toph/claudebox
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
98 commits 1 branch 1 tag 574 KiB
Commit graph

8 commits

Author SHA1 Message Date
Christopher Mühl
72dfde91a8
feat!: thin layer over Claude /sandbox + nftables CIDR block 
Drops bwrap orchestration, history overlay, forced
--dangerously-skip-permissions, SANDBOX.md injection, env-file
loading. claude --sandbox handles kernel isolation; claudebox
manages settings.local.json sandbox.* keys and installs nftables
rules matched on claude-sandbox.slice cgroup membership.

New flake outputs: nixosModules.default + checks.wrapper-syntax.
Docs updated to reflect the layered (not structural) FS guarantee.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-11 12:19:40 +02:00
Christopher Mühl
fbca134511
docs: add scope/limits section, GUARANTEES and THREAT-MODEL 
README gains a scope section linking to two new docs: GUARANTEES.md
(mechanism-level reasoning behind hard guarantees) and THREAT-MODEL.md
(posture ladder, lethal-trifecta framing).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
 2026-05-11 09:21:47 +02:00
Christopher Mühl
fbbb35577e feat(260505-le7): add config file globals, CLI flags, load_config_file, HARNESS_BIN resolution 2026-05-05 15:31:11 +00:00
Christopher Mühl
b2aeb2fd12 docs(260504-bw4): document SSH support in README 2026-05-04 08:39:57 +00:00
Christopher Mühl
aff389b9d4
feat: env files and fix NixOS SSL cert passthrough 
- ~/.claudebox/env and <project>/.claudebox.env loaded at launch
- NIX_SSL_CERT_FILE passed from host instead of hardcoded path

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-28 18:11:56 +02:00
Christopher Mühl
648f89459f docs: update README for phase 05 architecture 
- Remove ANTHROPIC_API_KEY from requirements (OAuth auth works without it)
- Add --gc flag to flags table
- Rewrite "How it works" to reflect direct ~/.claude bind + per-project overlay architecture
- Drop stale symlink/CLAUDE.md references

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-16 10:06:52 +00:00
Christopher Mühl
1ccaf20eb4
docs: fix remote URL and add flake usage to README 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-04-09 22:04:41 +02:00
Christopher Mühl
7430e9d64c
docs: add README 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-04-09 22:03:20 +02:00