ClaudeBox 🐳

The Ultimate Claude Code Docker Development Environment - Run Claude AI's coding assistant in a fully containerized, reproducible environment with pre-configured development profiles and MCP servers.

 ██████╗██╗      █████╗ ██╗   ██╗██████╗ ███████╗
██╔════╝██║     ██╔══██╗██║   ██║██╔══██╗██╔════╝
██║     ██║     ███████║██║   ██║██║  ██║█████╗
██║     ██║     ██╔══██║██║   ██║██║  ██║██╔══╝
╚██████╗███████╗██║  ██║╚██████╔╝██████╔╝███████╗
 ╚═════╝╚══════╝╚═╝  ╚═╝ ╚═════╝ ╚═════╝ ╚══════╝

██████╗  ██████╗ ██╗  ██╗
██╔══██╗██╔═══██╗╚██╗██╔╝
██████╔╝██║   ██║ ╚███╔╝ 
██╔══██╗██║   ██║ ██╔██╗ 
██████╔╝╚██████╔╝██╔╝ ██╗
╚═════╝  ╚═════╝ ╚═╝  ╚═╝

🍴 About This Fork

This fork has diverged significantly from upstream — it adds rootless Docker support, shared Claude auth/memory across slots, a Hermes-inspired agent auto-improvement workflow (skills / scripts / memory / versioned state), host ~/.claude skills surfaced inside containers, a claudebox resume cross-slot session picker, alternative API providers, new LaTeX / Wolfram profiles, and a handful of upstream bug fixes.

What's Different

Rootless Docker support (Debian 12, no sudo):

• One-shot installer that sets up rootless Docker + ClaudeBox together
• Uses fuse-overlayfs storage driver; rootlesskit is used everywhere elevated access would otherwise be needed (permission fixes, uninstall cleanup)
• Auto-detects rootless Docker and silently fixes project-dir permissions before launch
• Resolves symlinks in PROJECT_DIR so the project CRC doesn't drift when /home is symlinked
• --uninstall flag that cleanly removes rootless Docker + all ClaudeBox state, with prompts before touching ~/.claude

Claude auth & config:

• Log in once, use every slot — the host's ~/.claude/.credentials.json (OAuth token) is bind-mounted live into every slot. When a token refresh happens in any slot, all the others pick it up too. Opt out per-slot with CLAUDEBOX_SHARE_CREDENTIALS=false
• No onboarding on fresh slots — ~/.claude.json holds your Claude identity plus the "first-run done" flag and per-slot state (chat history, MCP, etc.). It's copied from the host into each new slot once at creation, then left alone — so slots start logged-in but keep their own history
• Default config stays in sync — the repo ships seed files at source/claude/CLAUDE.md and source/claude/settings.json (the defaults every slot starts with). Editing those propagates the change into every slot — new and existing — on next launch, without touching per-slot credentials or history
• Shared auto-memory across slots — ~/.claude/projects/-workspace/memory/ is bind-mounted from a project-wide shared-memory/ dir, so skills, user profile, feedback, and decisions carry over between slots; existing memory in the largest slot is auto-promoted on first mount so no prior learning is lost. Set CLAUDEBOX_SHARE_MEMORY=false to opt out

Agent auto-improvement (Hermes-inspired):

• Seed claude/CLAUDE.md ships with a lightweight self-improvement loop so the agent gets sharper over time without extra setup:
  • Skills — procedural "how I solved X" recipes as Claude Code skill directories at ~/.claude/skills/<name>/SKILL.md (cross-project, host-side) or /workspace/.claude/skills/<name>/SKILL.md (project-scoped). Auto-loaded by Claude Code via the description frontmatter, no manifest needed
  • Scripts — when a task is a repeatable procedure, the agent proactively proposes saving it as /workspace/.claude/scripts/<slug>.sh (with manifest + "last verified" date) instead of re-typing the steps each time
  • Auto-memory — declarative facts (user profile, feedback, project state, external references) persisted across sessions under ~/.claude/projects/-workspace/memory/, now shared across slots
  • Versioned agent state — .claude/ is tracked by the workspace git, giving diff / blame / rollback for skills, plans, decisions, and CLAUDE.md itself alongside the rest of the project history
  • Self-nudge at task close — the agent pauses at task end to capture non-obvious learnings before context drops
• Host ~/.claude skills in containers — the host ~/.claude/ directory is bind-mounted read-only and each non-system subdirectory (skipping projects, sessions, commands, statsig, todos, keys, mcp) is symlinked into the container's ~/.claude/, so globally installed Claude Code skills (e.g. get-shit-done) work inside every slot without reinstalling. A host-level CLAUDE.md is also symlinked in if the slot doesn't already have one. Set CLAUDEBOX_NO_HOST_SKILLS=true to opt out. Complements per-project skills at /workspace/.claude/skills/<name>/SKILL.md — different scope (host reaches every project, project reaches only its own)

Cross-slot session picker:

• claudebox resume — fzf-based picker that lists Claude sessions across every slot of the current project, with last-modified date, size, and a live indicator for sessions whose container is still running. Flags: -n NUM to limit the list (default 50), -a for all sessions, -A to include every project, -d for debug output. Works on both Linux and macOS (stat/date shims baked in)

Alternative API providers:

• Custom environment file (~/.claudebox/env) loaded via Docker --env-file — switch to OpenRouter, local proxies, etc. without touching source
• Provider toggle script (examples/toggle-provider.sh) for quick switching

New profiles:

• LaTeX — TeX Live, Emacs, feynmp-auto for Feynman diagrams (slimmed down to save ~1.5 GB)
• Wolfram — Wolfram Engine 14 with persistent licensing across containers
• wolfram-cloud — lightweight variant using wolframclient against Wolfram Cloud

Upstream bug fixes (not yet in RchGrav/claudebox):

• Missing || operator in Dockerfile placeholder guard (main.sh) — unreplaced {{LABELS}} placeholders were never detected
• local keyword used outside functions in docker-entrypoint — caused container startup failure on venv setup and Python profile paths (lines 86, 109, 141)

Installing This Fork

Quick Install (Debian 12, no sudo required)

One command to install rootless Docker + ClaudeBox from this fork:

curl -fsSL https://raw.githubusercontent.com/Andres-Briones/claudebox/main/install.sh | bash

The script checks for required system packages and will print an apt-get install command for your admin if anything is missing. No sudo is used.

Manual Install

# Fresh install
git clone https://github.com/Andres-Briones/claudebox.git ~/.claudebox/source
mkdir -p ~/.local/bin
ln -sf ~/.claudebox/source/main.sh ~/.local/bin/claudebox

# Or replace an existing installation
mv ~/.claudebox/source ~/.claudebox/source.bak
git clone https://github.com/Andres-Briones/claudebox.git ~/.claudebox/source

To update: cd ~/.claudebox/source && git pull

Custom API Provider (env file)

You can route claudebox through an alternative API provider (e.g., OpenRouter) by creating a ~/.claudebox/env file. This file is passed to the container via Docker's --env-file flag.

Setup:

# Copy the example and edit with your values
cp ~/.claudebox/source/examples/env.example ~/.claudebox/env
nano ~/.claudebox/env

Example ~/.claudebox/env for OpenRouter:

ANTHROPIC_BASE_URL=https://openrouter.ai/api
ANTHROPIC_AUTH_TOKEN=sk-or-v1-your-token-here
ANTHROPIC_API_KEY=
ANTHROPIC_DEFAULT_OPUS_MODEL=anthropic/claude-opus-4
ANTHROPIC_DEFAULT_SONNET_MODEL=anthropic/claude-sonnet-4
ANTHROPIC_DEFAULT_HAIKU_MODEL=anthropic/claude-haiku

Restart the container after creating or modifying the env file.

Switching between providers:

Use the toggle script to quickly switch between the default Anthropic API and your custom provider:

# Toggle provider (comments/uncomments the provider section in-place)
~/.claudebox/source/examples/toggle-provider.sh

# Or copy it somewhere convenient
cp ~/.claudebox/source/examples/toggle-provider.sh ~/.local/bin/claudebox-provider
claudebox-provider

The script only touches lines between # === PROVIDER START === and # === PROVIDER END === markers in ~/.claudebox/env. Persistent settings outside those markers (e.g. GIT_AUTHOR_*, EMAIL) stay loaded regardless of toggle state. When the provider section is disabled, claudebox falls back to the default Anthropic API with your ANTHROPIC_API_KEY. Restart any running slot after toggling.

Optional: GSD (Get Shit Done) workflow

ClaudeBox can host the GSD workflow toolkit (slash commands, hook scripts, workflow content) as a per-project opt-in via the gsd profile.

One-time host setup:

# Install the GSD payload into ~/.claude/gsd/ — a staging dir that's
# inert until a project opts in via the gsd profile.
~/.claudebox/source/scripts/gsd-install.sh           # minimal: 5 core commands
~/.claudebox/source/scripts/gsd-install.sh --full    # full: all commands + agents

Per project:

# Add the gsd profile: installs get-shit-done-cc into the slot image, and
# the entrypoint wires the staging payload into the slot's ~/.claude/
# (per-file symlinks for commands/agents/hooks; merged settings.json).
claudebox add gsd

# Remove the gsd profile: next launch sweeps the activation symlinks
# and restores settings.json to a clean baseline.
claudebox remove gsd

Slots without the gsd profile see no /gsd:* commands and no gsd-* hooks firing — clean baseline. Re-run gsd-install.sh --update to pull the latest GSD release; --uninstall removes the staging dir and sweeps any leftover legacy paths.

✨ Features

• Containerized Environment: Run Claude Code in an isolated Docker container
• Development Profiles: Pre-configured language stacks (C/C++, Python, Rust, Go, etc.)
• Project Isolation: Complete separation of images, settings, and data between projects
• Persistent Configuration: Settings and data persist between sessions
• Multi-Instance Support: Work on multiple projects simultaneously
• Package Management: Easy installation of additional development tools
• Auto-Setup: Handles Docker installation and configuration automatically
• Security Features: Network isolation with project-specific firewall allowlists
• Developer Experience: GitHub CLI, Delta, fzf, and zsh with oh-my-zsh powerline
• Python Virtual Environments: Automatic per-project venv creation with uv
• Cross-Platform: Works on Ubuntu, Debian, Fedora, Arch, and more
• Shell Experience: Powerline zsh with syntax highlighting and autosuggestions
• Tmux Integration: Seamless tmux socket mounting for multi-pane workflows

📋 Prerequisites

• Linux or macOS (WSL2 for Windows)
• Bash shell
• Docker (will be installed automatically if missing)

🛠️ Installation

ClaudeBox v2.0.0 offers two installation methods:

Method 1: Self-Extracting Installer (Recommended)

The self-extracting installer is ideal for automated setups and quick installation:

# Download the latest release
wget https://github.com/RchGrav/claudebox/releases/latest/download/claudebox.run
chmod +x claudebox.run
./claudebox.run

This will:

• Extract ClaudeBox to ~/.claudebox/source/
• Create a symlink at ~/.local/bin/claudebox (you may need to add ~/.local/bin to your PATH)
• Show setup instructions if PATH configuration is needed

Method 2: Archive Installation

For manual installation or custom locations, use the archive:

# Download the archive
wget https://github.com/RchGrav/claudebox/releases/latest/download/claudebox-2.0.0.tar.gz

# Extract to your preferred location
mkdir -p ~/my-tools/claudebox
tar -xzf claudebox-2.0.0.tar.gz -C ~/my-tools/claudebox

# Run main.sh to create symlink
cd ~/my-tools/claudebox
./main.sh

# Or create your own symlink
ln -s ~/my-tools/claudebox/main.sh ~/.local/bin/claudebox

Development Installation

For development or testing the latest changes:

# Clone the repository
git clone https://github.com/RchGrav/claudebox.git
cd claudebox

# Build the installer
bash .builder/build.sh

# Run the installer
./claudebox.run

PATH Configuration

If claudebox command is not found after installation, add ~/.local/bin to your PATH:

# For Bash
echo 'export PATH="$HOME/.local/bin:$PATH"' >> ~/.bashrc
source ~/.bashrc

# For Zsh (macOS default)
echo 'export PATH="$HOME/.local/bin:$PATH"' >> ~/.zshrc
source ~/.zshrc

The installer will:

• ✅ Extract ClaudeBox to ~/.claudebox/source/
• ✅ Create symlink at ~/.local/bin/claudebox
• ✅ Check for Docker (install if needed on first run)
• ✅ Configure Docker for non-root usage (on first run)

📚 Usage

Basic Usage

# Launch Claude Code CLI
claudebox

# Pass arguments to Claude
claudebox --model opus -c

# Save your arguments so you don't need to type them every time
claudebox --model opus -c

# View the Claudebox info screen
claudebox info

# Get help
claudebox --help        # Shows Claude help with ClaudeBox additions

Multi-Instance Support

ClaudeBox supports running multiple instances in different projects simultaneously:

# Terminal 1 - Project A
cd ~/projects/website
claudebox

# Terminal 2 - Project B
cd ~/projects/api
claudebox shell

# Terminal 3 - Project C
cd ~/projects/ml-model
claudebox profile python ml

Each project maintains its own:

• Docker image (claudebox-<project-name>)
• Language profiles and installed packages
• Firewall allowlist
• Python virtual environment
• Memory and context (via MCP)
• Claude configuration (.claude.json)

Development Profiles

ClaudeBox includes 15+ pre-configured development environments:

# List all available profiles with descriptions
claudebox profiles

# Interactive profile management menu
claudebox profile

# Check current project's profiles
claudebox profile status

# Install specific profiles (project-specific)
claudebox profile python ml       # Python + Machine Learning
claudebox profile c openwrt       # C/C++ + OpenWRT
claudebox profile rust go         # Rust + Go

Available Profiles:

Core Profiles:

• core - Core Development Utilities (compilers, VCS, shell tools)
• build-tools - Build Tools (CMake, autotools, Ninja)
• shell - Optional Shell Tools (fzf, SSH, man, rsync, file)
• networking - Network Tools (IP stack, DNS, route tools)

Language Profiles:

• c - C/C++ Development (debuggers, analyzers, Boost, ncurses, cmocka)
• rust - Rust Development (installed via rustup)
• python - Python Development (managed via uv)
• go - Go Development (installed from upstream archive)
• flutter - Flutter Framework (installed using fvm, use FLUTTER_SDK_VERSION to set different version)
• javascript - JavaScript/TypeScript (Node installed via nvm)
• java - Java Development (Latest LTS via SDKMan, Maven, Gradle, Ant)
• ruby - Ruby Development (gems, native deps, XML/YAML)
• php - PHP Development (PHP + extensions + Composer)

Specialized Profiles:

• openwrt - OpenWRT Development (cross toolchain, QEMU, distro tools)
• database - Database Tools (clients for major databases)
• devops - DevOps Tools (Docker, Kubernetes, Terraform, etc.)
• web - Web Dev Tools (nginx, HTTP test clients)
• embedded - Embedded Dev (ARM toolchain, serial debuggers)
• datascience - Data Science (Python, Jupyter, R)
• security - Security Tools (scanners, crackers, packet tools)
• ml - Machine Learning (build layer only; Python via uv)

Default Flags Management

Save your preferred security flags to avoid typing them every time:

# Save default flags
claudebox save --enable-sudo --disable-firewall

# Clear saved flags
claudebox save

# Now all claudebox commands will use your saved flags automatically
claudebox  # Will run with sudo and firewall disabled

Project Information

View comprehensive information about your ClaudeBox setup:

# Show detailed project and system information
claudebox info

The info command displays:

• Current Project: Path, ID, and data directory
• ClaudeBox Installation: Script location and symlink
• Saved CLI Flags: Your default flags configuration
• Claude Commands: Global and project-specific custom commands
• Project Profiles: Installed profiles, packages, and available options
• Docker Status: Image status, creation date, layers, running containers
• All Projects Summary: Total projects, images, and Docker system usage

Package Management

# Install additional packages (project-specific)
claudebox install htop vim tmux

# Open a powerline zsh shell in the container
claudebox shell

# Update Claude CLI
claudebox update

# View/edit firewall allowlist
claudebox allowlist

Tmux Integration

ClaudeBox provides tmux support for multi-pane workflows:

# Launch ClaudeBox with tmux support
claudebox tmux

# If you're already in a tmux session, the socket will be automatically mounted
# Otherwise, tmux will be available inside the container

# Use tmux commands inside the container:
# - Create new panes: Ctrl+b % (vertical) or Ctrl+b " (horizontal)
# - Switch panes: Ctrl+b arrow-keys  
# - Create new windows: Ctrl+b c
# - Switch windows: Ctrl+b n/p or Ctrl+b 0-9

ClaudeBox automatically detects and mounts existing tmux sockets from the host, or provides tmux functionality inside the container for powerful multi-context workflows.

Task Engine

ClaudeBox contains a compact task engine for reliable code generation tasks:

# In Claude, use the task command
/task

# This provides a systematic approach to:
# - Breaking down complex tasks
# - Implementing with quality checks
# - Iterating until specifications are met

Security Options

# Run with sudo enabled (use with caution)
claudebox --enable-sudo

# Disable network firewall (allows all network access)
claudebox --disable-firewall

# Skip permission checks
claudebox --dangerously-skip-permissions

Maintenance

# Interactive clean menu
claudebox clean

# Project-specific cleanup options
claudebox clean --project          # Shows submenu with options:
  # profiles - Remove profile configuration (*.ini file)
  # data     - Remove project data (auth, history, configs, firewall)
  # docker   - Remove project Docker image
  # all      - Remove everything for this project

# Global cleanup options
claudebox clean --containers       # Remove ClaudeBox containers
claudebox clean --image           # Remove containers and current project image
claudebox clean --cache           # Remove Docker build cache
claudebox clean --volumes         # Remove ClaudeBox volumes
claudebox clean --all             # Complete Docker cleanup

# Rebuild the image from scratch
claudebox rebuild

🔧 Configuration

ClaudeBox stores data in:

• ~/.claude/ - Global Claude configuration (mounted read-only)
• ~/.claudebox/ - Global ClaudeBox data
• ~/.claudebox/profiles/ - Per-project profile configurations (*.ini files)
• ~/.claudebox/<project-name>/ - Project-specific data:
  • .claude/ - Project auth state
  • .claude.json - Project API configuration
  • .zsh_history - Shell history
  • .config/ - Tool configurations
  • firewall/allowlist - Network allowlist
• Current directory mounted as /workspace in container

Project-Specific Features

Each project automatically gets:

• Docker Image: claudebox-<project-name> with installed profiles
• Profile Configuration: ~/.claudebox/profiles/<project-name>.ini
• Python Virtual Environment: .venv created with uv when Python profile is active
• Firewall Allowlist: Customizable per-project network access rules
• Claude Configuration: Project-specific .claude.json settings

Environment Variables

• ANTHROPIC_API_KEY - Your Anthropic API key
• NODE_ENV - Node environment (default: production)

🏗️ Architecture

ClaudeBox creates a per-project Debian-based Docker image with:

• Node.js (via NVM for version flexibility)
• Claude Code CLI (@anthropic-ai/claude-code)
• User account matching host UID/GID
• Network firewall (project-specific allowlists)
• Volume mounts for workspace and configuration
• GitHub CLI (gh) for repository operations
• Delta for enhanced git diffs (version 0.17.0)
• uv for fast Python package management
• Nala for improved apt package management
• fzf for fuzzy finding
• zsh with oh-my-zsh and powerline theme
• Profile-specific development tools with intelligent layer caching
• Persistent project state (auth, history, configs)

🤝 Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

📝 License

This project is licensed under the MIT License - see the LICENSE file for details.

🐛 Troubleshooting

Docker Permission Issues

ClaudeBox automatically handles Docker setup, but if you encounter issues:

1. The script will add you to the docker group
2. You may need to log out/in or run newgrp docker
3. Run claudebox again

Profile Installation Failed

# Clean and rebuild for current project
claudebox clean --project
claudebox rebuild
claudebox profile <name>

Profile Changes Not Taking Effect

ClaudeBox automatically detects profile changes and rebuilds when needed. If you're having issues:

# Force rebuild
claudebox rebuild

Python Virtual Environment Issues

ClaudeBox automatically creates a venv when Python profile is active:

# The venv is created at ~/.claudebox/<project>/.venv
# It's automatically activated in the container
claudebox shell
which python  # Should show the venv python

Can't Find Command

Ensure the symlink was created:

ls -la ~/.local/bin/claudebox
# Or manually create it
ln -s /path/to/claudebox ~/.local/bin/claudebox

Multiple Instance Conflicts

Each project has its own Docker image and is fully isolated. To check status:

# Check all ClaudeBox images and containers
claudebox info

# Clean project-specific data
claudebox clean --project

Build Cache Issues

If builds are slow or failing:

# Clear Docker build cache
claudebox clean --cache

# Complete cleanup and rebuild
claudebox clean --all
claudebox

🎉 Acknowledgments

• Anthropic for Claude AI
• Model Context Protocol for MCP servers
• Docker community for containerization tools
• All the open-source projects included in the profiles

---

Made with ❤️ for developers who love clean, reproducible environments

Contact

Author/Maintainer: RchGrav
GitHub: @RchGrav