creating-claude-hooks
Guides users in creating and publishing Claude Code hooks, detailing format, event types, and execution requirements.
Install this skill
or
87/100
Security score
The creating-claude-hooks skill was audited on Mar 4, 2026 and we found 9 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 231
Template literal with variable interpolation in command context
SourceSKILL.md
| 231 | ```bash |
low line 54
Access to hidden dotfiles in home directory
SourceSKILL.md
| 54 | ~/.claude/hooks/session-start |
low line 55
Access to hidden dotfiles in home directory
SourceSKILL.md
| 55 | ~/.claude/hooks/tool-call |
low line 160
Access to hidden dotfiles in home directory
SourceSKILL.md
| 160 | echo "Session started at $(date)" >> ~/.claude/session.log |
low line 256
Access to hidden dotfiles in home directory
SourceSKILL.md
| 256 | LOG_FILE=~/.claude-hooks/debug.log |
low line 312
Access to hidden dotfiles in home directory
SourceSKILL.md
| 312 | - Logs session start time to `~/.claude/session.log` |
low line 319
Access to hidden dotfiles in home directory
SourceSKILL.md
| 319 | - write access to `~/.claude/` |
low line 325
Access to hidden dotfiles in home directory
SourceSKILL.md
| 325 | echo "Session started at $(date)" >> ~/.claude/session.log |
low line 232
Access to .env file
SourceSKILL.md
| 232 | BLOCKED=(".env" ".env.*" "*.pem" "*.key") |
Scanned on Mar 4, 2026
View Security DashboardInstall this skill with one command
/learn @pr-pm/creating-claude-hooks