undefined | Better HN

0 pointsnowahe2mo ago0 comments

By any chance, do you know what Claude Code's sandbox feature uses under the hood and how that relates to your solution ? From what I remember it also uses the native MacOS sandbox framework, but I haven't looked too deep into it and don't trust it fully

0 comments

e1g2mo ago

Claude Code sandboxing uses the same basic OS primitive but grants read access to the entire filesystem and includes escape hatches (some commands bypass sandboxing). Also, I wanted something solid I can use to limit every agent (OpenCode, Pi, Auggie, etc).

qalmakka2mo ago

On Linux in a pinch you can use bubblewrap to hide and replace directories for a given process

caspar2mo ago

for anyone reading this later, claude code's sandbox code is at https://github.com/anthropic-experimental/sandbox-runtime/

j / k navigate · click thread line to collapse

0 comments

e1g2mo ago

qalmakka2mo ago

On Linux in a pinch you can use bubblewrap to hide and replace directories for a given process

caspar2mo ago

for anyone reading this later, claude code's sandbox code is at https://github.com/anthropic-experimental/sandbox-runtime/

j / k navigate · click thread line to collapse