Skip to content

ianlewis/coding-assistant-docker-images

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

57 Commits
.github
.github
 
 
base
base
 
 
bin
bin
 
 
claude-code
claude-code
 
 
config
config
 
 
opencode
opencode
 
 
third_party/mbrukman
third_party/mbrukman
 
 
.aqua-checksums.json
.aqua-checksums.json
 
 
.aqua.yaml
.aqua.yaml
 
 
.editorconfig
.editorconfig
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
.markdownlint.yaml
.markdownlint.yaml
 
 
.markdownlintignore
.markdownlintignore
 
 
.node-version
.node-version
 
 
.prettierignore
.prettierignore
 
 
.python-version
.python-version
 
 
.textlintrc.yaml
.textlintrc.yaml
 
 
.yamllint.yaml
.yamllint.yaml
 
 
.zizmor.yml
.zizmor.yml
 
 
AGENTS.md
AGENTS.md
 
 
CLAUDE.md
CLAUDE.md
 
 
CODEOWNERS
CODEOWNERS
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
renovate.json5
renovate.json5
 
 
requirements-dev.txt
requirements-dev.txt
 
 

Repository files navigation

Code Assistant Docker Images

tests OpenSSF Scorecard

This repository contains Docker images for various code assistants. The intention is to provide a locked-down environment for coding assistants that allow them to be run in a secure manner that won't be able to do damage to the host system.

Installation

To install the images, you can use the following command:

make install

This will install the launcher scripts into the ~/.local/bin directory, which is typically included in your PATH.

You can then run the images using the provided launcher scripts, such as opencode or claude. If you don't have ~/.local/bin in your PATH, you can add it with the following command:

export PATH="${HOME}/.local/bin:${PATH}"

Prerequisites

The following are required to run the images:

Usage

opencode

Using the opencode launcher script is recommended. This will verify and run the latest opencode image with the correct parameters. The local state is stored in ~/.local/share/opencode-docker.

The launcher script will run the image with roughly the following command:

OPENCODE_DATA_HOME="${XDG_DATA_HOME:-${HOME}/.local/share}/opencode-docker"
mkdir -p "${OPENCODE_DATA_HOME}"
docker run \
    --rm \
    --interactive \
    --tty \
    --name opencode \
    --runtime runsc \
    --volume "$(pwd):/workspace" \
    --volume "${OPENCODE_DATA_HOME}:/local" \
    "ghcr.io/ianlewis/opencode"

claude-code

Using the claude launcher script is recommended. This will verify and run the latest claude-code image with the correct parameters. The local state is stored in ~/.local/share/claude-code-docker.

The launcher script will run the image with roughly the following command:

CLAUDE_DATA_HOME="${XDG_DATA_HOME:-${HOME}/.local/share}/claude-code-docker"
mkdir -p "${CLAUDE_DATA_HOME}"; \
# Ensure the .claude.json file exists, as we need to bind mount it into the
# container.
if [ ! -f "${CLAUDE_DATA_HOME}/claude.json" ]; then \
    echo "{}" > "${CLAUDE_DATA_HOME}/claude.json"; \
fi; \
docker run \
    --rm \
    --interactive \
    --tty \
    --name claude-code \
    --runtime runsc \
    --volume "$(pwd):/workspace" \
    --volume "${CLAUDE_DATA_HOME}/claude.json:/claude.json" \
    --volume "${CLAUDE_DATA_HOME}:/claude" \
    "ghcr.io/ianlewis/claude-code"

About

Coding assistant Docker images

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Packages

 
 
 

Contributors 3

  •  
  •  
  •  

Languages