nfemmanuel/iranti

0.3.12 - 2026-04-07

Added

• Write-guard enforcement hooks for Claude Code. PostToolUse increments a write-debt counter after Edit/Write; PreToolUse blocks further edits until the agent calls iranti_write. Ensures every file change is persisted to shared memory before the next edit.
• Codex CLI per-turn protocol reminder. UserPromptSubmit hook injects the attend/write/checkpoint protocol into every Codex turn via .codex/hooks.json. Auto-enables the codex_hooks feature flag during setup.
• Auto-scaffolded hook scripts. iranti claude-setup now writes three hook JS files (write-guard, edit-tracker, protocol-reminder) into .claude/ and configures PreToolUse/PostToolUse/UserPromptSubmit in settings.local.json. Existing projects auto-upgrade on next setup run.

Fixed

• UV_HANDLE_CLOSING assertion crash on Windows. Replaced async process.stdout.write() with synchronous fs.writeSync(1, ...) in the Claude Code SessionStart hook, preventing a libuv assertion failure when Node exits before the write completes.
• Postgres-backed rate limiter. Added DatabaseRateLimiter class selected via IRANTI_RATE_LIMIT_BACKEND=db, replacing in-memory rate limiting for multi-instance deployments.
• Timing-safe API key comparison. Legacy API key validation now uses constant-time comparison to prevent timing side-channels.
• Trust proxy configuration. Express trust proxy setting added so rate limiting works correctly behind reverse proxies.
• Compact provenance field fix. Corrected provenance formatting in hostMemoryFormatting.ts.

Changed

• Improved npm discoverability. Added MCP-related keywords, homepage, and repository fields to package.json.