HackerTrans
TopNewTrendsCommentsPastAskShowJobs

sayil

no profile record

Submissions

Show HN: Run Claude Code autonomously inside your Docker Compose stack (OSS)

github.com
8 points·by sayil·3 เดือนที่ผ่านมา·0 comments

Show HN: Run Claude Code with –dangerously-skip-permissions in a Docker sandbox

github.com
2 points·by sayil·4 เดือนที่ผ่านมา·2 comments

comments

sayil
·4 เดือนที่ผ่านมา·discuss
That's a valid point. The primary protection is file system isolation. The agent can't touch anything outside your project directory, and it won't have destructive access to most external APIs unless you provide keys. The threat model is really about preventing unintended file system changes. Full network sandboxing isn't really viable since Claude Code needs internet access to function.