Fix claude config file access blocked by path security and add hooks section

Author: jestersimpps

src/main/ipc/claude-config.ts

@@ -76,8 +76,27 @@ function scanClaudeFiles(projectPath: string): ClaudeFileEntry[] {
 
   addFiles(path.join(claudeDir, 'commands'), 'commands', entries)
 
+  addFiles(path.join(claudeDir, 'scripts'), 'hooks', entries)
+
+  const keybindingsJson = path.join(claudeDir, 'keybindings.json')
+  if (fs.existsSync(keybindingsJson)) {
+    entries.push({ name: 'keybindings.json', path: keybindingsJson, section: 'global' })
+  }
+
   const projectKey = projectPath.replace(/\//g, '-')
-  const projectMemDir = path.join(claudeDir, 'projects', projectKey, 'memory')
+  const projectConfigDir = path.join(claudeDir, 'projects', projectKey)
+
+  const projectSettingsJson = path.join(projectConfigDir, 'settings.json')
+  if (fs.existsSync(projectSettingsJson)) {
+    entries.push({ name: 'settings.json (project)', path: projectSettingsJson, section: 'project' })
+  }
+
+  const projectClaudeMdGlobal = path.join(projectConfigDir, 'CLAUDE.md')
+  if (fs.existsSync(projectClaudeMdGlobal)) {
+    entries.push({ name: 'CLAUDE.md (project config)', path: projectClaudeMdGlobal, section: 'project' })
+  }
+
+  const projectMemDir = path.join(projectConfigDir, 'memory')
   addFiles(projectMemDir, 'project', entries)
 
   const projectClaudeDir = path.join(projectPath, '.claude')
@@ -103,8 +122,38 @@ function scanClaudeFiles(projectPath: string): ClaudeFileEntry[] {
   return entries
 }
 
+function isAllowedClaudePath(filePath: string, projectPath?: string): boolean {
+  const resolved = path.resolve(filePath)
+  const claudeDir = path.join(os.homedir(), '.claude')
+  if (resolved.startsWith(claudeDir + path.sep)) return true
+  if (projectPath) {
+    const projectClaudeDir = path.join(path.resolve(projectPath), '.claude')
+    if (resolved.startsWith(projectClaudeDir + path.sep)) return true
+    if (resolved === path.join(path.resolve(projectPath), 'CLAUDE.md')) return true
+  }
+  return false
+}
+
 export function registerClaudeConfigHandlers(): void {
   ipcMain.handle('claude:scan-files', (_event, projectPath: string): ClaudeFileEntry[] => {
     return scanClaudeFiles(projectPath)
   })
+
+  ipcMain.handle('claude:read-file', (_event, filePath: string, projectPath: string): string => {
+    const resolved = path.resolve(filePath)
+    if (!isAllowedClaudePath(resolved, projectPath)) throw new Error('Path not allowed')
+    return fs.readFileSync(resolved, 'utf-8')
+  })
+
+  ipcMain.handle('claude:write-file', (_event, filePath: string, content: string, projectPath: string): void => {
+    const resolved = path.resolve(filePath)
+    if (!isAllowedClaudePath(resolved, projectPath)) throw new Error('Path not allowed')
+    fs.writeFileSync(resolved, content, 'utf-8')
+  })
+
+  ipcMain.handle('claude:delete-file', (_event, filePath: string, projectPath: string): void => {
+    const resolved = path.resolve(filePath)
+    if (!isAllowedClaudePath(resolved, projectPath)) throw new Error('Path not allowed')
+    fs.unlinkSync(resolved)
+  })
 }

src/main/models/types.ts

@@ -85,7 +85,7 @@ export interface EncryptedCredential {
   updatedAt: number
 }
 
-export type ClaudeSection = 'global' | 'skills' | 'commands' | 'project'
+export type ClaudeSection = 'global' | 'hooks' | 'skills' | 'commands' | 'project'
 
 export interface ClaudeFileEntry {
   name: string

src/preload/index.ts

@@ -10,7 +10,10 @@ const api = {
   },
 
   claude: {
-    scanFiles: (projectPath: string) => ipcRenderer.invoke('claude:scan-files', projectPath)
+    scanFiles: (projectPath: string) => ipcRenderer.invoke('claude:scan-files', projectPath),
+    readFile: (filePath: string, projectPath: string) => ipcRenderer.invoke('claude:read-file', filePath, projectPath),
+    writeFile: (filePath: string, content: string, projectPath: string) => ipcRenderer.invoke('claude:write-file', filePath, content, projectPath),
+    deleteFile: (filePath: string, projectPath: string) => ipcRenderer.invoke('claude:delete-file', filePath, projectPath)
   },
 
   fs: {

src/renderer/components/claude/ClaudeEditor.tsx

@@ -50,7 +50,7 @@ export function ClaudeEditor({ projectId }: { projectId: string }): React.ReactE
       keybindings: [2048 | 49],
       run: async () => {
         if (activeFilePath) {
-          await saveFile(activeFilePath, editorInstance.getValue())
+          await saveFile(projectId, activeFilePath, editorInstance.getValue())
           flashSaved()
         }
       }

src/renderer/components/claude/ClaudeFileList.tsx

@@ -1,11 +1,12 @@
 import { useEffect } from 'react'
 import { useClaudeStore } from '@/stores/claude-store'
 import { useProjectStore } from '@/stores/project-store'
-import { ChevronRight, ChevronDown, File, Globe, Wand2, Terminal, FolderOpen, RefreshCw, Trash2 } from 'lucide-react'
+import { ChevronRight, ChevronDown, File, Globe, Wand2, Terminal, FolderOpen, Webhook, RefreshCw, Trash2 } from 'lucide-react'
 import type { ClaudeSection, ClaudeFileEntry } from '@/models/types'
 
 const SECTION_CONFIG: { key: ClaudeSection; label: string; Icon: typeof Globe }[] = [
   { key: 'global', label: 'Global', Icon: Globe },
+  { key: 'hooks', label: 'Hooks', Icon: Webhook },
   { key: 'skills', label: 'Skills', Icon: Wand2 },
   { key: 'commands', label: 'Commands', Icon: Terminal },
   { key: 'project', label: 'Project', Icon: FolderOpen }

src/renderer/models/types.ts

@@ -118,7 +118,7 @@ export interface PasswordPromptData {
   password: string
 }
 
-export type ClaudeSection = 'global' | 'skills' | 'commands' | 'project'
+export type ClaudeSection = 'global' | 'hooks' | 'skills' | 'commands' | 'project'
 
 export interface ClaudeFileEntry {
   name: string

src/renderer/stores/claude-store.ts

@@ -6,25 +6,28 @@ interface ClaudeStore {
   activeFilePerProject: Record<string, string | null>
   contentCache: Record<string, string>
   expandedSections: Record<string, Set<ClaudeSection>>
+  projectPaths: Record<string, string>
   loadFiles: (projectId: string, projectPath: string) => Promise<void>
   selectFile: (projectId: string, filePath: string) => Promise<void>
-  saveFile: (filePath: string, content: string) => Promise<void>
+  saveFile: (projectId: string, filePath: string, content: string) => Promise<void>
   deleteFile: (projectId: string, filePath: string, projectPath: string) => Promise<void>
   toggleSection: (projectId: string, section: ClaudeSection) => void
 }
 
-const DEFAULT_EXPANDED = new Set<ClaudeSection>(['global', 'skills', 'commands', 'project'])
+const DEFAULT_EXPANDED = new Set<ClaudeSection>(['global', 'hooks', 'skills', 'commands', 'project'])
 
 export const useClaudeStore = create<ClaudeStore>((set, get) => ({
   filesPerProject: {},
   activeFilePerProject: {},
   contentCache: {},
   expandedSections: {},
+  projectPaths: {},
 
   loadFiles: async (projectId: string, projectPath: string) => {
     const files: ClaudeFileEntry[] = await window.api.claude.scanFiles(projectPath)
     set((s) => ({
-      filesPerProject: { ...s.filesPerProject, [projectId]: files }
+      filesPerProject: { ...s.filesPerProject, [projectId]: files },
+      projectPaths: { ...s.projectPaths, [projectId]: projectPath }
     }))
   },
 
@@ -36,22 +39,24 @@ export const useClaudeStore = create<ClaudeStore>((set, get) => ({
       }))
       return
     }
-    const { content } = await window.api.fs.readFile(filePath)
+    const projectPath = get().projectPaths[projectId] ?? ''
+    const content: string = await window.api.claude.readFile(filePath, projectPath)
     set((s) => ({
       activeFilePerProject: { ...s.activeFilePerProject, [projectId]: filePath },
       contentCache: { ...s.contentCache, [filePath]: content }
     }))
   },
 
-  saveFile: async (filePath: string, content: string) => {
-    await window.api.fs.writeFile(filePath, content)
+  saveFile: async (projectId: string, filePath: string, content: string) => {
+    const projectPath = get().projectPaths[projectId] ?? ''
+    await window.api.claude.writeFile(filePath, content, projectPath)
     set((s) => ({
       contentCache: { ...s.contentCache, [filePath]: content }
     }))
   },
 
   deleteFile: async (projectId: string, filePath: string, projectPath: string) => {
-    await window.api.fs.deleteFile(filePath)
+    await window.api.claude.deleteFile(filePath, projectPath)
     const { contentCache, activeFilePerProject } = get()
     const nextCache = { ...contentCache }
     delete nextCache[filePath]