Fix relative path bypass in methodology analysis read guard

SihaoLiu · SihaoLiu · commit febbc00e4647 · 2026-03-28T17:46:57.000-07:00
When realpath is unavailable, the fallback assigned FILE_PATH verbatim
which could remain relative. The project-root prefix check only matched
absolute paths, allowing relative reads to slip through during the
methodology analysis phase. Now normalize relative paths to absolute
by prepending PROJECT_ROOT before the guard checks.
diff --git a/.claude-plugin/marketplace.json b/.claude-plugin/marketplace.json
@@ -8,7 +8,7 @@
       "name": "humanize",
       "source": "./",
       "description": "Humanize - An iterative development plugin that uses Codex to review Claude's work. Creates a feedback loop where Claude implements plans and Codex independently reviews progress, ensuring quality through continuous refinement.",
-      "version": "1.16.0"
+      "version": "1.16.1"
     }
   ]
 }
diff --git a/.claude-plugin/plugin.json b/.claude-plugin/plugin.json
@@ -1,7 +1,7 @@
 {
   "name": "humanize",
   "description": "Humanize - An iterative development plugin that uses Codex to review Claude's work. Creates a feedback loop where Claude implements plans and Codex independently reviews progress, ensuring quality through continuous refinement.",
-  "version": "1.16.0",
+  "version": "1.16.1",
   "author": {
     "name": "humania-org"
   },
diff --git a/README.md b/README.md
@@ -1,6 +1,6 @@
 # Humanize
 
-**Current Version: 1.16.0**
+**Current Version: 1.16.1**
 
 > Derived from the [GAAC (GitHub-as-a-Context)](https://github.com/SihaoLiu/gaac) project.
 
diff --git a/hooks/loop-read-validator.sh b/hooks/loop-read-validator.sh
@@ -97,8 +97,21 @@ if [[ -n "$_MA_CHECK_DIR" ]]; then
         fi
         _ma_real_loop=$(realpath "$_MA_CHECK_DIR" 2>/dev/null || echo "")
         # Fallback to raw paths when realpath is unavailable (older macOS/BSD)
-        [[ -z "$_ma_real_path" ]] && _ma_real_path="$FILE_PATH"
-        [[ -z "$_ma_real_loop" ]] && _ma_real_loop="$_MA_CHECK_DIR"
+        # Ensure paths are absolute so prefix guards cannot be bypassed
+        if [[ -z "$_ma_real_path" ]]; then
+            if [[ "$FILE_PATH" == /* ]]; then
+                _ma_real_path="$FILE_PATH"
+            else
+                _ma_real_path="$PROJECT_ROOT/$FILE_PATH"
+            fi
+        fi
+        if [[ -z "$_ma_real_loop" ]]; then
+            if [[ "$_MA_CHECK_DIR" == /* ]]; then
+                _ma_real_loop="$_MA_CHECK_DIR"
+            else
+                _ma_real_loop="$PROJECT_ROOT/$_MA_CHECK_DIR"
+            fi
+        fi
         if [[ "$_ma_real_path" == "$_ma_real_loop/"* ]]; then
             _ma_basename=$(basename "$_ma_real_path")
             # Allowlist: only methodology artifacts (not raw development records).

Original file line number	Diff line number	Diff line change
`@@ -8,7 +8,7 @@`
`8`	`8`	`"name": "humanize",`
`9`	`9`	`"source": "./",`
`10`	`10`	`"description": "Humanize - An iterative development plugin that uses Codex to review Claude's work. Creates a feedback loop where Claude implements plans and Codex independently reviews progress, ensuring quality through continuous refinement.",`
`11`		`- "version": "1.16.0"`
	`11`	`+ "version": "1.16.1"`
`12`	`12`	`}`
`13`	`13`	`]`
`14`	`14`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "humanize",`
`3`	`3`	`"description": "Humanize - An iterative development plugin that uses Codex to review Claude's work. Creates a feedback loop where Claude implements plans and Codex independently reviews progress, ensuring quality through continuous refinement.",`
`4`		`- "version": "1.16.0",`
	`4`	`+ "version": "1.16.1",`
`5`	`5`	`"author": {`
`6`	`6`	`"name": "humania-org"`
`7`	`7`	`},`