refactor: Use SessionStart teleport matcher instead of separate hooks

Change approach from separate PreTeleport/PostTeleport hook events to
using SessionStart with a `teleport` matcher. This is cleaner since
teleporting to CLI starts a new session anyway.

SessionStart matchers:
- `*` - All session starts
- `teleport` - Only teleported sessions (web → CLI)
- `fresh` - Only fresh sessions (not teleported)

Removes pre-teleport.sh example since there's no pre-teleport hook.

CHANGELOG.md

@@ -1,71 +1,5 @@
 # Changelog
 
-## 2.0.74
-
-- Added LSP (Language Server Protocol) tool for code intelligence features like go-to-definition, find references, and hover documentation
-- Added `/terminal-setup` support for Kitty, Alacritty, Zed, and Warp terminals
-- Added ctrl+t shortcut in `/theme` to toggle syntax highlighting on/off
-- Added syntax highlighting info to theme picker
-- Added guidance for macOS users when Alt shortcuts fail due to terminal configuration
-- Fixed skill `allowed-tools` not being applied to tools invoked by the skill
-- Fixed Opus 4.5 tip incorrectly showing when user was already using Opus
-- Fixed a potential crash when syntax highlighting isn't initialized correctly
-- Fixed visual bug in `/plugins discover` where list selection indicator showed while search box was focused
-- Fixed macOS keyboard shortcuts to display 'opt' instead of 'alt'
-- Improved `/context` command visualization with grouped skills and agents by source, slash commands, and sorted token count
-- [Windows] Fixed issue with improper rendering
-- [VSCode] Added gift tag pictogram for year-end promotion message
-
-## 2.0.73
-
-- Added clickable `[Image #N]` links that open attached images in the default viewer
-- Added alt-y yank-pop to cycle through kill ring history after ctrl-y yank
-- Added search filtering to the plugin discover screen (type to filter by name, description, or marketplace)
-- Added support for custom session IDs when forking sessions with `--session-id` combined with `--resume` or `--continue` and `--fork-session`
-- Fixed slow input history cycling and race condition that could overwrite text after message submission
-- Improved `/theme` command to open theme picker directly
-- Improved theme picker UI
-- Improved search UX across resume session, permissions, and plugins screens with a unified SearchBox component
-- [VSCode] Added tab icon badges showing pending permissions (blue) and unread completions (orange)
-
-## 2.0.72
-
-- Added Claude in Chrome (Beta) feature that works with the Chrome extension (https://claude.ai/chrome) to let you control your browser directly from Claude Code
-- Reduced terminal flickering
-- Added scannable QR code to mobile app tip for quick app downloads
-- Added loading indicator when resuming conversations for better feedback
-- Fixed `/context` command not respecting custom system prompts in non-interactive mode
-- Fixed order of consecutive Ctrl+K lines when pasting with Ctrl+Y
-- Improved @ mention file suggestion speed (~3x faster in git repositories)
-- Improved file suggestion performance in repos with `.ignore` or `.rgignore` files
-- Improved settings validation errors to be more prominent
-- Changed thinking toggle from Tab to Alt+T to avoid accidental triggers
-
-## 2.0.71
-
-- Added /config toggle to enable/disable prompt suggestions
-- Added `/settings` as an alias for the `/config` command
-- Fixed @ file reference suggestions incorrectly triggering when cursor is in the middle of a path
-- Fixed MCP servers from `.mcp.json` not loading when using `--dangerously-skip-permissions`
-- Fixed permission rules incorrectly rejecting valid bash commands containing shell glob patterns (e.g., `ls *.txt`, `for f in *.png`)
-- Bedrock: Environment variable `ANTHROPIC_BEDROCK_BASE_URL` is now respected for token counting and inference profile listing
-- New syntax highlighting engine for native build
-
-## 2.0.70
-
-- Added Enter key to accept and submit prompt suggestions immediately (tab still accepts for editing)
-- Added wildcard syntax `mcp__server__*` for MCP tool permissions to allow or deny all tools from a server
-- Added auto-update toggle for plugin marketplaces, allowing per-marketplace control over automatic updates
-- Added `current_usage` field to status line input, enabling accurate context window percentage calculations
-- Fixed input being cleared when processing queued commands while the user was typing
-- Fixed prompt suggestions replacing typed input when pressing Tab
-- Fixed diff view not updating when terminal is resized
-- Improved memory usage by 3x for large conversations
-- Improved resolution of stats screenshots copied to clipboard (Ctrl+S) for crisper images
-- Removed # shortcut for quick memory entry (tell Claude to edit your CLAUDE.md instead)
-- Fix thinking mode toggle in /config not persisting correctly
-- Improve UI for file creation permission dialog
-
 ## 2.0.69
 
 - Minor bugfixes

plugins/code-review/README.md

@@ -22,29 +22,23 @@ Performs automated code review on a pull request using multiple specialized agen
    - **Agent #4**: Analyze git blame/history for context-based issues
 5. Scores each issue 0-100 for confidence level
 6. Filters out issues below 80 confidence threshold
-7. Outputs review (to terminal by default, or as PR comment with `--comment` flag)
+7. Posts review comment with high-confidence issues only
 
 **Usage:**
 ```bash
-/code-review [--comment]
+/code-review
 ```
 
-**Options:**
-- `--comment`: Post the review as a comment on the pull request (default: outputs to terminal only)
-
 **Example workflow:**
 ```bash
-# On a PR branch, run locally (outputs to terminal):
+# On a PR branch, run:
 /code-review
 
-# Post review as PR comment:
-/code-review --comment
-
 # Claude will:
 # - Launch 4 review agents in parallel
 # - Score each issue for confidence
-# - Output issues ≥80 confidence (to terminal or PR depending on flag)
-# - Skip if no high-confidence issues found
+# - Post comment with issues ≥80 confidence
+# - Skip posting if no high-confidence issues found
 ```
 
 **Features:**
@@ -120,23 +114,17 @@ This plugin is included in the Claude Code repository. The command is automatica
 ### Standard PR review workflow:
 ```bash
 # Create PR with changes
-# Run local review (outputs to terminal)
 /code-review
 
 # Review the automated feedback
 # Make any necessary fixes
-
-# Optionally post as PR comment
-/code-review --comment
-
 # Merge when ready
 ```
 
 ### As part of CI/CD:
 ```bash
 # Trigger on PR creation or update
-# Use --comment flag to post review comments
-/code-review --comment
+# Automatically posts review comments
 # Skip if review already exists
 ```
 

plugins/code-review/commands/code-review.md

@@ -1,5 +1,5 @@
 ---
-allowed-tools: Bash(gh issue view:*), Bash(gh search:*), Bash(gh issue list:*), Bash(gh pr comment:*), Bash(gh pr diff:*), Bash(gh pr view:*), Bash(gh pr list:*), mcp__github_inline_comment__create_inline_comment
+allowed-tools: Bash(gh issue view:*), Bash(gh search:*), Bash(gh issue list:*), Bash(gh pr comment:*), Bash(gh pr diff:*), Bash(gh pr view:*), Bash(gh pr list:*)
 description: Code review a pull request
 ---
 
@@ -11,7 +11,7 @@ To do this, follow these steps precisely:
    - The pull request is closed
    - The pull request is a draft
    - The pull request does not need code review (e.g. automated PR, trivial change that is obviously correct)
-   - Claude has already commented on this PR (check `gh pr view <PR> --comments` for comments left by claude)
+   - You have already submitted a code review on this pull request
 
    If any condition is true, stop and do not proceed.
 
@@ -52,30 +52,12 @@ Note: Still review Claude generated PR's.
 
 6. Filter out any issues that were not validated in step 5. This step will give us our list of high signal issues for our review.
 
-7. If issues were found, skip to step 8 to post inline comments directly.
-
-   If NO issues were found, post a summary comment using `gh pr comment` (if `--comment` argument is provided):
-   "No issues found. Checked for bugs and CLAUDE.md compliance."
-
-8. Post inline comments for each issue using `mcp__github_inline_comment__create_inline_comment`:
-   - `path`: the file path
-   - `line` (and `startLine` for ranges): select the buggy lines so the user sees them
-   - `body`: Brief description of the issue (no "Bug:" prefix). For small fixes (up to 5 lines changed), include a committable suggestion:
-     ```suggestion
-     corrected code here
-     ```
-
-     **Suggestions must be COMPLETE.** If a fix requires additional changes elsewhere (e.g., renaming a variable requires updating all usages), do NOT use a suggestion block. The author should be able to click "Commit suggestion" and have a working fix - no followup work required.
-
-     For larger fixes (6+ lines, structural changes, or changes spanning multiple locations), do NOT use suggestion blocks. Instead:
-     1. Describe what the issue is
-     2. Explain the suggested fix at a high level
-     3. Include a copyable prompt for Claude Code that the user can use to fix the issue, formatted as:
-        ```
-        Fix [file:line]: [brief description of issue and suggested fix]
-        ```
-
-   **IMPORTANT: Only post ONE comment per unique issue. Do not post duplicate comments.**
+7. Finally, comment on the pull request.
+   When writing your comment, follow these guidelines:
+   a. Keep your output brief
+   b. Avoid emojis
+   c. Link and cite relevant code, files, and URLs for each issue
+   d. When citing CLAUDE.md violations, you MUST quote the exact text from CLAUDE.md that is being violated (e.g., CLAUDE.md says: "Use snake_case for variable names")
 
 Use this list when evaluating issues in Steps 4 and 5 (these are false positives, do NOT flag):
 
@@ -90,18 +72,40 @@ Notes:
 
 - Use gh CLI to interact with GitHub (e.g., fetch pull requests, create comments). Do not use web fetch.
 - Create a todo list before starting.
-- You must cite and link each issue in inline comments (e.g., if referring to a CLAUDE.md, include a link to it).
-- If no issues are found, post a comment with the following format:
+- You must cite and link each issue (e.g., if referring to a CLAUDE.md, include a link to it).
+- For your final comment, follow the following format precisely (assuming for this example that you found 3 issues):
 
 ---
 
 ## Code review
 
+Found 3 issues:
+
+1. <brief description of bug> (CLAUDE.md says: "<exact quote from CLAUDE.md>")
+
+<link to file and line with full sha1 + line range for context, eg. https://github.com/anthropics/claude-code/blob/1d54823877c4de72b2316a64032a54afc404e619/README.md#L13-L17>
+
+2. <brief description of bug> (some/other/CLAUDE.md says: "<exact quote from CLAUDE.md>")
+
+<link to file and line with full sha1 + line range for context>
+
+3. <brief description of bug> (bug due to <file and code snippet>)
+
+<link to file and line with full sha1 + line range for context>
+
+---
+
+- Or, if you found no issues:
+
+---
+
+## Auto code review
+
 No issues found. Checked for bugs and CLAUDE.md compliance.
 
 ---
 
-- When linking to code in inline comments, follow the following format precisely, otherwise the Markdown preview won't render correctly: https://github.com/anthropics/claude-code/blob/c21d3c10bc8e898b7ac1a2d745bdc9bc4e423afe/package.json#L10-L15
+- When linking to code, follow the following format precisely, otherwise the Markdown preview won't render correctly: https://github.com/anthropics/claude-code/blob/c21d3c10bc8e898b7ac1a2d745bdc9bc4e423afe/package.json#L10-L15
   - Requires full git sha
   - You must provide the full sha. Commands like `https://github.com/owner/repo/blob/$(git rev-parse HEAD)/foo/bar` will not work, since your comment will be directly rendered in Markdown.
   - Repo name must match the repo you're code reviewing

plugins/plugin-dev/skills/hook-development/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: Hook Development
-description: This skill should be used when the user asks to "create a hook", "add a PreToolUse/PostToolUse/Stop hook", "validate tool use", "implement prompt-based hooks", "use ${CLAUDE_PLUGIN_ROOT}", "set up event-driven automation", "block dangerous commands", or mentions hook events (PreToolUse, PostToolUse, Stop, SubagentStop, SessionStart, SessionEnd, UserPromptSubmit, PreCompact, Notification). Provides comprehensive guidance for creating and implementing Claude Code plugin hooks with focus on advanced prompt-based hooks API.
+description: This skill should be used when the user asks to "create a hook", "add a PreToolUse/PostToolUse/Stop hook", "validate tool use", "implement prompt-based hooks", "use ${CLAUDE_PLUGIN_ROOT}", "set up event-driven automation", "block dangerous commands", "teleport hook", or mentions hook events (PreToolUse, PostToolUse, Stop, SubagentStop, SessionStart, SessionEnd, UserPromptSubmit, PreCompact, Notification). Provides comprehensive guidance for creating and implementing Claude Code plugin hooks with focus on advanced prompt-based hooks API.
 version: 0.1.0
 ---
 
@@ -239,7 +239,12 @@ Execute when user submits a prompt. Use to add context, validate, or block promp
 
 Execute when Claude Code session begins. Use to load context and set environment.
 
-**Example:**
+**Matchers for SessionStart:**
+- `*` - All session starts
+- `teleport` - Only when session started via teleport (web → CLI)
+- `fresh` - Only for fresh sessions (not teleported)
+
+**Example (general context loading):**
 ```json
 {
   "SessionStart": [
@@ -256,12 +261,58 @@ Execute when Claude Code session begins. Use to load context and set environment
 }
 ```
 
+**Example (teleport-specific setup):**
+```json
+{
+  "SessionStart": [
+    {
+      "matcher": "teleport",
+      "hooks": [
+        {
+          "type": "command",
+          "command": "bash ${CLAUDE_PLUGIN_ROOT}/scripts/post-teleport.sh"
+        }
+      ]
+    }
+  ]
+}
+```
+
+**Example script (post-teleport.sh):**
+```bash
+#!/bin/bash
+cd "$CLAUDE_PROJECT_DIR" || exit 0
+
+# Pull latest changes from the teleported branch
+if [ -d ".git" ]; then
+  echo "🔄 Pulling latest changes..."
+  git pull origin "$(git branch --show-current)" 2>/dev/null || true
+fi
+
+# Install dependencies if needed
+if [ -f "package.json" ]; then
+  echo "📦 Installing dependencies..."
+  npm install --silent
+fi
+
+# Start dev server (example for common workflow)
+if [ -f "package.json" ] && grep -q '"dev"' package.json; then
+  echo "🚀 Starting dev server..."
+  npm run dev &
+fi
+```
+
 **Special capability:** Persist environment variables using `$CLAUDE_ENV_FILE`:
 ```bash
 echo "export PROJECT_TYPE=nodejs" >> "$CLAUDE_ENV_FILE"
 ```
 
-See `examples/load-context.sh` for complete example.
+**Teleport-specific input fields:**
+- `is_teleport`: Boolean indicating if this session started via teleport
+- `source`: Where the session came from ("web" or "cli") - only present for teleports
+- `branch`: The git branch that was teleported - only present for teleports
+
+See `examples/load-context.sh` and `examples/post-teleport.sh` for complete examples.
 
 ### SessionEnd
 
@@ -638,7 +689,7 @@ echo "$output" | jq .
 | UserPromptSubmit | User input | Context, validation |
 | Stop | Agent stopping | Completeness check |
 | SubagentStop | Subagent done | Task validation |
-| SessionStart | Session begins | Context loading |
+| SessionStart | Session begins | Context loading (use `teleport` matcher for teleport-specific setup) |
 | SessionEnd | Session ends | Cleanup, logging |
 | PreCompact | Before compact | Preserve context |
 | Notification | User notified | Logging, reactions |
@@ -679,6 +730,7 @@ Working examples in `examples/`:
 - **`validate-write.sh`** - File write validation example
 - **`validate-bash.sh`** - Bash command validation example
 - **`load-context.sh`** - SessionStart context loading example
+- **`post-teleport.sh`** - SessionStart teleport matcher setup example
 
 ### Utility Scripts
 

plugins/plugin-dev/skills/hook-development/examples/post-teleport.sh

@@ -0,0 +1,52 @@
+#!/bin/bash
+# Example SessionStart hook with "teleport" matcher for setting up environment
+# after teleporting from web to CLI. This script pulls changes, installs
+# dependencies, and starts the dev server.
+
+set -euo pipefail
+
+# Navigate to project directory
+cd "$CLAUDE_PROJECT_DIR" || exit 0
+
+echo "Setting up environment after teleport..."
+
+# Pull latest changes if in a git repository
+if [ -d ".git" ]; then
+  current_branch=$(git branch --show-current)
+  echo "🔄 Pulling latest changes for branch: $current_branch"
+  git pull origin "$current_branch" 2>/dev/null || echo "Could not pull (may be offline or no upstream)"
+fi
+
+# Install dependencies based on project type
+if [ -f "package.json" ]; then
+  echo "📦 Installing Node.js dependencies..."
+  npm install --silent 2>/dev/null || npm install
+fi
+
+if [ -f "requirements.txt" ]; then
+  echo "🐍 Installing Python dependencies..."
+  pip install -r requirements.txt --quiet 2>/dev/null || pip install -r requirements.txt
+fi
+
+if [ -f "Cargo.toml" ]; then
+  echo "🦀 Building Rust project..."
+  cargo build 2>/dev/null || true
+fi
+
+# Start development server if available
+if [ -f "package.json" ]; then
+  # Check for common dev server scripts
+  if grep -q '"dev:staging"' package.json; then
+    echo "🚀 Starting staging dev server..."
+    npm run dev:staging &
+  elif grep -q '"dev"' package.json; then
+    echo "🚀 Starting dev server..."
+    npm run dev &
+  elif grep -q '"start"' package.json; then
+    echo "🚀 Starting server..."
+    npm start &
+  fi
+fi
+
+echo "✅ Teleport complete! Environment ready."
+exit 0

plugins/plugin-dev/skills/hook-development/references/patterns.md

@@ -344,3 +344,64 @@ fi
 - Per-project settings
 - Team-specific rules
 - Dynamic validation criteria
+
+## Pattern 11: Teleport Workflow Automation
+
+Automate setup when teleporting sessions from web to CLI using the `teleport` matcher:
+
+**SessionStart hook with teleport matcher:**
+```json
+{
+  "SessionStart": [
+    {
+      "matcher": "teleport",
+      "hooks": [
+        {
+          "type": "command",
+          "command": "bash ${CLAUDE_PLUGIN_ROOT}/scripts/post-teleport.sh"
+        }
+      ]
+    }
+  ]
+}
+```
+
+**post-teleport.sh:**
+```bash
+#!/bin/bash
+cd "$CLAUDE_PROJECT_DIR" || exit 0
+
+# Pull latest changes
+if [ -d ".git" ]; then
+  echo "🔄 Pulling latest changes..."
+  git pull origin "$(git branch --show-current)" 2>/dev/null || true
+fi
+
+# Install dependencies
+if [ -f "package.json" ]; then
+  echo "📦 Installing dependencies..."
+  npm install --silent
+fi
+
+# Start dev server
+if [ -f "package.json" ] && grep -q '"dev:staging"' package.json; then
+  echo "🚀 Starting staging dev server..."
+  npm run dev:staging &
+elif [ -f "package.json" ] && grep -q '"dev"' package.json; then
+  echo "🚀 Starting dev server..."
+  npm run dev &
+fi
+
+echo "✅ Teleport complete! Environment ready."
+```
+
+**Available matchers for SessionStart:**
+- `*` - All session starts (both fresh and teleported)
+- `teleport` - Only teleported sessions (web → CLI)
+- `fresh` - Only fresh sessions (not teleported)
+
+**Use for:**
+- Seamless web-to-CLI workflow transitions
+- Automatic dev server startup after teleporting
+- Pulling latest changes and installing dependencies
+- Running project-specific setup scripts

plugins/plugin-dev/skills/mcp-integration/references/authentication.md

@@ -264,139 +264,6 @@ EOF
 - Time-based authentication
 - Dynamic tenant/workspace selection
 
-### TTL Configuration
-
-By default, dynamically generated API keys are cached for 5 minutes. Configure the TTL with:
-
-```bash
-export CLAUDE_CODE_API_KEY_HELPER_TTL_MS=300000  # 5 minutes (default)
-```
-
-### Writing Robust Helper Scripts
-
-Helper scripts can cause issues if they hang or fail repeatedly. Follow these best practices to prevent infinite retry loops and connection hangs:
-
-**1. Always set timeouts on network operations:**
-```bash
-#!/bin/bash
-# get-token.sh - Robust token fetcher
-
-# Set a timeout for the entire script
-TIMEOUT_SECONDS=10
-
-# Use timeout for network calls
-TOKEN=$(timeout ${TIMEOUT_SECONDS}s curl -s --max-time ${TIMEOUT_SECONDS} \
-  "https://auth.example.com/token" 2>/dev/null)
-
-if [ -z "$TOKEN" ] || [ "$TOKEN" = "null" ]; then
-  # Exit with error - don't output invalid JSON
-  echo "Failed to fetch token" >&2
-  exit 1
-fi
-
-echo "{\"Authorization\": \"Bearer $TOKEN\"}"
-```
-
-**2. Handle VPN/network dependency failures:**
-```bash
-#!/bin/bash
-# get-headers.sh - VPN-aware token fetcher
-
-# Quick connectivity check before attempting auth
-if ! timeout 2s ping -c 1 vpn-dependent-service.internal >/dev/null 2>&1; then
-  echo "VPN not connected or service unreachable" >&2
-  exit 1
-fi
-
-# Proceed with token fetch (with timeout)
-TOKEN=$(timeout 10s get-token-from-vpn-service)
-
-if [ $? -ne 0 ] || [ -z "$TOKEN" ]; then
-  echo "Token fetch failed" >&2
-  exit 1
-fi
-
-echo "{\"Authorization\": \"Bearer $TOKEN\"}"
-```
-
-**3. Cache tokens locally to reduce network calls:**
-```bash
-#!/bin/bash
-# get-headers-cached.sh - Token fetcher with local caching
-
-CACHE_FILE="${HOME}/.cache/my-api-token"
-CACHE_MAX_AGE=240  # seconds (refresh before 5min TTL)
-
-# Check cache validity
-if [ -f "$CACHE_FILE" ]; then
-  CACHE_AGE=$(($(date +%s) - $(stat -c %Y "$CACHE_FILE" 2>/dev/null || stat -f %m "$CACHE_FILE")))
-  if [ "$CACHE_AGE" -lt "$CACHE_MAX_AGE" ]; then
-    cat "$CACHE_FILE"
-    exit 0
-  fi
-fi
-
-# Fetch new token with timeout
-TOKEN=$(timeout 10s fetch-new-token 2>/dev/null)
-
-if [ -z "$TOKEN" ]; then
-  # If fetch fails, try to use expired cache as fallback
-  if [ -f "$CACHE_FILE" ]; then
-    echo "Warning: Using expired cached token" >&2
-    cat "$CACHE_FILE"
-    exit 0
-  fi
-  echo "Failed to fetch token and no cache available" >&2
-  exit 1
-fi
-
-# Update cache
-mkdir -p "$(dirname "$CACHE_FILE")"
-echo "{\"Authorization\": \"Bearer $TOKEN\"}" > "$CACHE_FILE"
-cat "$CACHE_FILE"
-```
-
-**4. Fail fast with clear error messages:**
-```bash
-#!/bin/bash
-set -e  # Exit on any error
-
-# Check prerequisites before attempting network calls
-if [ -z "$API_SECRET" ]; then
-  echo "API_SECRET environment variable not set" >&2
-  exit 1
-fi
-
-# Use short timeouts to fail fast
-TOKEN=$(timeout 5s curl -sf --max-time 5 \
-  -H "X-Secret: $API_SECRET" \
-  "https://auth.example.com/token") || {
-  echo "Token request failed or timed out" >&2
-  exit 1
-}
-
-echo "{\"Authorization\": \"Bearer $TOKEN\"}"
-```
-
-### Troubleshooting Helper Scripts
-
-**Infinite retry loop / hanging:**
-- Add timeouts to all network operations
-- Use `set -e` to exit on errors
-- Check VPN/network connectivity before making requests
-- Ensure script outputs valid JSON or exits with error code
-
-**Script takes too long:**
-- Use `timeout` command wrapper
-- Set `--max-time` on curl requests
-- Consider caching tokens locally
-- Reduce TTL if tokens refresh too slowly
-
-**VPN-dependent helpers failing:**
-- Add connectivity check at start of script
-- Implement graceful degradation with cached tokens
-- Log clear error messages to stderr
-
 ## Security Best Practices
 
 ### DO