Lock Down Claude Code With 5 Permission Patterns

I denied .env file reads in my settings.json. Claude Code read them anyway. Here is how to build permissions that actually hold. Claude Code ships with a tiered permission system that most developers never configure beyond clicking "Yes, don't ask again." That default workflow creates invisible gaps. Every auto-approved command persists permanently in your project settings. Every unconfigured tool runs with maximum access. The result is an AI assistant with more filesystem and network access th