alt Hacker NewsI'd love to be able to lock down the browser to only allow certain URLs (e.g. localhost) so I can give Claude (and other tools) carte blanche to use browser automation (rather than manually approving each command). Is this something on your radar / roadmap?
Replies
hugs • yesterday at 6:54 PM
fully aware of the "blast radius" risk of using claude to do stuff. i'm doing all my vibium dev in a vm using UTM (and you should, too!). wonder if there are some network rules we can add.
i did post a v2 roadmap on the github repo. might be time to start the draft for v3!
falcor84 • yesterday at 7:37 PM
As I see it, the only real solution is to put it into a container that has a firewall with a short whitelist.
➕ show 1 reply
If using Claude Code, a simple hook can govern `browser_navigate` (mcp)
A custom sh script or something for whitelists would take ~5min to setup.
For more robust governance (many policies), you can write Rego using https://github.com/eqtylab/cupcake
https://code.claude.com/docs/en/hooks#mcp-tool-naming