npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

edison-watch

v0.1.3

Published

Trust-aware hook guard for Claude Code and OpenCode with local regex policy and optional Edison backend integration.

Downloads

14

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

drummersbrotherdrummersbrother

Keywords

Readme

Edison Local Guard

Trust-aware security hook for Claude Code and OpenCode. Blocks unsafe tool calls when an AI agent has been exposed to both private data and untrusted content.

Learn more at edison.watch.

Install

npx edison-watch claude install

For OpenCode:

npx edison-watch opencode install

Check status or uninstall:

npx edison-watch claude status
npx edison-watch claude uninstall

How It Works

Every tool call is classified against regex pattern lists. The guard tracks trust flags per session and blocks write operations when the "lethal trifecta" is met:

  1. Session has accessed private data (e.g. .env, secrets)
  2. Session has seen untrusted content (e.g. curl, external URLs)
  3. Current command is a write (e.g. rm, git push)

Blocked commands exit with code 2 and a human-readable reason. All events are logged to ~/.edison-watch/claude-plugin/logs/.

Configuration

Override defaults by creating ~/.edison-watch/claude-plugin/config.json or setting EDISON_CLAUDE_GUARD_CONFIG=/path/to/config.json.

| Key | Default | Description | | --- | ------- | ----------- | | mode | "enforce" | Set to "dry_run" to log without blocking. | | patterns.allow | | Regex allowlist -- bypasses blocking. | | patterns.private | | Patterns for private data access. | | patterns.untrusted | | Patterns for untrusted content. | | patterns.write | | Patterns for write/mutation commands. | | backend.enabled | false | Forward events to an Edison Watch backend. |

See the full config reference at edison.watch/docs.

License

MIT