HN Reader

Tell AI your macros, Get a Recipe, Instacart checkout in one click (iamhungry.io)

1 points by rezatabrizi 4m ago 1 comments

Think Deeply, Write Clearly: Language, Laughter, and Sensemaking (enterlabyrinth.com)

1 points by squircle 5m ago 0 comments

Rousseau and the Performance of Being Yourself (fee.org)

1 points by squircle 8m ago 0 comments

Slip Sliding Away (cse.umn.edu)

1 points by squircle 8m ago 1 comments

The Diff Cookbook (2023) (naseraleisa.com)

1 points by Eudaimion 8m ago 0 comments

Xiaomi SU7 Ultra sets new Nürburgring record for production EVs (carnewschina.com)

1 points by gainsurier 10m ago 0 comments

Psychiatric Disorder Diagnosis System Using Wearable ECG Monitors (arxiv.org)

1 points by PaulHoule 14m ago 0 comments

GenAI Criticism and Moral Quandaries (lucumr.pocoo.org)

1 points by ksbrooksjr 15m ago 0 comments

Ask HN: Are we bike-shedding with prompt engineering?

1 points by achamian 15m ago 0 comments

How ASML, Maker of 'Most Complex Machine Ever Created,' Handles Trade Fights (nytimes.com)

1 points by bookofjoe 22m ago 1 comments

Designing the Ledgers API with Optimistic Locking (moderntreasury.com)

1 points by jcartw 24m ago 0 comments

Apple Execs Defend Siri Delays, AI Plan and Apple Intelligence [video] (youtube.com)

1 points by dkobia 29m ago 1 comments

Ask HN: Which tools, skills, and knowledge are your alternative to LLMs?

1 points by christofosho 34m ago 0 comments

Kerf Bend Wizard (kerfbendwizard.com)

1 points by oftenwrong 37m ago 0 comments

Oodle 2.9.14 and Intel 13th/14th gen CPUs (fgiesen.wordpress.com)

1 points by Shinobuu 38m ago 1 comments

No More Liquid Ass (theverge.com)

2 points by animal_spirits 40m ago 1 comments

The Political Journey of Thomas Mann (hedgehogreview.com)

1 points by Petiver 40m ago 0 comments

RepliBench: Measuring autonomous replication capabilities in AI systems (aisi.gov.uk)

2 points by Teever 40m ago 0 comments

US Employment for Prof., Scientific and Tech Svcs: Computer Sys. Design/Related (fred.stlouisfed.org)

1 points by jcartw 45m ago 0 comments

Why Rideshare Pricing Should Be a Market (lucaspauker.com)

1 points by lucaspauker 47m ago 0 comments

Advancing underwater energy storage with seabed power solution (waterpowermagazine.com)

1 points by surprisetalk 50m ago 0 comments

Can We Afford Large-Scale Solar PV? (construction-physics.com)

1 points by surprisetalk 52m ago 0 comments

Why Large Language Models Are Still Learning to Find Bugs (jazzberry.ai)

2 points by MarcoDewey 54m ago 0 comments

Ryo Minemizu Illuminates the Diversity of Plankton Off the Coast of Japan (thisiscolossal.com)

1 points by surprisetalk 55m ago 0 comments

The entire planet is now searchable with Earth Index (medium.com)

2 points by KomoD 57m ago 0 comments

Handles are the better pointers (2018) (floooh.github.io)

1 points by thunderbong 57m ago 0 comments

Show HN: Pitchine: An AI pitch judge that tells you why a VC will ghost you (pitchine.com)

1 points by ssunboyy 58m ago 0 comments

How to be Right without being Sure (obrhubr.org)

1 points by surprisetalk 59m ago 0 comments

Building our way (Linear raises Series C) (linear.app)

2 points by JaakkoP 1h ago 0 comments

Open Source Software Violates YouTube's "Harmful or Dangerous" Content Policy [video] (youtube.com)

17 points by nomilk 1h ago 0 comments

Airlines Don't Want You to Know They Sold Your Flight Data to DHS (wired.com)

10 points by walterbell 1h ago 2 comments

Do call yourself a programmer, and other career advice (2013) (yosefk.com)

2 points by alexharri 1h ago 0 comments

Qwen3 Embedding: Advancing Text Embedding and Reranking with Foundation Models (arxiv.org)

1 points by ot 1h ago 0 comments

Show HN: I made an app to send meme sounds to my friends directly in iMessage (jerryfeng.com)

3 points by jfeng5 1h ago 0 comments

Notable UIKit Additions in iOS 26 (swiftjectivec.com)

2 points by jordanmorgan10 1h ago 0 comments

I'm Doing a Little Consulting (overreacted.io)

2 points by feross 1h ago 0 comments

I built a Nasdaq 100 Wordle Game (nasdaqle.vercel.app)

1 points by jhomothy_jaar 1h ago 0 comments

Ways to Digitize Your Documents (theverge.com)

4 points by ripe 1h ago 0 comments

Japan's meter and kilogram prototypes shown to press (japantimes.co.jp)

3 points by PaulHoule 1h ago 0 comments

The Concurrency Trap: How an Atomic Counter Stalled a Pipeline (redixhumayun.github.io)

2 points by ibobev 1h ago 0 comments

ERCOT's projected load growth unrealistic and impossible, Ascend Analytics says (energy-storage.news)

1 points by toomuchtodo 1h ago 0 comments

Multi-player, serverless, durable terminals (s2.dev)

3 points by Bogdanp 1h ago 0 comments

UK-based Nomadful starts worldwide expansion through App Store (apps.apple.com)

1 points by liquidiguisante 1h ago 0 comments

AI's Affordance Problem (nicbertino.com)

1 points by vintagevibe 1h ago 0 comments

Our languages have more in common than you might think (washingtonpost.com)

1 points by pseudolus 1h ago 1 comments

The friend iteration method for pitch decks and YC apps (chrisbarber.co)

2 points by cjbarber 1h ago 0 comments

A masterclass in information visualization: the tube map (blog.engora.com)

1 points by Vermin2000 1h ago 1 comments

The fertility fallacy: Five things you didn't know about global fertility rates (unfpa.org)

4 points by pseudolus 1h ago 0 comments

Adapter allows users to connect an M.2 NVMe SSD to a microSD Express card slot (cnx-software.com)

10 points by mikece 1h ago 0 comments

Student discovers fungus predicted by Albert Hoffman (wvutoday.wvu.edu)

4 points by zafka 1h ago 0 comments

Ask HN: Practices for sandboxing LLM agent front ends and IDEs?

1 jMyles 1 6/10/2025, 6:19:01 AM
I've been using Cursor for a while, and I've increasingly had some unease about it having unfettered read access to my home directory. Contemporaneously, I'm starting another round of T&E with the various LLM options, starting with Claude Code. I gave it a quick whirl and I'm impressed with what it can do in my terminal.

But again... I'm not thrilled to give it terminal access as the same user that I use to operate my machine on the daily. It being able to slurp ~/.ssh and such is not thrilling to me.

So, my first inclination was simply to install Claude Code under a different user, and run it as that user, so that it had access only to a home directory which was used for that purpose and no other.

...but then, one runs into the problem of editor integration. For example, I want to run Claude Code inside of VSCode or PyCharm, but these don't seem to readily run when launched from a terminal when using su as another user.

xhost gets VSCode to launch, but nothing works; it crashes as soon as one attempts to open a file.

So what are the current best practices?

Comments (1)

jMyles · 19h ago
The VSCode snap uses classic confinement. So that's not a way.