catlog22/Claude-Code-Workflow
1
0
Fork 0
mirror of https://github.com/catlog22/Claude-Code-Workflow.git synced 2026-02-05 01:50:27 +08:00
Code Issues Packages Projects Releases Wiki Activity

docs: Add codex sandbox parameter (-s workspace-write) to CLI documentation

Browse Source 
- Updated intelligent-tools-strategy.md to include -s parameter in all codex examples
- Added comprehensive sandbox modes documentation
- Updated tools-implementation-guide.md with -s workspace-write throughout
- Clarified that -s workspace-write is recommended for development tasks
- Added sandbox mode explanations: read-only, workspace-write, danger-full-access

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
catlog22
2025-09-16 12:35:43 +08:00
parent 96d4d8e7d4
commit 5867518ea0
2 changed files with 53 additions and 32 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
.claude/workflows/intelligent-tools-strategy.md
View File

@@ -17,7 +17,7 @@ type: strategic-guideline
**Codex** (Development & Implementation):
```bash
codex --full-auto exec "implement user authentication system"
codex -s workspace-write --full-auto exec "implement user authentication system"
```
### ⚠️ CRITICAL Command Differences
@@ -25,10 +25,20 @@ codex --full-auto exec "implement user authentication system"
| Tool | Command | Has Wrapper | Key Feature |
|------|---------|-------------|-------------|
| **Gemini** | `~/.claude/scripts/gemini-wrapper` | ✅ YES | Large context window, pattern recognition |
| **Codex** | `codex --full-auto exec` | ❌ NO | Autonomous development, math reasoning |
| **Codex** | `codex -s workspace-write --full-auto exec` | ❌ NO | Autonomous development, math reasoning |
**❌ NEVER use**: `~/.claude/scripts/codex` - this wrapper does not exist!
### 🔒 Codex Sandbox Modes
Codex requires the `-s` (sandbox) parameter for write operations:
- **`-s read-only`**: Safe analysis mode, no file modifications
- **`-s workspace-write`**: Standard development mode, can modify project files (RECOMMENDED for development tasks)
- **`-s danger-full-access`**: Full system access (use with extreme caution)
**Default Choice**: Use `-s workspace-write` for all development and implementation tasks.
## 🎯 Tool Selection Matrix
### When to Use Gemini
@@ -42,7 +52,7 @@ codex --full-auto exec "implement user authentication system"
- Large codebase understanding
### When to Use Codex
- **Command**: `codex --full-auto exec "prompt"`
- **Command**: `codex -s workspace-write --full-auto exec "prompt"`
- **Strengths**: Mathematical reasoning, autonomous development
- **Best For**:
- Complex algorithm analysis
@@ -111,13 +121,13 @@ cd src && ~/.claude/scripts/gemini-wrapper -p "review overall architecture"
### Codex Quick Commands
```bash
# Feature development
codex --full-auto exec "implement JWT authentication with refresh tokens"
codex -s workspace-write --full-auto exec "implement JWT authentication with refresh tokens"
# Performance optimization
codex --full-auto exec "optimize database queries in user service"
codex -s workspace-write --full-auto exec "optimize database queries in user service"
# Security enhancement
codex --full-auto exec "add input validation and sanitization"
codex -s workspace-write --full-auto exec "add input validation and sanitization"
```
## 📋 Implementation Guidelines
@@ -138,7 +148,7 @@ For comprehensive syntax, patterns, and advanced usage:
|---------|--------|-------|
| **Command Syntax** | Has wrapper script | Direct command only |
| **File Loading** | `--all-files` available | `@` patterns required |
| **Default Mode** | Interactive analysis | `--full-auto exec` automation |
| **Default Mode** | Interactive analysis | `-s workspace-write --full-auto exec` automation |
| **Primary Use** | Analysis & planning | Development & implementation |
| **Context Window** | Very large | Standard with smart discovery |
| **Automation Level** | Manual implementation | Autonomous execution |

61
.claude/workflows/tools-implementation-guide.md
View File

@@ -224,11 +224,22 @@ gemini -p "@{**/*.ts} @{**/*.js} @{CLAUDE.md} Analyze authentication patterns"
- **Purpose**: Automated codebase analysis, intelligent code generation, and autonomous development workflows
- **⚠️ CRITICAL**: **NO wrapper script exists** - always use direct `codex` command
- **Key Characteristic**: **No `--all-files` flag** - requires explicit `@` pattern references
- **Default Mode**: `--full-auto exec` autonomous development mode (RECOMMENDED)
- **Default Mode**: `-s workspace-write --full-auto exec` autonomous development mode (RECOMMENDED)
- **🔒 Sandbox Required**: Must specify `-s` (sandbox) parameter for write operations
### 🔒 Codex Sandbox Modes
Codex requires the `-s` (sandbox) parameter to control file modification permissions:
- **`-s read-only`**: Safe analysis mode, no file modifications allowed
- **`-s workspace-write`**: Standard development mode, can modify project files (**RECOMMENDED for development tasks**)
- **`-s danger-full-access`**: Full system access, use with extreme caution
**Default Choice**: Always use `-s workspace-write` for development and implementation tasks.
### ⭐ CRITICAL: Default to `--full-auto` Mode
**🎯 Golden Rule**: Always start with `codex --full-auto exec "task description"` for maximum autonomous capabilities.
**🎯 Golden Rule**: Always start with `codex -s workspace-write --full-auto exec "task description"` for maximum autonomous capabilities.
**Why `--full-auto` Should Be Your Default**:
- **🧠 Intelligent File Discovery**: Auto-identifies relevant files without manual `@` patterns
@@ -247,16 +258,16 @@ gemini -p "@{**/*.ts} @{**/*.js} @{CLAUDE.md} Analyze authentication patterns"
**Basic Structure** (Priority Order):
```bash
codex --full-auto exec "autonomous development task" # DEFAULT & RECOMMENDED
codex --full-auto exec "prompt with @{patterns}" # For specific control needs
codex -s workspace-write --full-auto exec "autonomous development task" # DEFAULT & RECOMMENDED
codex -s workspace-write --full-auto exec "prompt with @{patterns}" # For specific control needs
```
**⚠️ NEVER use**: `~/.claude/scripts/codex` - this wrapper script does not exist!
**Key Commands** (In Order of Preference):
- `codex --full-auto exec "..."`**PRIMARY MODE** - Full autonomous development
- `codex --cd /path --full-auto exec "..."` - Directory-specific autonomous development
- `codex --cd /path --full-auto exec "@{patterns} ..."` - Directory-specific with patterns
- `codex -s workspace-write --full-auto exec "..."`**PRIMARY MODE** - Full autonomous development
- `codex -s workspace-write --cd /path --full-auto exec "..."` - Directory-specific autonomous development
- `codex -s workspace-write --cd /path --full-auto exec "@{patterns} ..."` - Directory-specific with patterns
### 📦 Codex Usage Patterns
@@ -265,19 +276,19 @@ codex --full-auto exec "prompt with @{patterns}" # For specific control nee
**Basic Development**:
```bash
# RECOMMENDED: Let Codex handle everything autonomously
codex --full-auto exec "Implement user authentication with JWT tokens"
codex -s workspace-write --full-auto exec "Implement user authentication with JWT tokens"
# Directory-specific autonomous development
codex --cd src/auth --full-auto exec "Refactor authentication module using latest patterns"
codex -s workspace-write --cd src/auth --full-auto exec "Refactor authentication module using latest patterns"
# Complex feature development
codex --full-auto exec "Create a complete todo application with React and TypeScript"
codex -s workspace-write --full-auto exec "Create a complete todo application with React and TypeScript"
```
**Template-Enhanced Development**:
```bash
# Autonomous mode with template guidance
codex --full-auto exec "$(cat ~/.claude/workflows/cli-templates/prompts/development/feature.txt)
codex -s workspace-write --full-auto exec "$(cat ~/.claude/workflows/cli-templates/prompts/development/feature.txt)
## Task: User Authentication System
- JWT token management
@@ -290,16 +301,16 @@ codex --full-auto exec "$(cat ~/.claude/workflows/cli-templates/prompts/developm
**Module-Specific with Patterns**:
```bash
# Explicit patterns when autonomous mode needs guidance
codex --full-auto exec "@{src/auth/**/*,CLAUDE.md} Refactor authentication module using latest patterns"
codex -s workspace-write --full-auto exec "@{src/auth/**/*,CLAUDE.md} Refactor authentication module using latest patterns"
# Alternative: Directory-specific execution with explicit patterns
codex --cd src/auth --full-auto exec "@{**/*,../../CLAUDE.md} Refactor authentication module"
codex -s workspace-write --cd src/auth --full-auto exec "@{**/*,../../CLAUDE.md} Refactor authentication module"
```
**Debugging & Analysis**:
```bash
# Autonomous debugging mode
codex --full-auto exec "$(cat ~/.claude/workflows/cli-templates/prompts/development/debugging.txt)
codex -s workspace-write --full-auto exec "$(cat ~/.claude/workflows/cli-templates/prompts/development/debugging.txt)
## Issue: Performance degradation in user dashboard
- Identify bottlenecks in the codebase
@@ -307,7 +318,7 @@ codex --full-auto exec "$(cat ~/.claude/workflows/cli-templates/prompts/developm
- Add performance monitoring"
# Alternative: Explicit patterns for controlled analysis
codex --full-auto exec "@{src/**/*,package.json,CLAUDE.md} $(cat ~/.claude/workflows/cli-templates/prompts/development/debugging.txt)"
codex -s workspace-write --full-auto exec "@{src/**/*,package.json,CLAUDE.md} $(cat ~/.claude/workflows/cli-templates/prompts/development/debugging.txt)"
```
### 📂 Codex File Pattern Rules - CRITICAL
@@ -334,26 +345,26 @@ codex --full-auto exec "@{src/**/*,package.json,CLAUDE.md} $(cat ~/.claude/workf
```bash
# Phase 1: Autonomous Analysis
codex --full-auto exec "Analyze current architecture for payment system integration"
codex -s workspace-write --full-auto exec "Analyze current architecture for payment system integration"
# Phase 2: Autonomous Implementation (RECOMMENDED APPROACH)
codex --full-auto exec "Implement Stripe payment integration based on the analyzed architecture"
codex -s workspace-write --full-auto exec "Implement Stripe payment integration based on the analyzed architecture"
# Phase 3: Autonomous Testing
codex --full-auto exec "Generate comprehensive tests for the payment system implementation"
codex -s workspace-write --full-auto exec "Generate comprehensive tests for the payment system implementation"
# Alternative: Explicit control when needed
codex --full-auto exec "@{**/*,CLAUDE.md} Analyze current architecture for payment system integration"
codex -s workspace-write --full-auto exec "@{**/*,CLAUDE.md} Analyze current architecture for payment system integration"
```
#### 🌐 Cross-Project Learning
```bash
# RECOMMENDED: Autonomous cross-project pattern learning
codex --full-auto exec "Implement feature X by learning patterns from ../other-project/ and applying them to the current codebase"
codex -s workspace-write --full-auto exec "Implement feature X by learning patterns from ../other-project/ and applying them to the current codebase"
# Alternative: Explicit pattern specification
codex --full-auto exec "@{../other-project/src/**/*,src/**/*,CLAUDE.md} Implement feature X using patterns from other-project"
codex -s workspace-write --full-auto exec "@{../other-project/src/**/*,src/**/*,CLAUDE.md} Implement feature X using patterns from other-project"
```
#### 📊 Development Workflow Integration
@@ -361,7 +372,7 @@ codex --full-auto exec "@{../other-project/src/**/*,src/**/*,CLAUDE.md} Implemen
**Pre-Development Analysis**:
```bash
# RECOMMENDED: Autonomous pattern analysis
codex --full-auto exec "$(cat ~/.claude/workflows/cli-templates/prompts/analysis/pattern.txt)
codex -s workspace-write --full-auto exec "$(cat ~/.claude/workflows/cli-templates/prompts/analysis/pattern.txt)
Analyze the existing codebase patterns and conventions before implementing new features."
```
@@ -369,7 +380,7 @@ Analyze the existing codebase patterns and conventions before implementing new f
**Quality Assurance**:
```bash
# RECOMMENDED: Autonomous testing and validation
codex --full-auto exec "$(cat ~/.claude/workflows/cli-templates/prompts/development/testing.txt)
codex -s workspace-write --full-auto exec "$(cat ~/.claude/workflows/cli-templates/prompts/development/testing.txt)
Generate comprehensive tests and perform validation for the entire codebase."
```
@@ -383,7 +394,7 @@ Generate comprehensive tests and perform validation for the entire codebase."
- **Be selective**: Use specific patterns like `@{src/**/*.ts}` for targeted analysis
**Default Automation Mode** (CRITICAL GUIDANCE):
- **`codex --full-auto exec` is PRIMARY choice**: Use for 90% of all tasks - maximizes autonomous capabilities
- **`codex -s workspace-write --full-auto exec` is PRIMARY choice**: Use for 90% of all tasks - maximizes autonomous capabilities
- **Explicit patterns only when necessary**: Reserve for cases where you need explicit file pattern control
- **Trust the autonomous intelligence**: Codex excels at file discovery, context gathering, and architectural decisions
- **Start with full-auto always**: If it doesn't meet needs, then consider explicit patterns
@@ -417,4 +428,4 @@ Generate comprehensive tests and perform validation for the entire codebase."
**Remember**:
- **Gemini excels at understanding** - use `~/.claude/scripts/gemini-wrapper` for analysis and pattern recognition
- **Codex excels at building** - use `codex --full-auto exec` for autonomous development and implementation
- **Codex excels at building** - use `codex -s workspace-write --full-auto exec` for autonomous development and implementation