Apologies for the basic novice question…Recently have got into vibe coding to make some lightweight custom web apps to run in Docker for my own personal use. With my specific and thorough prompts, Claude has been very accurate so far. I have Claude ran on my Mac, with my projects ran on my local machine (before I manually upload to my home server to run). I notice that Claude asks and runs several commands, I assumed these were sandboxed and that Claude can only access the folder you specify for the project, but I have learned through a few online posts that this is not actually the case? And how Claude can actually access any files on your computer? And how commands are also ran as if you were running them in terminal. For a novice just using this for personal use, how much of a risk is Claude Code from running any malicious commands or accessing your personal files outside of the folder you specify for the project? I am now looking to move Claude into a VM, but wondering if I’ve now put myself at risk and if Claude has accessed any of my personal files or ran any harmful commands? submitted by /u/seahorsetech
Originally posted by u/seahorsetech on r/ClaudeCode
You must log in or # to comment.