Sandbox Architect Skill for Claude Code
A Claude Code plugin marketplace providing intelligent sandbox configuration generation for your projects.
Overview
This marketplace contains a specialized skill that analyzes your codebase to generate optimal Claude Code Sandbox configurations. The skill automatically detects your technology stack (Node.js, Python, Rust, Go, PHP, etc.), identifies dependencies, and generates tailored sandbox and permission settings through an interactive Q&A process.
Installation
To add this marketplace to your Claude Code installation:
/plugin marketplace add nathanonn/claude-skills-sandbox-architectAfter adding the marketplace, the sandbox-architect skill will be available for installation and will help you configure sandbox settings for your projects.
Available Plugins
sandbox-architect
Type: Project Skill (Managed)
Description: Intelligent codebase analyzer that generates optimal Claude Code Sandbox configurations through interactive Q&A.
Features:
- Automatic codebase stack detection
- Interactive clarification questions for precise configuration
- Support for multiple technology stacks:
- Node.js/JavaScript (npm, yarn, pnpm)
- Python (pip, poetry, pipenv)
- Rust (cargo)
- Go (go mod)
- PHP (composer)
- Ruby (bundler)
- Java (maven, gradle)
- .NET
- Docker/container awareness
- Dev server configuration (Vite, webpack, Next.js, Django, etc.)
- SSH agent and git authentication setup
- Sensitive file protection rules
- Network domain allowlists for package registries
Configuration Areas:
- Sandbox Settings:
sandbox.enabled,autoAllowBashIfSandboxed,excludedCommands,allowUnsandboxedCommands - Network Settings:
allowLocalBinding,allowUnixSockets, proxy configuration - Permissions:
allow,deny,askrules for files and commands - Security Posture: From learning/exploration to CI/CD pipeline security levels
Usage
Once installed, trigger the skill when you need to:
- Set up sandbox configuration for a new project
- Configure security settings for Claude Code
- Generate permission rules for your codebase
- Troubleshoot sandbox-related issues
Example queries that will activate the skill:
- "Help me configure sandbox settings for this project"
- "Set up Claude Code security for my Node.js app"
- "Generate sandbox configuration for this Python project"
- "Configure permissions for my development environment"
Workflow
The skill follows a structured workflow:
1. Automatic Analysis: Detects your technology stack by examining configuration files 2. Interactive Q&A: Asks clarifying questions about security posture, dev servers, Docker usage, git preferences, etc. 3. Configuration Generation: Creates a tailored .claude/settings.json with explanatory comments 4. Verification: Summarizes the configuration and provides testing guidance
Prerequisites
- Claude Code CLI installed and configured
- A project directory with recognizable configuration files (package.json, requirements.txt, etc.)
Repository Structure
.claude/
└── skills/
└── sandbox-architect/
├── SKILL.md # Skill definition and workflow
├── scripts/
│ └── analyze_codebase.py # Stack detection script
└── references/
├── sandbox-guide.md # Complete sandbox documentation
└── stack-templates.md # Pre-built configurationsDevelopment
To test this marketplace locally:
/plugin marketplace add ./path/to/claude-skills-sandbox-architectSupport
For issues, questions, or contributions, please visit:
- Repository: https://github.com/nathanonn/claude-skills-sandbox-architect
- Contact: hello@nathanonn.com
License
MIT License - see LICENSE file for details
About Claude Code Sandbox
Claude Code Sandbox provides OS-level isolation for bash commands, protecting your system from prompt injection attacks, supply chain attacks via dependencies, accidental file modifications outside your project, and unauthorized network access. It uses Bubblewrap on Linux and Seatbelt on macOS for kernel-level enforcement.
