ypollak2/llm-router

Changed

• Release metadata now matches the shipped hook changes (pyproject.toml, uv.lock)

  The package version is now 2.0.1, so the existing tag-based publish workflow can cut a real release for the Claude Code enforcement changes already merged on main.

• Routing enforcement now defaults to hard in Claude Code hooks (src/llm_router/hooks/enforce-route.py)

  LLM_ROUTER_ENFORCE now defaults to hard instead of soft. When auto-route.py issues a ⚡ MANDATORY ROUTE directive and Claude tries to jump straight to Bash, Write, Edit, or MultiEdit, the PreToolUse hook blocks that work by default instead of merely logging it.

• Missed routed turns are now surfaced on the next prompt (src/llm_router/hooks/auto-route.py)

  Claude Code still has no hook that fires immediately before a plain text response, so same-turn self-answering cannot be blocked directly. To make those misses visible, auto-route.py now detects a leftover pending_route_{session_id}.json from the prior turn, logs it as NO_ROUTE in ~/.llm-router/enforcement.log, clears the stale state, and injects a warning into the next ⚡ MANDATORY ROUTE context.

• Installer and README now document hard-by-default behavior (src/llm_router/tools/setup.py, README.md)

  Post-install messaging now tells users that routed work is blocked by default unless they explicitly set LLM_ROUTER_ENFORCE=soft or off.

• Demo outputs now default to an ignored folder and repo noise was removed (demo/app_builder_demo.py, demo/saas_builder_demo.py, .gitignore)

  The demo scripts now write reports to demo/output/ by default, and the repo no longer tracks generated demo reports, Finder metadata, or stray root-level screenshots.

Added

• Hook regression tests for enforcement behavior (tests/test_route_enforcement_hooks.py)

  Covers:

  • hard-default blocking of work tools
  • soft-mode override still logging violations
  • carry-over logging for unrouted previous turns