feat: auto-strip AI attribution from commit messages

jdalton · jdalton · commit ee8e5abd0f32 · 2025-10-23T23:36:51.000-04:00
diff --git a/.git-hooks/commit-msg b/.git-hooks/commit-msg
@@ -12,36 +12,61 @@ NC='\033[0m'
 # Allowed public API key (used in socket-lib).
 ALLOWED_PUBLIC_KEY="sktsec_t_--RAN5U4ivauy4w37-6aoKyYPDt5ZbaT5JBVMqiwKo_api"
 
-# Get files in this commit.
-COMMITTED_FILES=$(git diff --cached --name-only --diff-filter=ACM)
+ERRORS=0
 
-if [ -z "$COMMITTED_FILES" ]; then
-  exit 0
-fi
+# Get files in this commit (for security checks).
+COMMITTED_FILES=$(git diff --cached --name-only --diff-filter=ACM 2>/dev/null || echo "")
 
-ERRORS=0
+# Quick checks for critical issues in committed files.
+if [ -n "$COMMITTED_FILES" ]; then
+  for file in $COMMITTED_FILES; do
+    if [ -f "$file" ]; then
+      # Check for Socket API keys (except allowed).
+      if grep -E 'sktsec_[a-zA-Z0-9_-]+' "$file" 2>/dev/null | grep -v "$ALLOWED_PUBLIC_KEY" | grep -v 'your_api_key_here' | grep -v 'fake-token' | grep -v 'test-token' | grep -v '\.example' | grep -q .; then
+        echo "${RED}✗ SECURITY: Potential API key detected in commit!${NC}"
+        echo "File: $file"
+        ERRORS=$((ERRORS + 1))
+      fi
 
-# Quick checks for critical issues.
-for file in $COMMITTED_FILES; do
-  if [ -f "$file" ]; then
-    # Check for Socket API keys (except allowed).
-    if grep -E 'sktsec_[a-zA-Z0-9_-]+' "$file" 2>/dev/null | grep -v "$ALLOWED_PUBLIC_KEY" | grep -v 'your_api_key_here' | grep -v 'fake-token' | grep -v 'test-token' | grep -v '\.example' | grep -q .; then
-      echo "${RED}✗ SECURITY: Potential API key detected in commit!${NC}"
-      echo "File: $file"
-      ERRORS=$((ERRORS + 1))
+      # Check for .env files.
+      if echo "$file" | grep -qE '^\.env(\.local)?$'; then
+        echo "${RED}✗ SECURITY: .env file in commit!${NC}"
+        ERRORS=$((ERRORS + 1))
+      fi
     fi
+  done
+fi
 
-    # Check for .env files.
-    if echo "$file" | grep -qE '^\.env(\.local)?$'; then
-      echo "${RED}✗ SECURITY: .env file in commit!${NC}"
-      ERRORS=$((ERRORS + 1))
+# Auto-strip AI attribution from commit message.
+COMMIT_MSG_FILE="$1"
+if [ -f "$COMMIT_MSG_FILE" ]; then
+  # Create a temporary file to store the cleaned message.
+  TEMP_FILE=$(mktemp)
+  REMOVED_LINES=0
+
+  # Read the commit message line by line and filter out AI attribution.
+  while IFS= read -r line || [ -n "$line" ]; do
+    # Check if this line contains AI attribution patterns.
+    if echo "$line" | grep -qiE "(Generated with|Co-Authored-By: Claude|Co-Authored-By: AI|🤖 Generated|AI generated|Claude Code|@anthropic|Assistant:|Generated by Claude|Machine generated)"; then
+      REMOVED_LINES=$((REMOVED_LINES + 1))
+    else
+      # Line doesn't contain AI attribution, keep it.
+      printf '%s\n' "$line" >> "$TEMP_FILE"
     fi
+  done < "$COMMIT_MSG_FILE"
+
+  # Replace the original commit message with the cleaned version.
+  if [ $REMOVED_LINES -gt 0 ]; then
+    mv "$TEMP_FILE" "$COMMIT_MSG_FILE"
+    echo "${GREEN}✓ Auto-stripped${NC} $REMOVED_LINES AI attribution line(s) from commit message"
+  else
+    # No lines were removed, just clean up the temp file.
+    rm -f "$TEMP_FILE"
   fi
-done
+fi
 
 if [ $ERRORS -gt 0 ]; then
   echo "${RED}✗ Commit blocked by security validation${NC}"
-  echo "Run: git reset HEAD~1"
   exit 1
 fi
 
