https://okulbida.com/tags/developer-tools/ Recent content in developer-tools on Oleksandr Kulbida Hugo -- gohugo.io Fri, 10 Apr 2026 00:00:00 +0200 https://okulbida.com/posts/claude-code-hardening-permissions-hooks-commands/ Fri, 10 Apr 2026 00:00:00 +0200 https://okulbida.com/posts/claude-code-hardening-permissions-hooks-commands/ Claude Code is a powerful local agent. By default it can read most files on your machine. Here is how to lock it down and extend it for your workflow. Block access to credential files Put this in your global Claude settings at ~/.claude/settings.json. Claude will refuse to read any of these paths — even if you accidentally ask it to. { "permissions": { "deny": [ "Read(~/.aws/**)", "Read(~/.config/gcloud/**)", "Read(~/.azure/**)", "Read(~/.