Skip to content

Instantly share code, notes, and snippets.

View Ar9av's full-sized avatar

Arnav Ar9av

View GitHub Profile
@Ar9av
Ar9av / SKILL.md
Created June 19, 2026 13:44
claude-session-load — Claude Code skill: load a Claude Code session by id into context

name: claude-session-load description: > Load a specific Claude Code session into the current conversation by session id, given as a rough/possibly-mistyped uuid (e.g. "01935a40-5a79-4142-966a-47a1da99c3bb"). Reads the matching .jsonl under ~/.claude/projects/**/ (and Claude desktop's local-agent-mode-sessions), produces a concise summary of what was asked, done, and changed, and keeps the raw file path on hand to look up exact detail later in the conversation. Use when the user invokes /claude-session-load , says "load claude session ", "what happened in claude session ", "summarize this claude session", or pastes a Claude session id and asks what it contains.

@Ar9av
Ar9av / SKILL.md
Created June 19, 2026 13:43
codex-session-load — Claude Code skill: load a Codex CLI session by id into context

name: codex-session-load description: > Load a specific Codex CLI session into the current conversation by session id, given as a rough/possibly-mistyped uuid (e.g. "019edfd4-fbf0-7100-a982-2ab5bdf125fb"). Reads the matching rollout-*.jsonl under ~/.codex/sessions (and ~/.codex/archived_sessions), produces a concise summary of what was asked, done, and changed, and keeps the raw file path on hand to look up exact detail later in the conversation. Use when the user invokes /codex-session-load , says "load codex session ", "what happened in codex session ", "summarize this codex session", or pastes a Codex session id and asks what it contains.

@Ar9av
Ar9av / mcp_audit.py
Created May 31, 2026 02:46
mcp_audit.py — scan the MCP servers configured for your AI agents (Claude Code, Cursor, Windsurf, Claude Desktop) for supply-chain and secret risks. Read-only, zero-deps Python.
#!/usr/bin/env python3
"""
mcp_audit.py — quick risk scan of the MCP servers configured for your AI agents.
Third-party MCP servers are unvetted code-execution surface: they run on your
machine, with your environment, the moment your agent starts. This script
discovers MCP server definitions across common agent config locations and flags
risky patterns:
* HIGH pipe-to-shell / remote-fetch install commands
@Ar9av
Ar9av / block_dangerous.py
Created May 31, 2026 02:46
Claude Code PreToolUse hook (Python, zero-deps): block destructive shell commands — rm -rf /, dd to disk, fork bombs, curl-pipe-shell, force-push to main — before they run
#!/usr/bin/env python3
"""
Claude Code PreToolUse hook — block obviously destructive shell commands.
A minimal, dependency-free guardrail you can drop into any Claude Code project.
It inspects every Bash command BEFORE it runs and blocks a small set of
high-blast-radius patterns (recursive root deletes, disk overwrites, fork bombs,
pipe-to-shell installs, force-push to main, etc.).
This is deliberately tiny — a starting point, not a security product. It does