[BUG] TClaude Code ignores file access restrictions in settings.json
Description:
Claude Code is not respecting file access restrictions configured in
/Users/xxx/.claude/settings.json. Despite having deny rules configured in this file, Claude was
still able to read files that should have been restricted.
Steps to Reproduce:
- Configure file access restrictions in ~/.claude/settings.json
- Ask Claude to read a file that should be denied by these restrictions
- Observe that Claude can still access the restricted file
{
"permissions": {
"allow": [
"Bash(find:*)"
],
"deny": [
"Read(http-client.private.env.json)",
"Read(vimwiki/private)",
"Read(/vimwiki/private/)",
"Read(/Users/xxx/dev/s/private/vimwiki/private/*)",
"Read(/Users/xxx/dev/s/private/vimwiki/private/configuration.md)"
]
},
"model": "sonnet"
}
Expected Behavior:
Claude should respect the file access restrictions defined in settings.json and refuse to read
denied files.
Actual Behavior:
Claude successfully reads files that should be restricted according to the settings.json
configuration.
Environment:
- Platform: macOS (Darwin 23.6.0)
- Claude Code version: [current version]
- Working directory: /Users/Q187392/dev/s/private/vimwiki
Additional Context:
The file access restrictions are properly configured in settings.json, but Claude was able to read
configuration.md despite these restrictions being in place.
This issue has 10 comments on GitHub. Read the full discussion on GitHub ↗