by kevinMEH
Safely run OpenCode, Codex, Claude Code with full permissions.
# Add to your Claude Code skills
git clone https://github.com/kevinMEH/code-containerGuides for using cli tools skills like code-container.
Last scanned: 5/30/2026
{
"issues": [
{
"type": "npm-audit",
"message": "brace-expansion: brace-expansion: Large numeric range defeats documented `max` DoS protection",
"severity": "medium"
}
],
"status": "PASSED",
"scannedAt": "2026-05-30T15:14:28.553Z",
"npmAuditRan": true,
"pipAuditRan": true
}code-container is an open-source cli tools skill for AI coding assistants such as Claude Code, Codex CLI, and ChatGPT, built by kevinMEH. Safely run OpenCode, Codex, Claude Code with full permissions. It has 271 GitHub stars.
Yes. code-container passed SkillsLLM's automated security scan — a dependency vulnerability audit plus prompt-injection heuristics — with no high-severity issues. You can read the full report in the Security Report section on this page.
Clone the repository with "git clone https://github.com/kevinMEH/code-container" and add it to your Claude Code skills directory (see the Installation section above).
code-container is primarily written in TypeScript. It is open-source under kevinMEH on GitHub, so you can review or fork the full source.
Yes. SkillsLLM lists many other CLI Tools skills you can browse and compare side by side. Open the CLI Tools category from the badge at the top of this page, or use the Related Skills and comparison links further down to weigh code-container against similar tools.
No comments yet. Be the first to share your thoughts!
Top skills in this category by stars
container is available as a NPM package. To install, simply run:
npm install -g code-container
Run the following to copy all your AI harness configs from ~/ to ~/.code-container/configs for mounting onto the container.
container init
Alternatively, you can copy configs manually:
~/.config/opencode → ~/.code-container/configs/.opencode~/.codex → ~/.code-container/configs/.codex~/.copilot → ~/.code-container/configs/.copilot~/.claude → ~/.code-container/configs/.claude~/.claude.json → ~/.code-container/configs/.claude.json~/.gemini → ~/.code-container/configs/.geminiFinally, build the Docker image. This may take up to 5 minutes.
container build
You're done 🎉; container is now ready to use.
Psst: Try my newest project: Nitro, a simple and efficient Bash harness. 11x cheaper; 75x more efficient vs Claude Code for simple Bash tasks.
npm install -g @aerovato/nitro
Navigate to any project and run container to mount project and enter container.
cd /path/to/your/project
container # Enter container
Inside the container: Start your harness and develop like normal.
opencode # Start OpenCode
npm install <package> # Persists per container
# ...
Container state is saved. Next invocation resumes where you left off. AI conversations and settings persist across all projects.
container # Enter the container
container run /path/to # Enter container for specific project
container build # Build full Docker image (all stages)
container build packages # Rebuild from Packages stage
container build harness # Rebuild from Harness stage (update harnesses)
container build user # Rebuild User stage only (update your tooling)
container list # List all containers
container stop # Stop current project's container
container remove # Remove current project's container
container clean # Remove all stopped containers
container init # Copy/recopy config files
Tip: Don't want to configure manually? Clone this repo and ask your harness to configure for you.
Please configure all my container harnesses to run without permissions. Add the following packages to the container environment: ... Add a custom mount point to the container environment: ...
Destructive actions are localized inside containers.
Permissions.md.The image is built in 4 cascading stages:
~/.code-container/Dockerfile.Packages: Add large packages and build toolsFROM code-container-core:latest
RUN apt-get update && apt-get install -y postgresql-client redis-tools
~/.code-container/Dockerfile.User: Add user-level tools or setup scriptsFROM code-container-base:latest
RUN npm install -g bun typescript
RUN pip install requests
RUN npx opencode plugin opencode-quotes-plugin -g
After modifying: Quickly rebuild use the appropriate build target:
container build packages # Rebuild from Packages stage
container build user # Rebuild from User stage only (very fast)
Adding mount points: Edit ~/.code-container/MOUNTS.txt and reinitialize containers:
/absolute/path/on/host:/path/in/container
/absolute/path/on/host:/path/in/container:ro
Adding Docker flags:
Edit ~/.code-container/DOCKER_FLAGS.txt to pass additional flags to both docker run and docker exec:
# Environment variables
-e MY_VAR=value
For flags that only apply to docker run (e.g. port forwarding, network, GPU), use ~/.code-container/DOCKER_RUN_FLAGS.txt:
# Port forwarding
-p 4040:4040
-p 3000:3000
# GPU support
--gpus all
Each line is parsed like a shell command. Empty lines and lines starting with # are ignored.
You and multiple agents can work on the same project simultaneously.
node_modulescontainer protects your host filesystemcontainer is to protect commands like rm or apt from unintentionally affecting your system.container does not protect from prompt injections or network exfiltration in the event that your agent becomes malaligned.To uninstall container, uninstall the NPM package and remove ~/.code-container:
npm uninstall -g code-container
rm -rf ~/.code-container
Consider backing up the harness configurations in ~/.code-container/configs before removing.