[BUG] TClaude Code ignores file access restrictions in settings.json

Resolved 💬 10 comments Opened Jul 14, 2025 by sysid Closed Jan 9, 2026

Description:

Claude Code is not respecting file access restrictions configured in
/Users/xxx/.claude/settings.json. Despite having deny rules configured in this file, Claude was
still able to read files that should have been restricted.

Steps to Reproduce:

  1. Configure file access restrictions in ~/.claude/settings.json
  2. Ask Claude to read a file that should be denied by these restrictions
  3. Observe that Claude can still access the restricted file

{
"permissions": {
"allow": [
"Bash(find:*)"
],
"deny": [
"Read(http-client.private.env.json)",
"Read(vimwiki/private)",
"Read(/vimwiki/private/)",
"Read(/Users/xxx/dev/s/private/vimwiki/private/*)",
"Read(/Users/xxx/dev/s/private/vimwiki/private/configuration.md)"
]
},
"model": "sonnet"
}

Expected Behavior:
Claude should respect the file access restrictions defined in settings.json and refuse to read
denied files.

Actual Behavior:
Claude successfully reads files that should be restricted according to the settings.json
configuration.

Environment:

  • Platform: macOS (Darwin 23.6.0)
  • Claude Code version: [current version]
  • Working directory: /Users/Q187392/dev/s/private/vimwiki

Additional Context:
The file access restrictions are properly configured in settings.json, but Claude was able to read
configuration.md despite these restrictions being in place.

View original on GitHub ↗

This issue has 10 comments on GitHub. Read the full discussion on GitHub ↗