npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@betterclaw-ai/plugin-cowork

v0.3.19

Published

BetterClaw plugin for Anthropic Cowork (in Claude Desktop). Enforces workflow graphs over Cowork's verified connectors via shell-command hooks.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

jfan22jfan22

Keywords

coworkclaude-desktopai-agentsworkflow-enforcementapproval-gate

Readme

@betterclaw-ai/plugin-cowork

BetterClaw as an Anthropic Cowork plugin (Claude Desktop). Puts BetterClaw's compile + enforce + approval + audit primitives in front of every tool call Cowork makes.

Status: v0.3.16. Works today with the hooks Cowork exposes (PreToolUse, UserPromptSubmit, PostToolUse). ADR 0001 empirically verified the SDK against BetterClaw's hook requirements on 2026-04-24; ADR 0002's Phase 0 spike (2026-04-26) verified the deferred-tool / mcp__claude_ai_* matcher behavior.

How it works

┌──────────────────────────┐
│ Claude Desktop (Cowork)  │  fires a hook event
└──────────────────────────┘
              │
              ▼
   hooks/hooks.json declares three Node-based hooks:
     PreToolUse        → node bin/hook-shim.mjs pre-tool-call
     UserPromptSubmit  → node bin/hook-shim.mjs user-prompt-submit
     PostToolUse       → node bin/hook-shim.mjs post-tool-call
              │
              ▼
┌────────────────────────────┐
│ bin/hook-shim.mjs          │  cross-platform Node shim — requires
│                            │  `betterclaw` on PATH; uses shell:true on
│                            │  Windows to invoke the .cmd binstub
└────────────────────────────┘
              │
              ▼
┌──────────────────────────────────────────┐
│ betterclaw hook <event>                  │  reads JSON from stdin,
│ (shipped in @betterclaw-ai/cli)          │  runs enforcement,
│                                          │  writes response JSON to stdout
└──────────────────────────────────────────┘
              │
              │ loads the active workflow graph and shared approval queue
              ▼
  ~/.betterclaw/active-graph.json     (shared with the OpenClaw plugin path)
  ~/.betterclaw/approvals/            (shared with `betterclaw approve/deny`)
  ~/.betterclaw/history.jsonl         (cross-turn approval surfacing)
  ~/.betterclaw/cowork-sessions.json  (per-session current-node tracking)
  ~/.betterclaw/run.jsonl             (per-turn live-view event stream — v0.3.16)

Hook dispatch latency: ~100-150ms per invocation (Node cold start for the CLI). Acceptable for V1; if it matters we promote to a socket-resident enforcement path in V2.

Install

Prereqs:

  • Claude Desktop (latest) with Cowork enabled
  • @betterclaw-ai/cli on PATH — npm install -g @betterclaw-ai/cli (works on Linux, macOS, Windows; npm handles the per-platform shim creation)
npm install -g @betterclaw-ai/plugin-cowork
claude --plugin-dir "$(npm root -g)/@betterclaw-ai/plugin-cowork"

On Windows PowerShell, the path separator is \:

claude --plugin-dir "$(npm root -g)\@betterclaw-ai\plugin-cowork"

The hook shim is bin/hook-shim.mjs (Node, cross-platform as of v0.3.10). No WSL or Git Bash needed for the shim — it works directly on Linux, macOS, and Windows. (The Claude CLI itself still requires Git Bash on Windows, but that's a Claude CLI requirement, not a BetterClaw one.)

Verify it loaded: ask Claude to run a tool. You should see BetterClaw either:

  • Allow the call silently (workflow lets the tool through at the current node), OR
  • Refuse with a detailed deviation message ("DEVIATION: tool 'X' not allowed in node 'Y'..."), OR
  • Queue for approval (Approval required · id=XXXX · run 'betterclaw approve XXXX' to dispatch).

Compile a workflow first

The Cowork plugin enforces an existing BetterClaw graph. Compile one before installing:

betterclaw "triage my inbox: auto-archive newsletters, draft replies to customer questions, let me approve each draft"

After y-confirmation, the graph lands at packages/plugin-openclaw/active-graph.json. The Cowork plugin reads from the same path — Cowork and OpenClaw plugin paths share state for V1.

What the plugin handles per hook event

PreToolUse

  1. Loads the active graph.
  2. Looks up the current session's workflow state (or starts at graph.entry).
  3. Runs the workflow-enforcement rule:
    • Tool is allowed in current node → allow, stay.
    • Tool is allowed in a reachable next node → allow, advance.
    • Tool deviates → block with a detailed DEVIATION message. Budget of max_reconsider_retries before hard-fail.
  4. If the allowed tool requires approval (per graph.requires_approval), queue an approval record and block with a user-facing prompt to run betterclaw approve <id>.

UserPromptSubmit

Surfaces recent approvals (past 24h, last 8) from ~/.betterclaw/history.jsonl as a systemMessage. The model sees them in context and avoids re-attempting tool calls the user already handled.

PostToolUse

V1: no-op (returns {}). Telemetry for tool-completion timing is already captured CLI-side on the approval-dispatch path.

Troubleshooting

  • Plugin loaded but nothing enforces — compile a graph first: betterclaw "<paragraph>". Without an active graph, BetterClaw allows everything.
  • Hook timeoutbetterclaw must be on PATH. command -v betterclaw should print a path.
  • Approvals don't surface after betterclaw approve <id> — UserPromptSubmit surfaces them on the NEXT user turn. It doesn't retroactively push into the current conversation.
  • Perf complaints — each hook adds ~100-150ms of CLI cold-start. If this matters, watch for a V2 release with a socket-resident enforcement path (~7ms per hook). File an issue.

Not yet implemented (V1 scope boundaries)

  • Built-in Cowork tool enforcement (Bash, Write, Read, etc.) — V1 enforces over the tool names listed in the active graph. Built-in Claude Desktop tools are out of scope unless they appear in a graph node's allowed_tools. V2 may add an explicit "always-on built-in deny list" for safety.
  • Dry-run mode — V2. Replay a graph against historical data without side effects.
  • Per-tenant identity in Cowork — tied to the paid-cloud backend, gated on Week 3 validation.
  • permissionDecision: "defer" — Open Question from ADR 0001. TypeScript-SDK-listed but not verified for shell-command plugin hooks. V1 uses "deny" + user-facing instructions to approve; behaviorally equivalent for sync approval flows.

Related