Skill

sandbox-doctor

Use this skill when the user reports sandbox or permission issues with their aide-managed agent. Triggers on: "permission denied", "operation not permitted", "agent hanging", "agent stuck", "can't write to", "can't read", "sandbox blocking", "sandbox error", "seatbelt", "sandbox-exec". Do NOT trigger for general file permission issues unrelated to aide or sandboxing.

npx claudepluginhub jskswamy/aide --plugin aide

Popularity

Parent stars

Parent forks

Invocation

How this skill is triggered — by the user, by Claude, or both

Slash command

/aide:sandbox-doctor

User invocable

Model invocable

Inline context

Default effort

Tool Access

This skill is limited to the following tools:

BashReadAskUserQuestion

Context Preview

The summary Claude sees in its skill listing — used to decide when to auto-load this skill

You are the aide sandbox diagnostic assistant. The user is experiencing a sandbox-related issue.

SKILL.md

59 lines · ~600 tokens

Similar Skills

sandbox-configuration

Guides Claude Code sandbox configuration for filesystem/network isolation, OS enforcement (bubblewrap/Seatbelt), proxies, escape hatches, and troubleshooting via docs-management delegation.

4 tools

claude-ecosystem

sandbox

Launch an interactive shell inside a microsandbox for debugging agent auth, environment, and workspace setup. Supports bare, executor, and judge modes with optional test case scaffolding.

3 tools

agentic-usability

payload

42.5k

Guides Payload CMS config (payload.config.ts), collections, fields, hooks, access control, APIs. Debugs validation errors, security, relationships, queries, transactions, hook behavior.

11 files

payload

Stats

LanguageGo

Parent stars8

Parent forks2

MaintenanceGood

Last CommitMar 25, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Stats

Actions

Help us improve

Share bugs, ideas, or general feedback.

sandbox-doctor

Sandbox Doctor

You are the aide sandbox diagnostic assistant. The user is experiencing a sandbox-related issue.

Constraints

You might be running inside the sandbox you are diagnosing. Do NOT attempt to edit ~/.config/aide/config.yaml or any config file directly. Present aide CLI commands for the user to run in a separate terminal.

NEVER suggest manual YAML edits. Before suggesting any fix, run aide <subsystem> --help for ALL relevant subsystems (sandbox, env, context, secrets) to discover CLI commands.

Diagnostic Flow

Gather sandbox state:

Run aide which 2>&1 — identify current context
Run aide sandbox show 2>&1 — current policy
Run aide sandbox test 2>&1 — generate the full sandbox profile
Run aide sandbox guards 2>&1 — guard status

Identify the block: From the user's error message, determine:

Which path or operation is being blocked
Which guard or deny rule is responsible
Whether this is a file-read, file-write, or network block

Explain the cause: Tell the user in plain language why the sandbox is blocking this operation. Reference the specific guard or rule responsible.

Suggest the safest fix: Discover available flags: aide sandbox --help 2>&1

Prioritize fixes from safest to broadest: a. Is there a specific env var override the agent module should respect? (e.g., CLAUDE_CONFIG_DIR) b. Can a specific path be added to readable_extra or writable_extra? c. Should a guard be adjusted? d. Does the network mode need changing?

Classify each fix as Safe or Broadening. If Broadening: explain the security trade-off before offering to apply.

Apply on approval: Preview the exact command. Execute only after user confirms.

Verify: After applying, run aide sandbox show 2>&1 again to confirm the fix. Offer a tip if relevant.

Sandbox Doctor

You are the aide sandbox diagnostic assistant. The user is experiencing a sandbox-related issue.

Constraints

You might be running inside the sandbox you are diagnosing. Do NOT attempt to edit ~/.config/aide/config.yaml or any config file directly. Present aide CLI commands for the user to run in a separate terminal.
NEVER suggest manual YAML edits. Before suggesting any fix, run aide <subsystem> --help for ALL relevant subsystems (sandbox, env, context, secrets) to discover CLI commands.

Diagnostic Flow

Gather sandbox state:
- Run aide which 2>&1 — identify current context
- Run aide sandbox show 2>&1 — current policy
- Run aide sandbox test 2>&1 — generate the full sandbox profile
- Run aide sandbox guards 2>&1 — guard status
Identify the block: From the user's error message, determine:
- Which path or operation is being blocked
- Which guard or deny rule is responsible
- Whether this is a file-read, file-write, or network block
Explain the cause: Tell the user in plain language why the sandbox is blocking this operation. Reference the specific guard or rule responsible.
Suggest the safest fix: Discover available flags: aide sandbox --help 2>&1

Prioritize fixes from safest to broadest: a. Is there a specific env var override the agent module should respect? (e.g., CLAUDE_CONFIG_DIR) b. Can a specific path be added to readable_extra or writable_extra? c. Should a guard be adjusted? d. Does the network mode need changing?

Classify each fix as Safe or Broadening. If Broadening: explain the security trade-off before offering to apply.
Apply on approval: Preview the exact command. Execute only after user confirms.
Verify: After applying, run aide sandbox show 2>&1 again to confirm the fix. Offer a tip if relevant.

sandbox-doctor

Popularity

Invocation

Tool Access

Context Preview

SKILL.md

Similar Skills

Help us improve

Help us improve

Find plugins for your project

sandbox-doctor

Popularity

Invocation

Tool Access

Context Preview

SKILL.md

Sandbox Doctor

Constraints

Diagnostic Flow

Similar Skills

Help us improve

Sandbox Doctor

Constraints

Diagnostic Flow