gw0/docker-claude-code

README preview

# docker-claude-code - Dockerized Claude Code Sandbox

[GitHub](https://github.com/gw0/docker-claude-code) · [GHCR](https://github.com/gw0/docker-claude-code/pkgs/container/docker-claude-code) · [Docker Hub](https://hub.docker.com/r/gw000/docker-claude-code)

Run **Claude Code in an isolated Docker container** with multi-profile support, security hardening, best-practice defaults, a set of pre-installed plugin/skill bundles and remote dev support. Drop-in replacement for `claude` — a simple shell alias is all it takes.

- **Drop-in replacement**: Works exactly like `claude` — same arguments, same workflow, just run `cc1` instead of `claude`, Linux and MacOS support.
- **Secure sandbox**: Non-root user, all capabilities dropped, hardened seccomp profile, startup security scans (AgentShield + unicode), audit log at `~/.claude/audit-log.jsonl`.
- **Multi-profile support**: Per-profile persistent state in `~/.claude-<profile>` to separate work and personal accounts, mix subscription and API key billing.
- **Best practices by default**: Start in plan mode, optimized token usage, telemetry disabled, claude-powerline status line, pre-configured tool allowlist and denylist.
- **Plugins and skills**: SuperClaude, claude-skills, codemap, and 33+ antigravity-awesome-skills bundles pre-installed, enabled on demand via `/plugin`.
- **Remote dev support**: Mutagen bidirectional sync + Docker socket forwarding allow executing commands in a remote dev environment.
- **Minimal and auditable**: ~200 lines of shell + Dockerfile, no dependencies beyond Docker, small enough to read and modify — don't trust us, ask your AI to audit it.

## Build

```bash
docker build -t docker-claude-code .
# or pull latest:
docker pull ghcr.io/gw0/docker-claude-code:main

View full repository on GitHub →