Gallery
About
Wrapper around Apple's macOS sandbox-exec tool, which usually sandboxes native apps. It is "allow-first" i.e. it will not overprotect everything, just crucial information and therefore allows most tools to run without issues. Limiting is done using a .gitignore like file schema. Further TOML config options available.I built it because Docker sandboxing requires config and planning. Build in sandboxing of AI tools instead is limited to the very tools themselves, instead I wanted to have a simple cage around Claude running inside VSCode. Also needed to protect files inside a folder like .env.local or keys.Install via: brew install holtwick/tap/bxRun like: bx claude .
Comments (0)
No comments yet. Be the first to comment!
Related Products
Using Tailscale with an OrbStack VM on macOS
Open-source private home security camera system (end-to-end encryption)
Logatory – local-first log analysis and threat detection, no SIEM
Osint Arena – GeoGuessr for OSINT
Macfigure – Mac configuration in pkl. Simple alternative to Nix-Darwin
I built a native macOS Markdown viewer 100% with AI coding agents