agent-sandbox/config-example.toml

whitelist = true
ro = [
    "~/.local/share/claude-code",
    "~/.local/share/codex-cli",
    "~/.config/AGENTS.md",
    "/etc/alsa",
    "/run/user/1000/pulse",
    "/run/user/1000/pipewire-0",
]
rw = [
    "~/.config/claude",
    "~/.cargo",
    "~/.rustup",
]
setenv = { DATABASE_URL = "postgres://localhost/dev" }
unsetenv = ["HTTP_PROXY", "HTTPS_PROXY"]
entrypoint = ["claude", "--dangerously-skip-permissions"]

[profile.blacklist]
blacklist = true