Skip to content

AsobaCloud/claude-code-sdlc

BranchesTags

Repository files navigation

Claude Code SDLC Enforcement

A hook-based system that mechanically enforces software development discipline in Claude Code sessions. Instead of relying on instructions that the model can ignore, this uses Claude Code's hook system to block tool execution when the model tries to skip steps.

Plan mode in action

Plan mode in action

The Problem

Claude Code's helpfulness bias makes it skip exploration and write thin plans. Instruction files say "explore first, plan second" but the model routinely jumps straight to code. The result: changes that don't fit the codebase, duplicate functions, missed patterns.

The Solution

Four enforcement layers, each backed by shell scripts that block tool execution when the model cuts corners:

Layer 1: Plan Gate (Edit/Write Blocking)

No code changes without an approved plan. Every Edit, Write, and NotebookEdit call is intercepted by require_plan_approval.sh. If no approval markers exist, the tool is blocked with instructions telling the model exactly what to do.

Layer 2: Planning Cycle Markers

The model must explicitly enter planning mode before code changes. When EnterPlanMode fires, clear_plan_on_new_task.sh clears the previous task state and writes planning markers for the new plan cycle. Exploration is still required by CLAUDE.md, but the current runtime verifies it indirectly through grounded plan evidence rather than a dedicated read counter hook.

Layer 3: Plan Quality Gate

The plan must be substantive. When the model calls ExitPlanMode, validate_plan_quality.sh runs as a PreToolUse hook and checks:

Check Requirement Why
Plan file exists .md file in ~/.claude/plans/ or .claude/plans/ No plan = no approval
Plan freshness < 4 hours old Prevents stale plans from prior sessions
Plan substance >= 50 words Blocks one-liner "plans"
File references At least one file path Plan must reference real files
Exploration evidence Keywords like "existing", "found", "current" Plan must describe what was discovered
Required sections ## Objective, ## Scope, ## Success Criteria, ## Justification, ## Validation Enforces structured planning
Objective verification ## Objective Verification for code-change plans Ties completion to a real end-to-end proof step
Scope format ## Scope entries must be full absolute paths Lets scope enforcement stay fail-closed
SEP reference SEP-NNN required unless project is exempt Keeps plan and commit history traceable

If any check fails, ExitPlanMode is blocked and the model gets a specific error message telling it what's missing.

Layer 4: Destructive Command Guard

Dangerous shell commands are blocked when they'd discard work. settings.json grants Bash(*) — all Bash commands are allowed at the permission layer. guard_destructive_bash.sh is the sole enforcement point: it intercepts every Bash tool call and blocks commands like git checkout --, git reset --hard, git clean -f, rm -rf, and --no-verify when they would discard work or skip hooks. No per-command allowlist is maintained; the denylist in the guard script is the only gate.

Claude with this system vs Codex SDLC (as of Feb 24, 2026)

Dimension Claude setup Codex setup
Enforcement type Hard runtime gates (PreToolUse/PostToolUse) that can deny tools Instruction/policy orchestration via AGENTS.md; no equivalent local tool-deny hook layer
Plan-before-code Enforced: blocks Edit, Write, NotebookEdit without approval Required by policy text, but not mechanically blocked
Scope control Enforced fail-closed file scope from ## Scope in approved plan No local file-scope gate in .codex rules
Plan quality gate Enforced checks: word count, required sections, validation section, SEP reference Required behavior described in instructions, but no parser/validator gate
Commit governance Enforced SEP reference on git commit Bash commands No SEP-style commit gate in .codex
Command safety Destructive Bash guard denies risky commands with uncommitted changes Safety is policy-driven; current .codex/rules/default.rules mainly defines a few allow-prefix rules

State Machine

IDLE
  │ EnterPlanMode
  ▼
PLANNING
  │ ExitPlanMode → quality checks pass
  ▼
APPROVED
  │ Write tests → must fail (TDD red phase)
  ▼
TESTS_WRITTEN
  │ /approve-tests (or /skip-tests to bypass)
  ▼
IMPLEMENTING
  │ Scoped edits → dirty flag set
  ▼
VALIDATING
  │ Unit tests pass → E2E tests pass → dirty clears
  ▼
VERIFYING
  │ /verify → qa-verifier agent runs acceptance checks
  ▼
COMPLETED
  │ /accept or /reject
  ▼
IDLE

Important: When Claude presents a plan via ExitPlanMode, do not select the built-in approval options. Instead, type /approve in the text input to properly activate the hook-based approval workflow.

All state is stored in ~/.claude/workflow.db (SQLite), scoped per conversation via a conversation token. Sessions map to conversations via the sessions table, enabling state to survive compaction and session restarts.

Approval is set by:

  • /approve — user approves the plan after reviewing it

Approval clears only when:

  • /accept — user accepts the completed implementation
  • /reject — user rejects; must re-plan
  • EnterPlanMode — starting a new plan cycle clears the previous one

File Reference

Scripts (scripts/)

Script Hook Purpose
common.sh Shared library: SQLite state API, memory CRUD, plan helpers
require_plan_approval.sh PreToolUse: Edit|Write|NotebookEdit Blocks code changes without approval; enforces TDD gate and scope
validate_plan_quality.sh PreToolUse: ExitPlanMode Quality gate — checks plan substance, evidence, and objective verification
approve_plan.sh PostToolUse: ExitPlanMode Creates approval bundle in SQLite
clear_plan_on_new_task.sh PostToolUse: EnterPlanMode Clears old approval and starts a new planning cycle
check_clear_approval_command.sh UserPromptSubmit Injects workflow state + learned patterns into every prompt
guard_destructive_bash.sh PreToolUse: Bash Guards against destructive shell commands
sep_commit_check.sh PreToolUse: Bash Blocks git commits without SEP reference
track_dirty.sh PostToolUse: Edit|Write|NotebookEdit Sets dirty flag on file edits
track_validation.sh PostToolUse: Bash Tracks unit/E2E test results, manages two-tier validation
track_test_failure.sh PostToolUseFailure: Bash Sets tests_failed marker for TDD red phase
precompact_snapshot.sh PreCompact Snapshots workflow state before context compaction
cleanup_old_transcripts.sh SessionEnd Deletes transcripts >5 days old, applies memory attention decay
cleanup_stale_sessions.sh SessionStart Cleans stale SQLite data, creates shared-memory symlinks
accept_outcome.sh Via /accept command Preflight checks + finalize acceptance
reject_outcome.sh Via /reject command Marks plan rejected, clears state
restore_approval.sh Via /approve command Rebuilds approval bundle from newest plan
clear_approval.sh Manual Blocks if dirty/unverified; clears workflow state
record_validation.sh Manual Records objective verification (--command or --manual)
approve_tests.sh Via /approve-tests Sets tests_reviewed marker after TDD review
skip_tests.sh Via /skip-tests Bypasses TDD gate entirely
generate_token.sh Via /new-token Generates conversation token for session isolation
migrate_memories.sh Manual Ingests shared-memory feedback files into SQLite
enrich_memories.sh Manual Populates anticipated_queries and concept_tags

Commands

Command When to use What it does
/approve After reviewing a plan Rebuilds approval bundle, unlocks editing
/accept After implementation complete Preflight check → finalize (invoke twice to bypass missing proof)
/reject If implementation is wrong Clears approval, forces re-planning
/tdd After plan approval Orchestrates TDD via epistemically isolated subagents
/verify After two-tier validation passes Launches qa-verifier agent for acceptance checks
/approve-tests After reviewing TDD tests Unlocks production code editing
/skip-tests For non-code changes Bypasses TDD gate entirely
/new-token Session isolation Generates new conversation token

State Storage

Location Scope Survives sessions?
~/.claude/workflow.db All conversations (SQLite, WAL mode) Yes
~/.claude/plans/{token}/ Per-conversation plan files Yes
~/.claude/shared-memory/ Cross-project feedback memories Yes

All workflow state lives in ~/.claude/workflow.db, scoped per conversation via conversation_id. The sessions table maps Claude Code's session_id to conversation tokens, enabling state to survive compaction and session restarts. The MEMORY.md token provides a backup recovery path.

Memory System

The memory subsystem (SEPs 016-019) provides cross-project learning:

  • 13 consolidated feedback memories in ~/.claude/shared-memory/, migrated into SQLite with FTS5 full-text search
  • Semantic enrichment: keywords, anticipated_queries, and concept_tags bridge the vocabulary gap between how memories are written and how they're searched for
  • Attention scoring: each injection boosts attention by 0.15 (capped at 1.0); session-end decay at type-specific rates (feedback 0.95, pattern 0.98, task 0.85)
  • Tiered injection: HOT (≥0.7) shows full content, WARM (0.25–0.7) title only, COLD (<0.25) omitted
  • Ranked by: (correction_count * 2.0) + (attention_score * 3.0) + (access_count * 0.1)

Top memories are injected as a LEARNED PATTERNS block into every UserPromptSubmit response.

Git Hooks (git-hooks/)

Commit message hygiene and safety checks. Set globally via git config --global core.hooksPath ~/.claude/git-hooks.

Configuration

File Purpose
CLAUDE.md Instructions loaded into every session — rules, plan requirements, state machine docs
settings.json Hook wiring and permissions — maps tool events to enforcement scripts; grants Bash(*) with the guard script as sole denylist enforcer

Prerequisites

Required:

  • Bash 3.0+ (ships with macOS; check with bash --version)
  • jq — JSON processing (brew install jq / apt install jq)
  • Git (for hooks and git rev-parse in scripts)
  • Claude Code CLI installed and working (install guide)

Installed linters (active in pre-commit hook):

Tool Version Used for Install
ruff 0.14.9 Python linting pip install ruff
shellcheck 0.11.0 Shell script analysis brew install shellcheck / apt install shellcheck
eslint 10.0.2 JS/TS linting npm install -g eslint

Optional linting tools (degrade gracefully if missing):

Tool Used for Install
flake8 Python linting (ruff fallback) pip install flake8
gofmt Go formatting Included with Go
rustfmt Rust formatting rustup component add rustfmt
git-lfs Large file storage brew install git-lfs / apt install git-lfs

Platform notes:

  • macOS: Works out of the box.
  • Linux: common.sh includes cross-platform file_mtime() that handles both macOS and Linux stat syntax.

Installation

Step 1: Back up existing configuration

If you already have a ~/.claude directory with your own settings:

cp ~/.claude/CLAUDE.md ~/.claude/CLAUDE.md.bak 2>/dev/null
cp ~/.claude/settings.json ~/.claude/settings.json.bak 2>/dev/null

Step 2: Clone the template

git clone https://github.com/samudzi/claude-code-sdlc.git ~/.claude-sdlc

Step 3: Copy files into ~/.claude

# Core configuration
cp ~/.claude-sdlc/CLAUDE.md ~/.claude/CLAUDE.md
cp ~/.claude-sdlc/settings.json ~/.claude/settings.json

# Enforcement scripts
cp -r ~/.claude-sdlc/scripts/ ~/.claude/scripts/

# Plugin (provides /accept and /reject commands)
cp -r ~/.claude-sdlc/plugins/plan-workflow/ ~/.claude/plugins/plan-workflow/

# Git hooks (pre-commit linting, commit-msg hygiene)
cp -r ~/.claude-sdlc/git-hooks/ ~/.claude/git-hooks/

If you had existing CLAUDE.md content, merge your backed-up rules into the new file — the SDLC rules must remain intact for the hooks to work correctly.

Step 4: Make scripts executable

chmod +x ~/.claude/scripts/*.sh ~/.claude/git-hooks/*

Step 5: Create required directories

mkdir -p ~/.claude/plans ~/.claude/state

Step 6: Set global git hooks path

git config --global core.hooksPath ~/.claude/git-hooks

This makes the pre-commit (linting + safety checks) and commit-msg (attribution stripping) hooks run in every repo. Repos with their own linting frameworks (.pre-commit-config.yaml, .husky, lefthook.yml, lint-staged) are automatically bypassed.

Step 7: Verify the installation

# 1. Check all scripts are executable
ls -la ~/.claude/scripts/*.sh

# 2. Syntax-check every script
for f in ~/.claude/scripts/*.sh; do bash -n "$f" && echo "OK: $f"; done

# 3. Verify hooks are wired (9 hook scripts across 5 event types)
grep -c 'scripts/' ~/.claude/settings.json  # Should show 9

# 4. Verify plugin exists
cat ~/.claude/plugins/plan-workflow/.claude-plugin/plugin.json

# 5. Verify jq is installed
jq --version

Per-Project vs Global Setup

Global (default)

The files you installed apply to every Claude Code session:

  • ~/.claude/CLAUDE.md — loaded as instructions in every session
  • ~/.claude/settings.json — hooks fire on every tool call
  • ~/.claude/plugins/plan-workflow//approve, /accept, and /reject commands available everywhere
  • ~/.claude/git-hooks/ — run on every git commit (via core.hooksPath)

Per-project overrides

Create a CLAUDE.md in any project root to add project-specific rules. Claude Code loads both the global ~/.claude/CLAUDE.md and the project's CLAUDE.md:

cat > ~/my-project/CLAUDE.md << 'EOF'
# Project Instructions

- Before modifying code, review `docs/architecture.md`
- Run `npm test` after any changes to `src/`
- Never modify files in `vendor/`
EOF

Per-project git hooks

If a specific repo needs its own pre-commit hook instead of the global one, create .git/hooks/pre-commit in that repo. The global hook detects legitimate local hooks and chains to them automatically. Repos using framework-managed hooks (.pre-commit-config.yaml, .husky, lefthook.yml, lint-staged) are bypassed entirely.

Customization

Adjust exploration minimum: Change the threshold in validate_plan_quality.sh.

Adjust plan word minimum: Change the word count check in validate_plan_quality.sh.

Adjust plan staleness window: Change the minutes threshold in validate_plan_quality.sh.

Add project-specific rules: Create <project>/CLAUDE.md with project-specific instructions. These load alongside the global ~/.claude/CLAUDE.md.

Disable specific git hooks: Remove or rename individual files in ~/.claude/git-hooks/.

Escape Hatches

If the enforcement is blocking legitimate work:

# Restore approval for the current project (persists across sessions)
~/.claude/scripts/restore_approval.sh

# Or clear approval to force re-planning
~/.claude/scripts/clear_approval.sh

The system is designed so that a competent model doing its job properly never hits the gates — they only fire when it tries to shortcut.

Further Reading

  • SDLC.md — The full enforced lifecycle explained: every phase, every gate, and why each exists
  • USER_GUIDE.md — When to use this, workflow examples, tips for AI/startup engineering
  • CLAUDE.md — The instruction set loaded into Claude's context

About

Claude Code SDLC enforcement template — hooks, scripts, and settings for disciplined AI-assisted development

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages