Skip to content

nateso/safe-claude

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
workspace
workspace
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
install.ps1
install.ps1
 
 
install.sh
install.sh
 
 
safe-claude
safe-claude
 
 
safe-claude.ps1
safe-claude.ps1
 
 

Repository files navigation

Safe Claude

Run Claude Code inside an isolated Docker container with access to only one folder on your machine. Claude can only read and write files within that folder — nothing else on your host machine is accessible.

Why use this? Claude Code is a powerful autonomous agent that can read, write, and delete files. Running it directly on your machine gives it access to your home directory, credentials, and other sensitive data. This project eliminates that risk by sandboxing Claude inside a container where only a single folder you choose is ever visible.

Security Model The container has no access to your home directory, credentials, or other files. Only the folder you explicitly mount is visible to Claude. Within the mounted folder Claude can write/delete/corrupt everything with no restrictions.

Requirements

  • Docker installed on your host machine
  • An Anthropic Pro / Max account

Quick Start

1. Open Docker on your machine

Just open the application as you would open any application.

2. Clone this Repository to your machine

# this will create a folder safe-claude in your current working directory with all code from this repository
git clone https://github.com/nateso/safe-claude.git

# enter the folder
cd safe-claude

3. Run the installer

macOS / Linux:

./install.sh

Windows (PowerShell):

powershell -ExecutionPolicy Bypass -File install.ps1

The installer will:

  • Check that Docker is running
  • Build the safe-claude Docker image (takes a few minutes the first time)
  • Install the safe-claude command to a directory on your PATH

4. Use it

macOS / Linux:

safe-claude /path/to/your/project

Windows:

safe-claude C:\path\to\your\project

That's it. The command will:

  • Create a new container, which with the specified folder as volume.
  • Start the container
  • Drop you into a claude session inside the container with /workspace pointing to your folder.

How containers are managed

Each folder gets its own container. The container name is derived deterministically from the folder path (e.g. safe-claude-myproject-a3f2b1c8), so running safe-claude /path/to/your/project always connects to the same container.

Manual Setup

If you prefer to manage Docker manually, here are the individual steps:

# build the image
docker build -t safe-claude .

# create the container
docker run -dit --name your_container_name \
  -v /path/to/your/folder:/workspace \
  safe-claude

# enter the container
docker exec -it your_container_name /bin/bash

# Run claude inside the container
claude

Replace /path/to/your/folder with the local directory you want Claude to work in and your_container_name with a name of your choice.

You will notice you are inside the container because your command line path will say something like root@123456f338bb:/workspace.

To exit the container, type exit or press Ctrl+D.

What's included in the container

  • Node.js 20
  • Claude Code (@anthropic-ai/claude-code)
  • Python 3 + Conda (Miniconda)
  • R
  • Common build tools

About

Run Claude Code inside an isolated Docker container with access to only one folder on your machine.

Resources

Readme

License

MIT license
Activity

Stars

3 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages