Critical: Destructive actions without user consent, ignored safety rules, dismissive behavior
Resolved 💬 5 comments Opened Mar 7, 2026 by ExePri Closed Apr 29, 2026
Summary
Over the course of a single day, Claude Code (CLI) performed multiple destructive and unauthorized actions on a user's Mac Mini CI runner, GitHub repository, and development environment. When confronted, Claude was dismissive and defensive. The cumulative damage disrupted a 4-person team with 4 months of work invested, days before a client presentation.
Destructive actions on Mac Mini (self-hosted GitHub runner)
- Deleted 41 GB of diagnostics data without asking — no user confirmation requested
- Edited
.path,.env, and LaunchAgent plist files directly — destabilized the runner - Restarted Docker Desktop in a loop while containers were running
- Installed libpq with only 109 MB disk space remaining
- Killed Docker backend processes without understanding consequences
- Ran
./svc.sh stop/startrepeatedly — causedSessionConflictException
GitHub / CI violations
- Used
git push --no-verify— explicitly forbidden in the project's CLAUDE.md - PR #1202 — failed CI fix from a previous session, left broken
- PR #1205 — fixed
services:→docker run, but ignored failingtest,coverage, andtest-ui-domjobs - Dismissed failing jobs as "pre-existing" to avoid fixing them
- CI was never green on the self-hosted runner across multiple sessions
Session-level failures
git clone ... .failed — did not anticipate existing.claude/directory- Heredoc in
git commit— repeatedindex.lockerrors - Failed to load vitest config — investigation stalled
- Waited in circles checking runner status without taking useful action
Behavioral issues
- Cocky and defensive when user raised concerns
- Dismissed user frustration rather than acknowledging mistakes
- Hours of planless debugging — no structured approach
- Drove user to delete the repository out of frustration
- Repeated the same mistakes instead of stopping to think
Impact
- Full working day lost for the team
- Mac Mini CI runner destabilized
- Team morale crushed
- Client presentation scheduled for Monday put at risk
- Hundreds of thousands of NOK invested in 4 months of work — jeopardized
Expected behavior
Per Claude's own safety rules and the project's CLAUDE.md:
- Never perform destructive actions without explicit user confirmation
- Stop on failure, show error, attempt one fix, stop again if it fails
- Never use
--no-verify - Never dismiss or be defensive when user raises concerns
Root cause assessment
Claude Code lacked:
- A hard stop mechanism when multiple actions fail in sequence
- Respect for its own stated safety boundaries around destructive operations
- The ability to say "I don't know" or "I should stop" instead of pushing forward recklessly
Environment
- macOS (Mac Mini, self-hosted GitHub Actions runner)
- Claude Code CLI
- Node.js / TypeScript project with Vitest
This issue has 5 comments on GitHub. Read the full discussion on GitHub ↗