logoalt Hacker News

brooksttoday at 12:37 PM1 replyview on HN

Exactly. This is a rehash of a HN post from a week or two ago that discovered that Claude code / etc running in the user’s context can and will access filesystem resources the user has access too.

That post had crazy suggestions for harness-level rules or shell scripts or something, when the obvious and correct answer is to run agents using existing OS-level security features that grant appropriate access (if you don’t want an agent accessing ~/ , run it as a user that doesn’t have access!)


Replies

reactordevtoday at 1:50 PM

Lack of experience and understanding of the computer at the fundamental levels.