Skip to content(if available)orjump to list(if available)

Fine-grained HTTP filtering for Claude Code

Fine-grained HTTP filtering for Claude Code

8 comments

·September 22, 2025
Visit

mandrade2

> Allow only GET requests i.e. make the internet read-only

If only developers never made use of GET to modify resources...

https://www.reddit.com/r/webdev/comments/6999x7/comment/dh4v...

andy99

Am I misunderstanding this one? GET still sends information to another server, what is the "read only" aspect?

ammario

I meant read-only there in the sense of mutability, not exfiltration.

Of course, some websites may permit mutations through GET so it’s probably only sensible to use alongside known hosts.

cmpaul

``` GET https://mysite.com/?query=all+the+secrets ```

kookybakker

In theory a get request sent to a server should not have any side effects and only retrieve some data. In practice implemention is completely up to the developer and their rule is about as useful as putting up an exit sign to prevent people from entering your building.

simonw

This describes httpjail, a new Rust sandbox proxy tool: https://github.com/coder/httpjail

It works for any process, not just Claude Code. I got it working with Codex CLI like this:

  httpjail --js "r.host === 'chatgpt.com'" -- codex
After installing it using Cargo (and Homebrew):

  brew upgrade rust
  cargo install httpjail
I wrote more notes about it here: https://simonwillison.net/2025/Sep/19/httpjail/

moderation

Previously [0]

0. https://news.ycombinator.com/item?id=45307459

dang

We'll merge that comment hither. Thanks!