chore(hooks): render dev-test plugin via the prod generator

.changeset/normalize-risk-result-rule-ids.md

@@ -0,0 +1,20 @@
+---
+"server": minor
+---
+
+`RiskResult.rule_id` and `RiskResult.description` now follow a consistent shape across every detection source.
+
+`rule_id` is lowercase, kebab-case, with an optional dot-separated category prefix:
+
+- `secret.<rule>` for credentials and secrets (e.g. `secret.anthropic-api-key`)
+- `pii.<rule>` for personal, financial, and medical data (e.g. `pii.credit-card`, `pii.medical-license`)
+- `shadow-mcp` for unverified MCP tool calls
+- `destructive.tool` for MCP tool calls flagged as destructive
+- `destructive.<category>.<name>` for destructive shell, git, database, and cloud commands (e.g. `destructive.shell.rm-rf`, `destructive.git.push-force`)
+- `prompt-injection` for prompt injection findings
+
+`(source, rule_id)` is the stable identifier downstream consumers should match on. The dotted prefix alone is enough to bucket findings by risk category.
+
+`description` is a short human-readable sentence describing the finding. It never echoes the matched value and is safe to display verbatim.
+
+Historical rows written before this release keep their original `rule_id` and `description` values; a follow-up migration will rewrite them.

.gitignore

@@ -53,6 +53,7 @@ gram.code-workspace
 /server/cmd/local
 /server/custom-gcl
 /local/cmd
+/hooks/.local/
 dist/
 **/.claude/settings.local.json
 **/.claude/.gram-install-prompted

.mise-tasks/hooks/test.sh

@@ -3,17 +3,17 @@
 #MISE description="Test the Gram hooks Claude plugin locally"
 #MISE dir="{{ config_root }}"
 
-#USAGE flag "--local" help="Always use local plugin directory instead of published plugin"
 #USAGE flag "--project <slug>" help="Project slug for OTEL session validation (enables blocking)" default="ecommerce-api"
+#USAGE flag "--local" help="Deprecated no-op; the plugin is always rendered locally now from the current branch's generator."
 
 set -euo pipefail
 
 export GRAM_HOOKS_SERVER_URL=$GRAM_SERVER_URL
 
 # Provision a dev API key for the chosen project so Claude's OTEL exporter can
 # authenticate against /rpc/hooks.otel and the server can validate the
-# session. Without this, the hook's getSessionMetadata lookup misses and the
-# risk scanner silently bails (no project to scope policies to).
+# session, and so the hook script's Gram-Key header authenticates against the
+# local server (the published plugin bakes in a prod key that 401s here).
 #
 # This is a local-dev shortcut — production keys go through /rpc/keys.create
 # with proper auth and audit logging. Inlined here so it's obvious it's a
@@ -31,50 +31,62 @@ db_query() {
 project_row=$(db_query -v slug="$project_slug" <<<"SELECT id, organization_id FROM projects WHERE slug = :'slug' AND deleted IS FALSE LIMIT 1" 2>/dev/null || true)
 
 if [ -z "$project_row" ]; then
-  echo "Warning: project '${project_slug}' not found — blocking policies will be inert."
-else
-  project_id="${project_row%%|*}"
-  org_id="${project_row##*|}"
-
-  user_id=$(db_query <<<"SELECT id FROM users LIMIT 1" 2>/dev/null || true)
-  if [ -z "$user_id" ]; then
-    echo "Warning: no users in DB — skipping API key provisioning."
-  else
-    # Soft-delete any prior dev key for this project so we can stash a
-    # new plaintext we know.
-    db_query -v project_id="$project_id" >/dev/null <<<"UPDATE api_keys SET deleted_at = NOW() WHERE project_id = :'project_id' AND name = 'dev-hooks-test' AND deleted IS FALSE"
-
-    token_hex=$(openssl rand -hex 32)
-    api_key="gram_local_${token_hex}"
-    key_prefix="gram_local_${token_hex:0:5}"
-    key_hash=$(printf '%s' "$api_key" | shasum -a 256 | awk '{print $1}')
-
-    db_query \
-      -v org_id="$org_id" \
-      -v project_id="$project_id" \
-      -v user_id="$user_id" \
-      -v key_prefix="$key_prefix" \
-      -v key_hash="$key_hash" \
-      >/dev/null <<<"INSERT INTO api_keys (organization_id, project_id, created_by_user_id, name, key_prefix, key_hash, scopes) VALUES (:'org_id', :'project_id', :'user_id', 'dev-hooks-test', :'key_prefix', :'key_hash', '{hooks}')"
-
-    export CLAUDE_CODE_ENABLE_TELEMETRY=1
-    export OTEL_LOGS_EXPORTER=otlp
-    export OTEL_METRICS_EXPORTER=otlp
-    export OTEL_EXPORTER_OTLP_PROTOCOL=http/json
-    export OTEL_EXPORTER_OTLP_LOGS_ENDPOINT="${GRAM_SERVER_URL}/rpc/hooks.otel/v1/logs"
-    export OTEL_EXPORTER_OTLP_METRICS_ENDPOINT="${GRAM_SERVER_URL}/rpc/hooks.otel/v1/metrics"
-    export OTEL_EXPORTER_OTLP_HEADERS="Gram-Key=${api_key},Gram-Project=${project_slug}"
-    echo "OTEL configured (key: ${api_key:0:20}...)"
-  fi
+  echo "Error: project '${project_slug}' not found — cannot provision dev key." >&2
+  exit 1
 fi
-echo ""
 
-if [ "${usage_local:-}" = "true" ] || ! git diff --quiet HEAD -- hooks/; then
-  echo "Using local plugin directory: ./hooks/plugin-claude-test"
-  echo ""
-  exec claude --plugin-dir ./hooks/plugin-claude-test --debug
-else
-  echo "No local changes in hooks/ — using published plugin"
-  echo ""
-  exec claude --debug
+project_id="${project_row%%|*}"
+org_id="${project_row##*|}"
+
+user_id=$(db_query <<<"SELECT id FROM users LIMIT 1" 2>/dev/null || true)
+if [ -z "$user_id" ]; then
+  echo "Error: no users in DB — cannot provision dev key." >&2
+  exit 1
 fi
+
+# Soft-delete any prior dev key for this project so we can stash a new
+# plaintext we know.
+db_query -v project_id="$project_id" >/dev/null <<<"UPDATE api_keys SET deleted_at = NOW() WHERE project_id = :'project_id' AND name = 'dev-hooks-test' AND deleted IS FALSE"
+
+token_hex=$(openssl rand -hex 32)
+api_key="gram_local_${token_hex}"
+key_prefix="gram_local_${token_hex:0:5}"
+key_hash=$(printf '%s' "$api_key" | shasum -a 256 | awk '{print $1}')
+
+db_query \
+  -v org_id="$org_id" \
+  -v project_id="$project_id" \
+  -v user_id="$user_id" \
+  -v key_prefix="$key_prefix" \
+  -v key_hash="$key_hash" \
+  >/dev/null <<<"INSERT INTO api_keys (organization_id, project_id, created_by_user_id, name, key_prefix, key_hash, scopes) VALUES (:'org_id', :'project_id', :'user_id', 'dev-hooks-test', :'key_prefix', :'key_hash', '{hooks}')"
+
+export CLAUDE_CODE_ENABLE_TELEMETRY=1
+export OTEL_LOGS_EXPORTER=otlp
+export OTEL_METRICS_EXPORTER=otlp
+export OTEL_EXPORTER_OTLP_PROTOCOL=http/json
+export OTEL_EXPORTER_OTLP_LOGS_ENDPOINT="${GRAM_SERVER_URL}/rpc/hooks.otel/v1/logs"
+export OTEL_EXPORTER_OTLP_METRICS_ENDPOINT="${GRAM_SERVER_URL}/rpc/hooks.otel/v1/metrics"
+export OTEL_EXPORTER_OTLP_HEADERS="Gram-Key=${api_key},Gram-Project=${project_slug}"
+echo "OTEL configured (key: ${api_key:0:20}...)"
+echo ""
+
+# Render the observability plugin using the same generator the publish flow
+# uses (server/internal/plugins.GenerateObservabilityPluginPackage), so the
+# test harness exercises the real templated hook.sh — no hand-maintained
+# stub to drift from prod.
+plugin_dir="hooks/.local/plugin-claude"
+rm -rf "$plugin_dir"
+mkdir -p "$plugin_dir"
+
+echo "Rendering plugin into ${plugin_dir}..."
+go run ./server/cmd/dev-observability-plugin \
+  --out "$plugin_dir" \
+  --platform claude \
+  --api-key "$api_key" \
+  --project-slug "$project_slug" \
+  --server-url "$GRAM_SERVER_URL" \
+  --org-name "Gram Local"
+echo ""
+
+exec claude --plugin-dir "$plugin_dir" --debug

client/dashboard/src/pages/chatLogs/ChatDetailPanel.tsx

@@ -8,6 +8,7 @@ import {
   AccordionTrigger,
 } from "@/components/ui/accordion";
 import { CodeBlock } from "@/components/ui/code-block";
+import { ruleIdCategoryLabel } from "@/pages/security/rule-ids";
 import type {
   ChatMessage,
   ChatResolution,
@@ -733,7 +734,7 @@ function RiskBadgePopover({ results }: { results: RiskResult[] }) {
               <div key={r.id} className="py-2 first:pt-0 last:pb-0">
                 <div className="flex items-center gap-2">
                   <Badge variant="destructive" className="shrink-0 text-[10px]">
-                    {r.source}
+                    {ruleIdCategoryLabel(r.ruleId) || r.source.toUpperCase()}
                   </Badge>
                   {r.ruleId && (
                     <span className="text-muted-foreground truncate font-mono text-xs">