Skip to content

Add prominent warning about --dangerously-skip-permissions usage #24

New issue
New issue
Open
Open
Add prominent warning about --dangerously-skip-permissions usage#24
Labels
area: configConfiguration and CLI flagsenhancementNew feature or requestpriority: highBlocks users or degrades experiencesize: smallIsolated change, < 1hr
@MiniCodeMonkey

Description

@MiniCodeMonkey
MiniCodeMonkey
opened on Feb 27, 2026

Context

Chief invokes Claude Code with --dangerously-skip-permissions (YOLO mode), which bypasses Claude Code's sandbox entirely. Users may not realize this means filesystem/network isolation is not in effect.

Problem

The config docs mention sandboxing at the bottom, but the sandbox is actually bypassed by Chief. A user reported nearly having rm -rf run without any prompt (related upstream: anthropics/claude-code#4956).

Suggested solution

  • Add a bright, prominent warning in the README and docs about the security implications of --dangerously-skip-permissions
  • Consider showing a warning in the TUI on first run or in the status bar
  • Update the config doc to clarify that Claude Code's sandbox mode is not active when running through Chief

Metadata

Metadata

Assignees

No one assigned

    Labels

    area: configConfiguration and CLI flagsenhancementNew feature or requestpriority: highBlocks users or degrades experiencesize: smallIsolated change, < 1hr

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions