PocketTeam: A Claude Code Pipeline with Hook-Based Safety and Learning Agents

What PocketTeam Does

PocketTeam is a pipeline built on Claude Code that enforces safety at the tool-call level and implements learning mechanisms where the system improves after every task execution.

Key Features

• Hook-based safety (not prompt-based): 9 safety layers intercept tool calls before they execute. Dangerous operations like writes to .env, rm -rf /, or DROP DATABASE commands are blocked at the runtime layer. These rules are implemented in hook code, not in the LLM's context, making them resistant to prompt injection or context compaction attacks.
• Learning system: An Observer agent runs at the end of every completed task. It analyzes what happened, what worked, what didn't, and writes structured learnings to agent-specific files. These files are injected into future agent contexts, allowing agents to avoid mistakes made in previous runs.
• Self-healing via GitHub Actions: When a build fails, a GitHub Actions workflow triggers a Claude Code session automatically. It creates a fix plan and pings you via Telegram for approval, enabling remote build failure resolution.
• 59 built-in skills: A library of structured procedures including OWASP audit workflows, TDD loops (ralph: mode), codebase mapping, database diagnostics, cost tracking, fan-out parallel execution with worktree isolation, and more.
• Magic keywords: Commands like autopilot: add dark mode (full pipeline, zero human gates), ralph: fix failing tests (TDD loop until green with max 5 iterations), quick: rename this var (straight to implementation), and deep-dive: our DB schema (3 parallel research agents).
• Built-in headless browser (ptbrowse): Uses Accessibility Tree snapshots (~100–300 tokens per call) instead of screenshots (thousands of tokens). The QA agent can navigate pages, click elements, fill forms, wait for conditions, and run assertions in a real Chromium browser. Screenshots are also available and saved to .pocketteam/screenshots/.
• Live dashboard: pt dashboard command shows real-time agent activity in Docker, displaying what's running, what passed, and what failed.
• Telegram remote control: Native Claude Code channel plugin for two-way control and plan approval from mobile devices.

Installation and Availability

Install via pipx install pocketteam. The tool is free with a Claude Code subscription and released under the MIT License. Source is available at https://github.com/Farid046/PocketTeam.