tree: 60ba4c1329323fbabf5940aa654f64effd111e34
  1. check-tool-updates.sh
  2. claude-iso.sh
  3. pinned-versions.toml
  4. README.md
tools/agent-isolation/README.md

Table of Contents generated with DocToc

tools/agent-isolation/ — secure agent setup helpers

This directory ships the moving pieces the framework's secure-agent-setup.md document references. It is not a Python project (unlike the sibling tools under tools/vulnogram/ and tools/gmail/oauth-draft/) — these are plain shell scripts plus a TOML manifest of pinned upstream versions.

Files

FilePurpose
pinned-versions.tomlMachine-readable manifest of pinned upstream versions for bubblewrap, socat, and claude-code. Each entry carries a released date that satisfies the framework's 7-day cooldown convention.
check-tool-updates.shReads the manifest and reports upstream releases that are newer than the pin AND have themselves aged past the 7-day cooldown. Side-effect-free — no installs, no edits, no PRs.
claude-iso.shShell function to launch Claude Code with env -i and a tiny passthrough list, stripping every credential-shaped environment variable from the parent shell. The framework's “layer 0” of the secure setup.

Usage at a glance

# Initial install (read pinned-versions.toml for the version pin):
sudo apt-get install --no-install-recommends bubblewrap=0.11.1-* socat=1.8.1.1-*
npm install -g --no-save @anthropic-ai/claude-code@2.1.117

# Source the wrapper into your shell:
source /path/to/airflow-steward/tools/agent-isolation/claude-iso.sh

# Launch a session with no inherited credentials:
cd ~/code/<tracker>
claude-iso

# Periodically (or via /schedule weekly), check for upgrade candidates:
bash /path/to/airflow-steward/tools/agent-isolation/check-tool-updates.sh

Referenced by