HackerTrans
トップ新着トレンドコメント過去質問紹介求人

sayil

no profile record

投稿

Show HN: Run Claude Code autonomously inside your Docker Compose stack (OSS)

github.com
8 ポイント·投稿者 sayil·3 か月前·0 コメント

Show HN: Run Claude Code with –dangerously-skip-permissions in a Docker sandbox

github.com
2 ポイント·投稿者 sayil·4 か月前·2 コメント

コメント

sayil
·4 か月前·議論
That's a valid point. The primary protection is file system isolation. The agent can't touch anything outside your project directory, and it won't have destructive access to most external APIs unless you provide keys. The threat model is really about preventing unintended file system changes. Full network sandboxing isn't really viable since Claude Code needs internet access to function.