2.7 KiB
Phase 1: Minimal Viable Sandbox - Discussion Log
Audit trail only. Do not use as input to planning, research, or execution agents. Decisions are captured in CONTEXT.md — this log preserves the alternatives considered.
Date: 2026-04-09 Phase: 01-minimal-viable-sandbox Areas discussed: Argument passthrough, nix-index database, Env edge cases, Git identity
Argument Passthrough
| Option | Description | Selected |
|---|---|---|
| Forward all unknown | claudebox claims --yes, --dry-run, --check; everything else passes through to claude | ✓ |
| Explicit -- separator | claudebox args before --, claude args after -- | |
| Pass everything through | claudebox has no flags, controlled via env vars |
User's choice: Forward all unknown Notes: No -- separator needed. Simple and intuitive.
nix-index Database
| Option | Description | Selected |
|---|---|---|
| comma-with-db | Use nix-community/nix-index-database flake, bundles the DB | ✓ |
| Mount host ~/.cache/nix-index | Bind-mount host's nix-index DB read-only | |
| Both — prefer host, fallback to bundled | Mount host DB if exists, otherwise comma-with-db |
User's choice: comma-with-db Notes: Self-contained, no host dependency.
Env Edge Cases
| Option | Description | Selected |
|---|---|---|
| Strict allowlist | Only SAND-03 vars, rebuild to add more | |
| Allowlist + CLAUDEBOX_EXTRA_ENV | Core allowlist + user-specified extras via comma-separated env var | ✓ |
| Strict + computed vars | Allowlist from host + claudebox generates its own TMPDIR, COLORTERM, etc. |
User's choice: Allowlist + CLAUDEBOX_EXTRA_ENV Notes: Pragmatic escape hatch for power users, user takes responsibility for not leaking secrets.
Git Identity
| Option | Description | Selected |
|---|---|---|
| Generate minimal .gitconfig | Create sandbox-only .gitconfig with user.name, user.email, safe.directory | ✓ |
| Mount host .gitconfig read-only | Bind-mount host config, carries over everything including broken credential helpers | |
| Mount + override dangerous keys | Mount host config but neutralize credential.helper and core.pager via env vars |
User's choice: Generate minimal .gitconfig Notes: User asked whether custom git settings matter for Claude. Conclusion: Claude uses git programmatically, doesn't need aliases/pagers/merge tools. Mounting host config risks breakage from credential helpers and pagers referencing binaries not in sandbox PATH.
Claude's Discretion
- Mount ordering, tmpfs layout, /dev /proc /tmp setup
- --clearenv + --setenv sequencing
- DNS resolution mount strategy
- SSL cert bundle path detection
Deferred Ideas
None