fix(hooks): require workspace trust for project hooks
Gate .codewhale/hooks.toml behind user-owned workspace trust, mirroring the project-local MCP trust boundary while preserving shell-command hook semantics. Harvested from PR #3140. Co-authored-by: Hmbown <101357273+Hmbown@users.noreply.github.com> Co-authored-by: google-labs-jules[bot] <161369871+google-labs-jules[bot]@users.noreply.github.com>
This commit is contained in:
Hunter B
@@ -57,6 +57,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
||||
persisted turn items once and groups them by turn instead of reading the
|
||||
items directory once per turn, preserving item order while keeping large
|
||||
thread detail loads responsive.
|
||||
- **Project-local hook trust boundary (#3140).** `.codewhale/hooks.toml` is now
|
||||
loaded only after the workspace is trusted in user-owned config, matching the
|
||||
project-local MCP trust model while preserving the documented shell-command
|
||||
hook contract.
|
||||
- **SiliconFlow China provider config (#2893/#2895).** `siliconflow-CN`
|
||||
now reads its own `[providers.siliconflow_cn]` / `[providers.siliconflow-CN]`
|
||||
table and falls back to `[providers.siliconflow]` only for unset
|
||||
|
||||
Reference in New Issue
Block a user