#!/usr/bin/env python3
"""
PreToolUse hook to block direct reads of .beads/issues.jsonl

The bd CLI provides the correct interface for interacting with bd tasks.
Direct file access bypasses validation and often fails due to file size.
"""

import json
import sys

def main():
    # Read tool input from stdin
    input_data = json.load(sys.stdin)
    tool_name = input_data.get("tool_name", "")
    tool_input = input_data.get("tool_input", {})

    # Check for file_path in Read tool
    file_path = tool_input.get("file_path", "")

    # Check for path in Grep tool
    grep_path = tool_input.get("path", "")

    # Combine paths to check
    paths_to_check = [file_path, grep_path]

    # Check if any path contains .beads/issues.jsonl
    for path in paths_to_check:
        if path and ".beads/issues.jsonl" in path:
            output = {
                "hookSpecificOutput": {
                    "hookEventName": "PreToolUse",
                    "permissionDecision": "deny",
                    "permissionDecisionReason": (
                        "Direct access to .beads/issues.jsonl is not allowed. "
                        "Use bd CLI commands instead: bd show, bd list, bd ready, bd dep tree, etc. "
                        "The bd CLI provides the correct interface for reading task specifications."
                    )
                }
            }
            print(json.dumps(output))
            sys.exit(0)

    # Allow all other reads
    sys.exit(0)

if __name__ == "__main__":
    main()