Last active
September 24, 2025 17:01
-
-
Save ardallie/55e9c797a1d957045e970c2d1e24cc7d to your computer and use it in GitHub Desktop.
Permissions for Claude Code.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "includeCoAuthoredBy": false, | |
| "permissions": { | |
| "allow": [ | |
| "Bash(find :*)", | |
| "Bash(git branch :*)", | |
| "Bash(git diff :*)", | |
| "Bash(git log :*)", | |
| "Bash(git remote :*)", | |
| "Bash(git reset --hard :*)", | |
| "Bash(git reset --soft :*)", | |
| "Bash(git show :*)", | |
| "Bash(git status :*)", | |
| "Bash(grep :*)", | |
| "Bash(pnpm compile :*)", | |
| "Bash(pnpm test :*)" | |
| ], | |
| "deny": [ | |
| "Bash(* /etc/*)", | |
| "Bash(* /proc/*)", | |
| "Bash(* /root/*)", | |
| "Bash(* /sys/*)", | |
| "Bash(apt purge :*)", | |
| "Bash(apt remove :*)", | |
| "Bash(apt-get purge :*)", | |
| "Bash(apt-get remove :*)", | |
| "Bash(chmod +x /etc:*)", | |
| "Bash(chmod +x /root:*)", | |
| "Bash(chmod 777 :*)", | |
| "Bash(chown :*)", | |
| "Bash(curl file://:*)", | |
| "Bash(curl ftp://:*)", | |
| "Bash(del :*)", | |
| "Bash(find / -delete:*)", | |
| "Bash(find /etc :*)", | |
| "Bash(find /proc :*)", | |
| "Bash(find /root :*)", | |
| "Bash(find /sys :*)", | |
| "Bash(git push :*)", | |
| "Bash(kill -9 :*)", | |
| "Bash(killall :*)", | |
| "Bash(pkill :*)", | |
| "Bash(rd :*)", | |
| "Bash(rm :*)", | |
| "Bash(rmdir :*)", | |
| "Bash(scp :*)", | |
| "Bash(ssh :*)", | |
| "Bash(sudo :*)", | |
| "Bash(wget :*)", | |
| "Bash(xargs :*)", | |
| "Read(*.cert)", | |
| "Read(*.crt)", | |
| "Read(*.env)", | |
| "Read(*.env.*)", | |
| "Read(*.key)", | |
| "Read(*.pem)", | |
| "Read(id_dsa:*)", | |
| "Read(id_ecdsa:*)", | |
| "Read(id_ed25519:*)", | |
| "Read(id_rsa:*)" | |
| ] | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Claude Code settings file
This configuration creates a safe environment where Claude Code can perform common tasks like viewing code changes and running builds/tests, while preventing potentially harmful system modifications or destructive operations.
Copy this file to the
.claudefolder in your project. You should commit it to your VCS. Alternatively, create asettings.local.jsonfile for local development. Validate the settings by running the/doctorcommand in Claude Code.