Auto mode for Claude Code
simonwillison.net
Really interesting new development in Claude Code today as an alternative to --dangerously-skip-permissions: Today, we're introducing auto mode, a new permissions mode in Claude Code where Claude makes permission decisions …

Simon Willison on Claude Code auto mode: AI classifiers for permission decisions are non-deterministic by nature. The right approach is deterministic containment — filesystem restrictions, network rules, explicit allowlists. For scheduled tasks: use hooks (PermissionDenied, PreToolUse) for deterministic guardrails. Pin dependencies. Layer with CLAUDE_CODE_SUBPROCESS_ENV_SCRUB=1.