I just enabled the input-sanitizer and it seems to work. I’m a little worried the HTML comment one might be annoying in some cases, but we’ll see.
The secrets in this screenshot are Claude-generated to look like AWS secrets, not actual secrets.
I also have a plan to enable claude-guard entirely as my Agent SDK backend, but it’s a bit more complicated and I’m going to wait until my Fable rate limits reset. It looks like I can probably get everything I want by maintaining my own worktree logic and just having claude-guard mount the folders and using runsc + nvproxy to share the GPU.
I’ll probably need a way to to use nvproxy locally, a way to expose a port in the container (I have agents run web servers so I can see what a PR would do), and I’ll need to make sure claude-guard passes through Claude Code’s JSON stream so it can be controlled by the Agent SDK. I’ll file issues as needed when I get to this though.
I just enabled the input-sanitizer and it seems to work. I’m a little worried the HTML comment one might be annoying in some cases, but we’ll see.
The secrets in this screenshot are Claude-generated to look like AWS secrets, not actual secrets.
I also have a plan to enable
claude-guardentirely as my Agent SDK backend, but it’s a bit more complicated and I’m going to wait until my Fable rate limits reset. It looks like I can probably get everything I want by maintaining my own worktree logic and just having claude-guard mount the folders and using runsc + nvproxy to share the GPU.I’ll probably need a way to to use nvproxy locally, a way to expose a port in the container (I have agents run web servers so I can see what a PR would do), and I’ll need to make sure claude-guard passes through Claude Code’s JSON stream so it can be controlled by the Agent SDK. I’ll file issues as needed when I get to this though.