Florian BRUNIAUX
|
6910c06981
|
docs: add Native Sandboxing comprehensive documentation (v3.21.1)
Integration of official Anthropic sandboxing docs (5/5 CRITICAL):
Created (5 files):
- guide/sandbox-native.md (~3K words): Complete technical reference
* OS primitives (Seatbelt/bubblewrap), filesystem/network isolation
* Sandbox modes, escape hatch, security limitations
* Decision trees, config examples, troubleshooting
- docs/resource-evaluations/native-sandbox-official-docs.md (5/5 score)
- examples/config/sandbox-native.json (production config)
- examples/commands/sandbox-status.md (sandbox inspection)
- examples/hooks/bash/sandbox-validation.sh (prod validation)
Updated (5 files):
- guide/sandbox-isolation.md: Section 4 "Native Claude Code Sandbox"
* Comparison Native vs Docker (process-level vs microVM)
* Updated TL;DR, comparison matrix, decision tree
- guide/architecture.md: Native Sandbox sub-section in Security Model
- machine-readable/reference.yaml: +24 sandbox entries
- VERSION: 3.21.0 → 3.21.1
- README.md: Templates 100→103, Evaluations 44→45
- CHANGELOG.md: v3.21.1 entry
Closes critical security documentation gap (~1800 words missing).
Fact-checked 100%, agent-challenged (technical-writer), production-ready.
Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
|
2026-02-02 20:24:17 +01:00 |
|