block direct execution of stop hook scripts during active loops

SihaoLiu · SihaoLiu · commit 0d2658102f0e · 2026-03-09T11:33:22.000-07:00
diff --git a/hooks/lib/loop-common.sh b/hooks/lib/loop-common.sh
@@ -1195,6 +1195,20 @@ IMPORTANT: The commit message must NOT contain the literal string \".humanize\"
     load_and_render_safe "$TEMPLATE_DIR" "block/git-add-humanize.md" "$fallback"
 }
 
+# Standard message for blocking direct execution of hook scripts
+# Usage: stop_hook_direct_execution_blocked_message
+stop_hook_direct_execution_blocked_message() {
+    local fallback="# Direct Execution of Hook Scripts Blocked
+
+You are attempting to directly execute a hook script via Bash. This is not allowed during an active loop.
+
+Hook scripts are managed by the hooks system and are triggered automatically at the appropriate time. You should NOT execute them manually.
+
+Simply complete your work and end your response. The hooks system will handle the rest automatically."
+
+    load_and_render_safe "$TEMPLATE_DIR" "block/stop-hook-direct-execution.md" "$fallback"
+}
+
 # Check if a shell command attempts to modify a file matching the given pattern
 # Usage: command_modifies_file "$command_lower" "goal-tracker\.md"
 # Returns 0 if the command tries to modify the file, 1 otherwise
diff --git a/hooks/loop-bash-validator.sh b/hooks/loop-bash-validator.sh
@@ -69,6 +69,18 @@ if [[ -z "$ACTIVE_LOOP_DIR" ]] && [[ -z "$ACTIVE_PR_LOOP_DIR" ]]; then
     exit 0
 fi
 
+# ========================================
+# Block Direct Execution of Hook Scripts
+# ========================================
+# Prevents Claude from manually running stop hook or stop gate scripts.
+# These scripts should only be invoked by the hooks system, not via Bash.
+
+BLOCKED_HOOK_SCRIPTS="(loop-codex-stop-hook\.sh|pr-loop-stop-hook\.sh|rlcr-stop-gate\.sh)"
+if echo "$COMMAND_LOWER" | grep -qE "$BLOCKED_HOOK_SCRIPTS"; then
+    stop_hook_direct_execution_blocked_message >&2
+    exit 2
+fi
+
 # ========================================
 # RLCR Loop Specific Checks
 # ========================================
diff --git a/prompt-template/block/stop-hook-direct-execution.md b/prompt-template/block/stop-hook-direct-execution.md
@@ -0,0 +1,7 @@
+# Direct Execution of Hook Scripts Blocked
+
+You are attempting to directly execute a hook script via Bash. This is not allowed during an active loop.
+
+Hook scripts are managed by the hooks system and are triggered automatically at the appropriate time. You should NOT execute them manually.
+
+Simply complete your work and end your response. The hooks system will handle the rest automatically.
