Permission Rules - Claude Code
Granular allow/ask/deny rules per tool with wildcard patterns.
Permission rules are how you codify "yes, always run pnpm test" and "no, never touch this directory" without answering prompts each session.
What it does
Each rule pairs a tool pattern with an action: allow, ask, or deny. Patterns can match Bash commands, file paths, MCP servers, and more - with wildcards for flexibility. Rules live in settings.json (project-level) or settings.local.json (per-user) and combine with admin-managed rules for teams.
When to use it
- Allowlisting common commands (
npm run *,git status,ls *). - Denying sensitive paths (production config, secret files).
- Locking Claude to a specific MCP server for a given project.
- Building up a session-to-session baseline of trusted patterns.
Gotchas
- Order matters. More specific rules should come before broad ones.
- Wildcards can over-grant. Audit your allow list periodically.
- Project rules commit to the repo, so don't put user-specific prefs there. Use
settings.local.json.
Official docs: https://code.claude.com/docs/en/permissions.md
Technical content at the intersection of AI and development. Building with AI agents, Claude Code, and modern dev tools - then showing you exactly how it works.
Get the weekly deep dive
Tutorials on Claude Code, AI agents, and dev tools - delivered free every week.
Was this helpful?
Related Guides
Related Tools
Claude Code
Anthropic's agentic coding CLI. Runs in your terminal, edits files autonomously, spawns sub-agents, and maintains memory...
View ToolCodeburn
Interactive TUI dashboard that shows exactly where your Claude Code and Cursor tokens are going, in real time.
View ToolClaude Opus 4.7
Anthropic's flagship reasoning model. Best-in-class for coding, long-context analysis, and agentic workflows. 1M token c...
View ToolConductor
Mac app for running parallel Claude Code, Codex, and Cursor agents in isolated workspaces. Watch every agent work at onc...
View ToolRelated Videos
Open Design: Turn Websites into Design Assets for Cursor & Claude Code
Open Design: Open-Source n8n App That Turns Any Website into a Brand Kit, Design System, HTML + Images The video introduces Open Design, an MIT-licensed full-stack template that combines AI and n8n a...
Nimbalyst: The Open-Source Visual Workspace for Building with Codex and Claude Code
Nimbalyst Demo: A Visual Workspace for Codex + Claude Code with Kanban, Plans, and AI Commits Try it: https://nimbalyst.com/ Star Repo Here: https://github.com/Nimbalyst/nimbalyst This video demos N...
Composio: Connect OpenClaw & Claude Code to 1,000+ Apps via CLI
Composio: Connect AI Agents to 1,000+ Apps via CLI (Gmail, Google Docs/Sheets, Hacker News Workflows) Check out Composio here: http://dashboard.composio.dev/?utm_source=Youtube&utm_channel=0426&utm_...
Related Posts
Claude Outages Are a Workflow Design Problem
Claude outages and 529 overloads expose whether your AI coding workflow has checkpoints, receipts, model-switch paths, a...
Claude Opus 4.8 Is an Agent Honesty Release
Claude Opus 4.8 looks like a benchmark bump, but the developer story is better honesty, dynamic workflows, and effort co...
Anthropic Sonnet 4.5 in Claude Code
Anthropic's Claude Sonnet 4.5 isn't just another model increment. The company claims they've observed it maintaining foc...
Anthropic Claude Tag Turns Slack Into a Shared Agent Workspace
Claude Tag is Anthropic's new Slack-based beta for Team and Enterprise users. The important shift is not chat convenienc...
Cybersecurity Skills for AI Agents Are Becoming Runtime Infrastructure
A GitHub-trending library of Anthropic cybersecurity skills points at the next agent security layer: framework-mapped pl...
Local Coding Agent Workspaces Are the New IDE Surface
A new layer is forming around Claude Code, Codex, Copilot CLI, and local memory tools: the local coding agent workspace....
