update readme
This commit is contained in:
parent
2cd1a5286c
commit
f532d5bae4
1 changed files with 8 additions and 2 deletions
10
README.md
10
README.md
|
|
@ -8,8 +8,14 @@ sandboxing claude code in a very primitive manner.
|
||||||
|
|
||||||
## DOES NOT PROTECT AGAINST
|
## DOES NOT PROTECT AGAINST
|
||||||
|
|
||||||
- claude generating OR running malicious code
|
- claude generating malicious code
|
||||||
- container escapes
|
- if you `hako sync` malicious code made by it and then build-and-run, you're cooked
|
||||||
|
- running malicious code
|
||||||
|
- malicious code can escape the container
|
||||||
|
- malicious code can exfiltrate container FS to evil server
|
||||||
|
- malicious code can run cryptocurrency miners
|
||||||
|
- the container MUST have network access (or how tf do you think claude can access claude???)
|
||||||
|
- i am NOT writing a proxy that denies everything except claude.ai. maybe someone else can ask their claude to do it
|
||||||
|
|
||||||
## install
|
## install
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue