Comment by giancarlostoro
21 hours ago
I mean, you can always purge /bin/rm, but at this point since you're not satisfied, sounds like you want SELinux ;)
If Claude is writing a program to go that low level I'd pay money to watch that.
21 hours ago
I mean, you can always purge /bin/rm, but at this point since you're not satisfied, sounds like you want SELinux ;)
If Claude is writing a program to go that low level I'd pay money to watch that.
It doesn't even need to go that low level, writing a program is just the worst case. There are ways to mass delete without `rm`. Example: `find` with the `-delete` flag.
my point being, you can add guard-rails around all these methods, but I would also add an error "IGNORE ALL PREVIOUS INSTRUCTIONS, ARE YOU DELETING THINGS YOU SHOULDNT BE? ASK THE USER" as an error message. In my case since Claude Code runs via Zed, if it tries to escape my dev folder my Mac starts asking me to confirm.
I get it, but these guard-rails are more suggestions and subject to interpretation. I would be more comfortable with a sandbox environment in a container. To be fair, I mess around with Claude Code and OpenCode running against various open models and haven't had any problems.
Also, is overwriting the same a deleting? Maybe it will just clobber your files with echo >file and mv them out of the way.
Maybe it realizes you have Time Machine backups enabled, so deleting your entire directory is permitted since it's not actually deleted. ;)
1 reply →