Skip to content

Add optional network firewall to Claude Code feature #16

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
8enmann merged 9 commits into from
Mar 11, 2025
Merged

Add optional network firewall to Claude Code feature #16

8enmann merged 9 commits into from
Mar 11, 2025

Conversation

@8enmann
Copy link
Collaborator

@8enmann 8enmann commented Mar 11, 2025
edited
Loading

Summary

  • Add network firewall that restricts outbound connections to GitHub, npm, and Anthropic API
  • Provides firewall script but requires explicit activation in devcontainer.json

Key Changes

  • Firewall must be manually activated using container capabilities and post-create command
  • See instructions when feature is installed for activation steps

Test plan

  • Test on Ubuntu base image with firewall manually activated
  • Verify connections to essential services work and others are blocked

🤖 Generated with Claude Code

8enmann and others added 5 commits March 10, 2025 23:31
@8enmann @claude
feat: add optional network firewall to Claude Code feature
dcadc1e 
- Add configurable network firewall that restricts outbound connections
- Refactor install.sh to use functions for better organization
- Create init-firewall.sh script to set up iptables and ipset rules
- Enable firewall configuration through feature option
- Add documentation in NOTES.md for the firewall feature
- Create test scenario for validating firewall functionality
- Update version to 1.0.5

🤖 Generated with [Claude Code](https://claude.ai/code)
Co-Authored-By: Claude <[email protected]>
@8enmann @claude
feat: make firewall script always available but optional to run
77c73bc 
- Remove enableFirewall option from feature configuration
- Always install firewall packages and copy init script
- Update documentation to explain manual firewall activation
- Update test scenarios and scripts for new approach
- Add more details about how the firewall works

🤖 Generated with [Claude Code](https://claude.ai/code)
Co-Authored-By: Claude <[email protected]>
@8enmann
fix firewall script
6292fc3
@8enmann
.
d158ef8
@8enmann
user-space tests
554e6fa
@8enmann 8enmann mentioned this pull request Mar 11, 2025
Closed
@8enmann 8enmann force-pushed the add-firewall-feature branch 2 times, most recently from b15051a to 554e6fa Compare March 11, 2025 07:52
@8enmann 8enmann requested review from a team and igorkofman March 11, 2025 07:53
@8enmann 8enmann merged commit 8adc9f2 into main Mar 11, 2025
6 checks passed
@8enmann 8enmann deleted the add-firewall-feature branch March 11, 2025 21:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ashwin-ant ashwin-ant ashwin-ant approved these changes

@igorkofman igorkofman Awaiting requested review from igorkofman

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@8enmann @ashwin-ant