Gallery
About
Wrapper around Apple's macOS sandbox-exec tool, which usually sandboxes native apps. It is "allow-first" i.e. it will not overprotect everything, just crucial information and therefore allows most tools to run without issues. Limiting is done using a .gitignore like file schema. Further TOML config options available.I built it because Docker sandboxing requires config and planning. Build in sandboxing of AI tools instead is limited to the very tools themselves, instead I wanted to have a simple cage around Claude running inside VSCode. Also needed to protect files inside a folder like .env.local or keys.Install via: brew install holtwick/tap/bxRun like: bx claude .
Comments (0)
No comments yet. Be the first to comment!
Related Products
Claimzer AI — DMCA Takedown in 60 Seconds
Stop Content Theft — Claimzer AI Handles Your DMCA Takedown Notice End to End
Privacy Release Gate for iOS
Prevent iOS privacy issues before App Store submission
Unicode Steganography
Open-source GDPR router for LLMs detects PII, forces EU-only inference
BitBang – P2P tunnels to localhost, no account required
BitBang – P2P tunnels to localhost, no account required