feat: configure claude

mrsimonemms · mrsimonemms · commit 4a545587ca9d · 2026-05-06T07:17:45.000+01:00
This makes Claude more unrestricted in a containerised environment (to
avoid asking for permission to do non-destructive things), but gives
guardrails for things that will interact with the outside world or
production systems.

Signed-off-by: Simon Emms &lt;simon@simonemms.com&gt;
diff --git a/images/base/.devcontainer/Dockerfile b/images/base/.devcontainer/Dockerfile
@@ -71,6 +71,10 @@ RUN add-apt-repository ppa:aos1/diff-so-fancy \
   && apt-get update \
   && apt-get install -y diff-so-fancy
 
+# Add default managed settings for Claude
+RUN mkdir -p /etc/claude-code
+COPY claude-managed-settings.json /etc/claude-code/managed-settings.json
+
 USER vscode
 WORKDIR /home/vscode
 
diff --git a/images/base/.devcontainer/claude-managed-settings.json b/images/base/.devcontainer/claude-managed-settings.json
@@ -0,0 +1,26 @@
+{
+  "permissions": {
+    "defaultMode": "bypassPermissions",
+    "deny": [
+      "Bash(git push *)",
+      "Bash(git push --force*)",
+      "Bash(git push -f*)",
+      "Bash(gh repo delete *)",
+      "Bash(gh release create *)",
+      "Bash(* production *)",
+      "Bash(* prod *)",
+      "Bash(kubectl apply *)",
+      "Bash(kubectl delete *)",
+      "Bash(kubectl rollout restart *)",
+      "Bash(kubectl scale *)",
+      "Bash(kubectl config use-context *)",
+      "Bash(terraform apply *)",
+      "Bash(terraform destroy *)",
+      "Bash(aws *prod*)",
+      "Bash(gcloud *prod*)",
+      "Bash(az *prod*)",
+      "Bash(op *)",
+      "Bash(pass *)"
+    ]
+  }
+}
diff --git a/images/base/.devcontainer/devcontainer.json b/images/base/.devcontainer/devcontainer.json
@@ -14,7 +14,8 @@
     "ghcr.io/eitsupi/devcontainer-features/jq-likes:2": {
       "yqVersion": "4"
     },
-    "ghcr.io/devcontainers/features/github-cli:1": {}
+    "ghcr.io/devcontainers/features/github-cli:1": {},
+    "ghcr.io/anthropics/devcontainer-features/claude-code:1": {}
   },
   "customizations": {
     "vscode": {
@@ -25,9 +26,12 @@
         "GitHub.vscode-github-actions",
         "ms-vscode.makefile-tools",
         "ms-vsliveshare.vsliveshare",
-        "Anthropic.claude-code",
         "openai.chatgpt"
-      ]
+      ],
+      "settings": {
+        "claudeCode.allowDangerouslySkipPermissions": true,
+        "claudeCode.initialPermissionMode": "bypassPermissions"
+      }
     }
   },
   "shutdownAction": "stopContainer",
