8 pointsby softie1234 hours ago3 comments

tomaytotomato3 hours ago
Not a criticism, but why would I use this instead of locking down my Claude using the allow/deny permissions list?
```
    "permissions": {
    "allow": [
      "Bash(npm run lint)",
      "Bash(npm run test *)",
      "Read(~/.zshrc)"
    ],
    "deny": [
      "Bash(curl *)",
      "Read(./.env)",
      "Read(./.env.*)",
      "Read(./secrets/**)"
    ]
  },
```
- softie123an hour ago
  Idea is not to deny permissions to everything but just keep a log on what the agents are doing thats not in line with our permissions and also you have to know what they are bypassing so we can put them in deny list later. Very useful when you spawn many agents working in parallel. This is more of an observability tool.
- FishAngular123 hours ago
  Where would one put this? In AGENTS.md?
  - abirch3 hours ago
    Your settings file: User settings are defined in ~/.claude/settings.json
    or /permissions
    https://code.claude.com/docs/en/permissions
AdmiralAsshat4 hours ago
Probably needs a better metaphor than "police department", what with the most popular cop meme being:
https://www.reddit.com/media?url=https%3A%2F%2Fpreview.redd....
- softie1233 hours ago
  [dead]
KaiShips3 hours ago
[flagged]