutput: string | null | undefined): HookStatus {
@@ -351,10 +351,14 @@ function detectGeminiCLI(extensionsListOutput: string | null | undefined): HookS
     return { platform: 'gemini-cli', status: 'n/a' };
   }
 
-  const errors = [
-    ...(extension.enabledUser === true ? [] : ['Enabled (User) is not true']),
-    ...(extension.enabledWorkspace === true ? [] : ['Enabled (Workspace) is not true']),
-  ];
+  const effectiveEnabled = extension.enabledWorkspace ?? extension.enabledUser ?? true;
+  const errors = effectiveEnabled
+    ? []
+    : [
+        extension.enabledWorkspace === false
+          ? 'Enabled (Workspace) is false'
+          : 'Enabled (User) is false',
+      ];
 
   if (errors.length > 0) {
     return {
diff --git a/tests/bin/doctor/hooks.test.ts b/tests/bin/doctor/hooks.test.ts
index 5d1c9fb..00528e6 100644
--- a/tests/bin/doctor/hooks.test.ts
+++ b/tests/bin/doctor/hooks.test.ts
@@ -63,13 +63,14 @@ function _geminiExtensionsListOutput(options: {
   source?: string;
   enabledUser?: boolean;
   enabledWorkspace?: boolean;
+  omitEnabledUser?: boolean;
+  omitEnabledWorkspace?: boolean;
 }): string {
   return `✓ gemini-safety-net (1.0.0)
  ID: 9ca2544181766a522b98bbd5d0b327b297d2582960a40db855dc048a3b8e91e3
  Path: /Users/kenryu/.gemini/extensions/gemini-safety-net
  Source: ${options.source ?? 'https://github.com/kenryu42/gemini-safety-net'} (Type: github-release)
- Enabled (User): ${options.enabledUser ?? true}
- Enabled (Workspace): ${options.enabledWorkspace ?? true}`;
+${options.omitEnabledUser ? '' : ` Enabled (User): ${options.enabledUser ?? true}\n`}${options.omitEnabledWorkspace ? '' : ` Enabled (Workspace): ${options.enabledWorkspace ?? true}`}`;
 }
 
 function _claudePluginListOutput(options: { pluginId?: string; status?: string } = {}): string {
@@ -421,7 +422,10 @@ describe('detectAllHooks', () => {
     try {
       const hooks = detectAllHooks(projectDir, {
         homeDir,
-        geminiExtensionsListOutput: _geminiExtensionsListOutput({ enabledUser: false }),
+        geminiExtensionsListOutput: _geminiExtensionsListOutput({
+          enabledUser: false,
+          omitEnabledWorkspace: true,
+        }),
       });
       const gemini = hooks.find((hook) => hook.platform === 'gemini-cli');
       expect(gemini?.status).toBe('disabled');
@@ -432,6 +436,54 @@ describe('detectAllHooks', () => {
     }
   });
 
+  test('Gemini CLI: configured when workspace enables safety-net over disabled user scope', () => {
+    const tmpBase = join(tmpdir(), `doctor-gemini-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
+
+    try {
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        geminiExtensionsListOutput: _geminiExtensionsListOutput({
+          enabledUser: false,
+          enabledWorkspace: true,
+        }),
+      });
+      const gemini = hooks.find((hook) => hook.platform === 'gemini-cli');
+      expect(gemini?.status).toBe('configured');
+      expect(gemini?.method).toBe('extension list');
+      expect(gemini?.selfTest?.failed).toBe(0);
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('Gemini CLI: configured by default when enabled scopes are not listed', () => {
+    const tmpBase = join(tmpdir(), `doctor-gemini-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
+
+    try {
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        geminiExtensionsListOutput: _geminiExtensionsListOutput({
+          omitEnabledUser: true,
+          omitEnabledWorkspace: true,
+        }),
+      });
+      const gemini = hooks.find((hook) => hook.platform === 'gemini-cli');
+      expect(gemini?.status).toBe('configured');
+      expect(gemini?.method).toBe('extension list');
+      expect(gemini?.selfTest?.failed).toBe(0);
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
   test('Gemini CLI: disabled when safety-net source is disabled for workspace', () => {
     const tmpBase = join(tmpdir(), `doctor-gemini-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');

From 838e9b2f6a88b0ae9b27644b5d233f46c1e39581 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Wed, 6 May 2026 20:44:46 +0900
Subject: [PATCH 15/16] fix(doctor): exclude metadata email lines from Claude
 Code plugin block detection

Use [^\w\s@] instead of \S in plugin line patterns to prevent
Publisher/metadata lines containing @ from being merged into
the safety-net plugin block.
---
 dist/bin/cc-safety-net.js      |  4 ++--
 src/bin/doctor/hooks.ts        |  4 ++--
 tests/bin/doctor/hooks.test.ts | 24 ++++++++++++++++++++++++
 3 files changed, 28 insertions(+), 4 deletions(-)

diff --git a/dist/bin/cc-safety-net.js b/dist/bin/cc-safety-net.js
index bc2c260..f2414fa 100755
--- a/dist/bin/cc-safety-net.js
+++ b/dist/bin/cc-safety-net.js
@@ -5206,8 +5206,8 @@ function detectClaudeCode(pluginListOutput) {
   };
 }
 function _findClaudeSafetyNetPluginBlock(output) {
-  const pluginLinePattern = new RegExp(`^\\s*(?:\\S+\\s+)?${_escapeRegExp(CLAUDE_SAFETY_NET_PLUGIN_ID)}\\s*$`);
-  const pluginStartPattern = /^\s*(?:\S+\s+)?\S+@\S+\s*$/;
+  const pluginLinePattern = new RegExp(`^\\s*(?:[^\\w\\s@]+\\s+)?${_escapeRegExp(CLAUDE_SAFETY_NET_PLUGIN_ID)}\\s*$`);
+  const pluginStartPattern = /^\s*(?:[^\w\s@]+\s+)?\S+@\S+\s*$/;
   const lines = output.split(`
 `);
   const startIndex = lines.findIndex((line) => pluginLinePattern.test(line));
diff --git a/src/bin/doctor/hooks.ts b/src/bin/doctor/hooks.ts
index 298ec64..dc5d2ad 100644
--- a/src/bin/doctor/hooks.ts
+++ b/src/bin/doctor/hooks.ts
@@ -264,9 +264,9 @@ function detectClaudeCode(pluginListOutput: string | null | undefined): HookStat
 
 function _findClaudeSafetyNetPluginBlock(output: string): string | undefined {
   const pluginLinePattern = new RegExp(
-    `^\\s*(?:\\S+\\s+)?${_escapeRegExp(CLAUDE_SAFETY_NET_PLUGIN_ID)}\\s*$`,
+    `^\\s*(?:[^\\w\\s@]+\\s+)?${_escapeRegExp(CLAUDE_SAFETY_NET_PLUGIN_ID)}\\s*$`,
   );
-  const pluginStartPattern = /^\s*(?:\S+\s+)?\S+@\S+\s*$/;
+  const pluginStartPattern = /^\s*(?:[^\w\s@]+\s+)?\S+@\S+\s*$/;
   const lines = output.split('\n');
   const startIndex = lines.findIndex((line) => pluginLinePattern.test(line));
 
diff --git a/tests/bin/doctor/hooks.test.ts b/tests/bin/doctor/hooks.test.ts
index 00528e6..e6c19bd 100644
--- a/tests/bin/doctor/hooks.test.ts
+++ b/tests/bin/doctor/hooks.test.ts
@@ -228,6 +228,30 @@ describe('detectAllHooks', () => {
     }
   });
 
+  test('Claude Code: keeps metadata email lines inside the safety-net entry', () => {
+    const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    mkdirSync(homeDir, { recursive: true });
+    mkdirSync(projectDir, { recursive: true });
+
+    try {
+      const hooks = detectAllHooks(projectDir, {
+        homeDir,
+        claudePluginListOutput: `Installed plugins:
+  ❯ safety-net@cc-marketplace
+    Version: 0.8.2
+    Publisher: author@example.com
+    Status: ✔ enabled`,
+      });
+      const claude = hooks.find((hook) => hook.platform === 'claude-code');
+      expect(claude?.status).toBe('configured');
+      expect(claude?.method).toBe('plugin list');
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
   test('Claude Code: n/a when plugin list is unavailable', () => {
     const tmpBase = join(tmpdir(), `doctor-hooks-${Date.now()}`);
     const homeDir = join(tmpBase, 'home');

From af627a619b4251537f9ada27ba2245d0c24751b1 Mon Sep 17 00:00:00 2001
From: kenryu42 <ken0ryu@gmail.com>
Date: Thu, 7 May 2026 09:29:37 +0900
Subject: [PATCH 16/16] test(doctor): add error handling tests for Codex hook
 detection

---
 tests/bin/doctor/hooks.test.ts | 49 ++++++++++++++++++++++++++++++++++
 1 file changed, 49 insertions(+)

diff --git a/tests/bin/doctor/hooks.test.ts b/tests/bin/doctor/hooks.test.ts
index e6c19bd..b430a3d 100644
--- a/tests/bin/doctor/hooks.test.ts
+++ b/tests/bin/doctor/hooks.test.ts
@@ -1505,6 +1505,55 @@ enabled = true
       rmSync(tmpBase, { recursive: true, force: true });
     }
   });
+
+  test('Codex: n/a with error when plugin cache path cannot be listed', () => {
+    const tmpBase = join(tmpdir(), `doctor-codex-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    const codexHome = join(homeDir, '.codex');
+    const pluginCacheParent = join(codexHome, 'plugins', 'cache', 'cc-marketplace');
+    const pluginCachePath = join(pluginCacheParent, 'safety-net');
+    mkdirSync(projectDir, { recursive: true });
+    mkdirSync(pluginCacheParent, { recursive: true });
+    writeFileSync(pluginCachePath, 'not a directory');
+
+    try {
+      const hooks = detectAllHooks(projectDir, { homeDir });
+      const codex = hooks.find((hook) => hook.platform === 'codex');
+
+      expect(codex?.status).toBe('n/a');
+      expect(codex?.configPath).toBe(pluginCachePath);
+      expect(codex?.errors?.some((error) => error.includes('Failed to read'))).toBe(true);
+      expect(codex?.selfTest).toBeUndefined();
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
+
+  test('Codex: disabled with read error when config.toml cannot be read', () => {
+    const tmpBase = join(tmpdir(), `doctor-codex-${Date.now()}`);
+    const homeDir = join(tmpBase, 'home');
+    const projectDir = join(tmpBase, 'project');
+    const codexHome = join(homeDir, '.codex');
+    const configPath = join(codexHome, 'config.toml');
+    mkdirSync(projectDir, { recursive: true });
+    mkdirSync(codexHome, { recursive: true });
+    _createCodexPluginVersion(codexHome);
+    mkdirSync(configPath);
+
+    try {
+      const hooks = detectAllHooks(projectDir, { homeDir });
+      const codex = hooks.find((hook) => hook.platform === 'codex');
+
+      expect(codex?.status).toBe('disabled');
+      expect(codex?.method).toBe('plugin cache');
+      expect(codex?.configPath).toBe(configPath);
+      expect(codex?.errors?.some((error) => error.includes('Failed to read'))).toBe(true);
+      expect(codex?.selfTest).toBeUndefined();
+    } finally {
+      rmSync(tmpBase, { recursive: true, force: true });
+    }
+  });
 });
 
 describe('stripJsonComments', () => {