Dep Install Gate

Quick vuln/malware check before npm/pnpm/yarn/pip/uv/cargo/go/gem/composer add commands.

Quick vuln/malware check before npm/pnpm/yarn/pip/uv/cargo/go/gem/composer add commands.

Trigger

PreToolUse on Bash

Behavior

See hooks/dep-install-gate.sh and hooks/ts/openclaw/dep-install-gate/HOOK.md. The hook reads .vulnetix/capabilities.yaml and skips work when the relevant binaries / repo signals are absent. Always exits 0; never blocks.

See also

• Capabilities YAML schema
• Hooks index