1.7 KiB
1.7 KiB
| gsd_state_version | milestone | milestone_name | status | stopped_at | last_updated | last_activity | progress | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 1.0 | v2.0 | Network Isolation & Profiles | active | null | 2026-04-10 | 2026-04-10 - Milestone v2.0 started |
|
Project State
Project Reference
See: .planning/PROJECT.md (updated 2026-04-10)
Core value: Secrets never enter the Claude Code environment Current focus: Defining requirements for v2.0
Current Position
Phase: Not started (defining requirements) Plan: — Status: Defining requirements Last activity: 2026-04-10 — Milestone v2.0 started
Accumulated Context
Decisions
- [Phase 01]: Claude Code provided via nix-claude-code flake (ryoppippi/nix-claude-code), not host PATH
- [Phase 01]: readlink -f required to resolve NixOS profile symlinks to real nix store paths for bwrap visibility
- [Phase 01]: SANDBOX_PATH built via makeBinPath in flake.nix to prevent host PATH leakage
- [Phase 01]: SHELL set to nix store bash path, not /bin/bash (doesn't exist in tmpfs root)
- [Phase 01]: --shell flag added for manual sandbox debugging
- [Phase 01]: SSL cert verification failure is a host-level NixOS issue, not sandbox-specific
Pending Todos
None.
Blockers/Concerns
- SSL cert verification fails system-wide (host + sandbox) — NixOS/OpenSSL issue, not claudebox
Quick Tasks Completed
| # | Description | Date | Commit | Directory |
|---|---|---|---|---|
| 260410-d4u | on non-nixos hosts, bwrap fails because /etc/static does not exist | 2026-04-10 | 97c10f8 |
260410-d4u-on-non-nixos-hosts-bwrap-fails-because-e |