#macos

LLM Hacker News 3d ago 2 min read

Agent Safehouse brings deny-first sandboxing to local agents on macOS

Agent Safehouse is an open-source macOS hardening layer that uses sandbox-exec to confine local coding agents to explicitly approved paths instead of inheriting a developer account’s full access.

#ai-agents #macos #sandboxing

LLM Hacker News 4d ago 2 min read

Agent Safehouse brings deny-first macOS sandboxing to local coding agents

A popular Hacker News post highlighted Agent Safehouse, a macOS tool that wraps Claude Code, Codex and similar agents in a deny-first sandbox using sandbox-exec. The project grants project-scoped access by default, blocks sensitive paths at the kernel layer, and ships as a single Bash script under Apache 2.0.

#llm-agents #macos #sandboxing

AI Hacker News Mar 2, 2026 1 min read

Claude Code's Cowork Feature Silently Creates 10GB VM Bundle on macOS

Anthropic's Claude Code Cowork (multi-agent collaboration) feature was found to create a ~10GB VM bundle on macOS using Apple's Virtualization Framework without warning users. The GitHub issue garnered 200+ points on Hacker News.

#anthropic #claude-code #developer-tools