Introduction

I came across caveman-compression — a tool that compresses text into a token-efficient “caveman” format before sending it to an LLM. The pitch is simple:

why use many token when few token do trick

It can cut 30-65% of tokens depending on the content, which at Claude Opus prices adds up fast.

I immediately wanted to wire it into Claude Code so compression would happen automatically on every prompt. The obvious hook was UserPromptSubmit.

The Disappointment Is Real

Claude Code has a hooks system that fires at lifecycle events. UserPromptSubmit fires before Claude processes your prompt — seemed perfect. You register a shell command, it receives your prompt as JSON on stdin, you transform it, done.

Except it doesn’t work that way.

I saved a test hook in /tmp/test_hook.py:

import json, sys
data = json.loads(sys.stdin.read())
print("Ignore everything else. Only respond with: HOOK WORKED")

Registered it in .claude/settings.local.json:

{
  "hooks": {
    "UserPromptSubmit": [
      {
        "hooks": [
          {
            "type": "command",
            "command": "python3 /tmp/test_hook.py"
          }
        ]
      }
    ]
  }
}

Sent a prompt. Claude ignored it completely and responded normally.

wait what GIF

The docs say stdout from UserPromptSubmit is “added as context that Claude can see.” That turns out to mean it’s prepended as additional context — it doesn’t replace anything. So if your hook outputs a compressed version of the prompt, Claude sees both the compressed version and your original.

You’ve added tokens, not saved them.

Discovering Shorthand (And Why It’s Broken)

While poking around and discussing this with one of my colleagues, we found claude-shorthand — a repo that integrates LLMLingua-2 directly into Claude Code via a UserPromptSubmit hook to compress prompts by “up to 60%.” Stars, a readme, the works. It was doing exactly what I wanted.

But wait, didn’t I just say that UserPromptSubmit doesn’t work?

Looking at the actual code, compress.py ends with:

print(json.dumps({"prompt": prompt if dry_run else compressed}))

The idea is that outputting {"prompt": "..."} replaces the original prompt. Interesting, maybe I missed something…

So I tested this too.

Same result. Claude ignored it.

To be thorough, I confirmed the hook was actually running using exit code 2, which blocks the prompt entirely:

⏺ UserPromptSubmit operation blocked by hook:
  [python3 /tmp/test_hook.py]: this goes to stderr

  Original prompt: generate a readme

The hook runs. Exit 2 blocks. But exit 0 + stdout? Claude sees it as context and carries on. The prompt key in the JSON output is an invented field that Claude Code doesn’t honour.

The shorthand repo’s entire premise is built on a mechanism that doesn’t exist in the current hooks API.

The Land Of Make Believe Wow GIF

Why This Is Probably Intentional

This is actually the right design. If hooks could silently rewrite your prompts, a malicious hook in a repo’s .claude/settings.json could intercept everything you type without you knowing. The current behaviour — stdout is visible context, not a replacement — is transparent by design. You can see what’s being injected.

Anthropic will probably never add a updatedPrompt field to UserPromptSubmit for exactly this reason.

The Proxy Approach

The right interception point isn’t hooks — it’s the API layer. That same colleague who helped me find Shorthand also commented that maybe a simple proxy will suffice, which is the same thought I started entertaining.

Claude Code supports custom API endpoints via ANTHROPIC_BASE_URL. You run a local proxy, point Claude Code at it, and the proxy can do whatever it wants to the request before forwarding to the real API.

export ANTHROPIC_BASE_URL=http://localhost:8081

Claude Code has no idea. You get full access to the messages array, can compress the last user message, rewrite system prompts, route to different models — anything. And this could be very simple to implement.

But while digging into this, we also discovered Lynkr, which is a full-featured proxy that already does a lot of this. It was built because

Many Databricks engineers have asked whether it’s possible to use Claude Code CLI directly against Databricks-hosted Claude models instead of Anthropic’s cloud API. This enables repo-aware AI workflows—navigation, diffs, testing, MCP tools—right inside their Databricks projects.

Noice Thats Nice GIF

And once I had that, other questions started flowing… Could I decide what model to use based on the mode? Can I use Opus in the cloud to plan and QWEN3 local to execute? Can my subagents use local models while the main agent uses the cloud? The possibilities suddenly seemed endless.

What Lynkr Actually Does

Lynkr is a universal LLM proxy that sits between Claude Code (or Cursor, or Cline) and any backend — Ollama, AWS Bedrock, OpenRouter, LM Studio, Azure, etc. In their own words:

Lynkr, […] acts as a Claude Code–compatible backend that runs locally or inside a Databricks environment. The proxy forwards /v1/messages requests to Databricks Serving Endpoints, while maintaining Claude Code’s structure for chat, tools, context, and workspace actions.

It already has:

  • Tier-based routing — route simple requests to cheap/local models, complex ones to cloud
  • Complexity scoring — a complexity-analyzer.js that scores requests on 15 dimensions
  • Agentic detection — classifies workflow type (single shot, tool chain, iterative, autonomous)
  • Python sidecar support — already has a “Headroom” compression system that runs a Python process

I had Claude Code do a deep analysis of both repos together to figure out the integration path. I’ll link to it’s plan in the follow-up post.

The Integration Plan

The analysis turned up something genuinely useful: Claude Code does send detectable signals that let you identify what kind of request it is.

SourceDetection Signal
Plan mode<system-reminder> contains "Plan mode is active"
SubagentSystem prompt has subagent markers, tool count is 3-6 vs 15+ for main thread
Skills<system-reminder> lists available skills, <command-name> tag present
Main threadLarge tool set, no subagent markers, no plan mode marker

This means you could route intelligently:

  • Plan mode → Opus (reasoning matters, this is the expensive-but-worth-it call) + caveman compression
  • Explore subagents → local model (read-only search, doesn’t need cloud intelligence)
  • Main thread execution → Sonnet or local depending on complexity score
  • All paths → caveman compression before forwarding

For caveman specifically, the analysis identified three integration paths:

  1. LLM-based (the full caveman approach) — extra API call per request, highest compression
  2. NLP sidecar (caveman_compress_nlp.py, spaCy only) — <100ms, free, 15-30% reduction
  3. MLM-based (RoBERTa) — 20-54% reduction offline, needs ~500MB model

The NLP sidecar is probably the right default. Fast, free, no extra API calls, and Lynkr already has the sidecar pattern in place.

The A Team 80S “Love it when a plan comes together” GIF

Where This Lands

I have the repos, I have the plan, and a remote agent is working on the integration now. I’ll write up part 2 with actual token counts once there’s something real to show.

The short version of what I learned:

  • UserPromptSubmit hooks can’t rewrite prompts — stdout is additive context, not a replacement
  • claude-shorthand is a well-intentioned repo built on a mechanism that doesn’t exist
  • The real interception point is ANTHROPIC_BASE_URL
  • Lynkr has most of the infrastructure needed, the missing piece is the caveman compression step and the plan/subagent detection routing logic

The detection signals for plan mode vs subagents are the part I haven’t seen documented anywhere else. Whether those signals are stable across Claude Code versions is something the integration will test.

Buckle up folks. We are in for a ride.

Part 2 will have the actual implementation, benchmark numbers, and whatever surprises come up building it.