Update README.md
This commit is contained in:
JY Tan
@@ -8,8 +8,6 @@
|
|||||||
|
|
||||||
Fence wraps commands in a sandbox that blocks network access by default and restricts filesystem operations based on configurable rules. It's most useful for running semi-trusted code (package installs, build scripts, CI jobs, unfamiliar repos) with controlled side effects, and it can also complement AI coding agents as defense-in-depth.
|
Fence wraps commands in a sandbox that blocks network access by default and restricts filesystem operations based on configurable rules. It's most useful for running semi-trusted code (package installs, build scripts, CI jobs, unfamiliar repos) with controlled side effects, and it can also complement AI coding agents as defense-in-depth.
|
||||||
|
|
||||||
You can also think of Fence as a permission manager for your CLI agents.
|
|
||||||
|
|
||||||
```bash
|
```bash
|
||||||
# Block all network access (default)
|
# Block all network access (default)
|
||||||
fence curl https://example.com # → 403 Forbidden
|
fence curl https://example.com # → 403 Forbidden
|
||||||
@@ -21,6 +19,8 @@ fence -t code npm install # → uses 'code' template with npm/pypi/etc allowed
|
|||||||
fence -c "rm -rf /" # → blocked by command deny rules
|
fence -c "rm -rf /" # → blocked by command deny rules
|
||||||
```
|
```
|
||||||
|
|
||||||
|
You can also think of Fence as a permission manager for your CLI agents. **Fence works with popular coding agents like Claude Code, Codex, Gemini CLI, Cursor Agent, OpenCode, Factory (Droid) CLI, etc.** See [agents.md](./docs/agents.md) for more details.
|
||||||
|
|
||||||
## Install
|
## Install
|
||||||
|
|
||||||
**macOS / Linux:**
|
**macOS / Linux:**
|
||||||
|
|||||||
Reference in New Issue
Block a user