Docker-Based Claude Code Safety Environment

A secure, isolated Docker environment that gives Claude Code maximum autonomy while protecting both the host machine and inexperienced users from potentially dangerous operations. Designed for sales engineers, field engineers, CTOs, and anyone who wants to experiment safely with Claude Code.

Overview

This skill configures and manages a Docker-based development environment with comprehensive safety features including secrets scanning, git hooks, command logging, and container isolation. It's perfect for demos, customer environments, and remote work where safety and transparency are critical.

Key Features

**Container Isolation**: Non-root user (UID 1001), resource limits (2 CPU, 4GB RAM), network isolation

**Git Safety Hooks**: Pre-commit secrets scanning (gitleaks, detect-secrets), pre-push protection against force pushes

**Comprehensive Logging**: All commands, git operations, and safety checks logged to `/logs/`

**Claude Code YOLO Mode**: Bypass permissions mode enabled for full autonomy within safety constraints

**Pre-commit Framework**: Automated security scanning, linting, and file safety checks

**Azure Infrastructure**: OpenTofu/Terraform modules for ACR, ACI, and VM deployments

File Structure

The environment organizes files as follows:

```

claude-yolo/

├── src/claude_yolo/ # Python package (CLI tool)

├── terraform/azure/ # Azure infrastructure modules

│ ├── acr/ # Azure Container Registry

│ ├── aci/ # Azure Container Instances

│ ├── vm/ # Virtual Machines

│ └── scripts/ # Helper scripts

├── examples/ # Demo applications

├── demos/sales-engineering/ # Sales demo scripts

├── docs/ # Documentation

└── .github/workflows/ # CI/CD pipelines

```

Safety Constraints

Container Boundaries

**Safe to edit:**

`/workspace/*` - Your project files

`/config/*` - Configuration files

`/scripts/*` - Custom scripts

`Dockerfile`, `docker-compose.yml`, `.env`

**Read-only:**

`/opt/config-templates/*` - Template files (view only)

`/logs/*` - Log files (view only)

**Never modify:**

System directories

Volume mount points

Volume Mounts

`/home/developer` - Host home directory (configurable via `HOST_HOME`)

`/workspace` - Host workspace directory (configurable via `HOST_WORKSPACE`)

`/logs` - Shared logs directory (configurable via `HOST_LOGS`)

`/mnt/host-gitconfig` - Optional host git config mount

**Note:** On Linux hosts, files created by the container are owned by UID 1001. Use `sudo chown -R $USER ./home` if needed.

Networking Modes

Choose the appropriate networking mode based on your use case:

Bridge Networking (Default)

**When to use:** Multi-container setups (databases, Redis, microservices)

**Pros:**

Docker DNS and service discovery

Network isolation

Can join custom networks

**Cons:**

MCP OAuth callbacks require manual port forwarding

**Config:** Uses `networks: - claude-network` in docker-compose.yml

Host Networking (For MCP OAuth)

**When to use:** Single-container setup requiring MCP server authentication (Atlassian, GitHub MCP servers)

**Pros:**

All ports accessible without mapping

MCP OAuth works seamlessly

Zero networking overhead

**Cons:**

Cannot join Docker networks

No service discovery for multi-container setups

**Config:** Use `claude-yolo run --mcp` flag or manually edit docker-compose.yml

**Why this matters:** Claude Code uses random ephemeral ports (49152-65535) for OAuth callbacks. Exposing this full range causes container startup hangs (hours) or failure, 16GB+ RAM consumption, and thousands of iptables rules.

Common Commands

```bash

Set up safety features for a new project

/home/developer/scripts/setup-project-safety.sh /workspace/my-project

View logs

tail -f /logs/safety/checks.log

tail -f /logs/git/operations.log

tail -f /logs/commands/commands.log

Python projects (use uv as primary package manager)

uv init .

uv add <package>

uv run pytest

```

Azure Deployment Quick Start

Deploy to Azure using OpenTofu/Terraform modules:

```bash

1. Deploy Azure Container Registry

cd terraform/azure/acr

tofu init && tofu apply

2. Push image to ACR

cd ../scripts

./push-to-acr.sh --terraform-dir ../acr --project-dir /path/to/project

3. Deploy to Azure Container Instances (fast) or VM (traditional)

cd ../aci # or ../vm for Virtual Machine

tofu init && tofu apply

```

**Cost estimates:**

ACR (Basic): ~$5/month

ACI (2 vCPU, 4GB RAM): ~$30-40/month

VM (depends on size): ~$30-70/month

Available Tools

The environment includes:

**Core:** git, gh, jq, ripgrep, vim, nano, tmux, htop, tree

**Cloud:** aws, az, gcloud

**Kubernetes:** kubectl, helm, k9s, docker, docker-compose

**IaC:** terraform, tfsec

**Databases:** psql, mysql, redis-cli, mongosh

**Python:** uv, ruff, mypy, pytest, bandit, pre-commit

**Security:** gitleaks, detect-secrets, trivy

**Networking:** tailscale, openvpn, cloudflared, ttyd

Development Guidelines

When working in this environment:

1. **Safety First**: Every action should consider security implications - this environment protects inexperienced users

2. **Logging**: All operations are logged for transparency - use this to build trust

3. **Balance**: You have maximum autonomy within the safety constraints - use it wisely

4. **Documentation**: Keep CLAUDE.md and README.md updated when adding capabilities

5. **Infrastructure Focus**: Most changes involve Dockerfile, docker-compose, or shell scripts

6. **User Protection**: Target users may be disconnected from architecture details - protect them from mistakes

Target Users

**Sales Engineers**: Safely demo Claude Code capabilities

**Forward-Deployed Engineers**: Work in customer environments with confidence

**CTOs/Leadership**: Experiment with Claude Code without risk

**Anyone**: Wanting maximum autonomy with maximum safety

Demo Resources

5-minute sales demo: `demos/sales-engineering/5-minute-demo.md`

Azure quick demo: `demos/sales-engineering/azure-quick-demo.sh`

Example FastAPI app: `examples/fastapi-hello-world/`

Azure quickstart guide: `docs/azure-quickstart.md`

Important Notes

**YOLO Mode**: Claude Code runs in bypass permissions mode by default (configured in `config/.claude/settings.local.json`)

**True Autonomy**: You can operate without permission prompts - safety comes from container isolation and hooks, not runtime restrictions

**Transparency**: All operations are logged - users can audit everything you do

**Git Hooks**: Pre-commit and pre-push hooks automatically scan for secrets, large files, and dangerous operations

This environment is specifically designed for users who may not fully understand the architecture. Always prioritize their safety and provide clear explanations of what you're doing.

Docker-Based Claude Code Safety Environment

Docker-Based Claude Code Safety Environment

Overview

Key Features

File Structure

Safety Constraints

Container Boundaries

Volume Mounts

Networking Modes

Bridge Networking (Default)

Host Networking (For MCP OAuth)

Common Commands

Set up safety features for a new project

View logs

Python projects (use uv as primary package manager)

Azure Deployment Quick Start

1. Deploy Azure Container Registry

2. Push image to ACR

3. Deploy to Azure Container Instances (fast) or VM (traditional)

Available Tools

Development Guidelines

Target Users

Demo Resources

Important Notes

Reviews (0)