[docs] Update documentation for features from 2026-05-25#34640
Merged
pelikhan merged 1 commit intoMay 25, 2026
Conversation
Updates the Claude Tool Enforcement Security Model section in docs/src/content/docs/reference/engines.md to reflect PR #34525: - Documents the new engine.permission-mode setting (auto, acceptEdits, plan, bypassPermissions) with a usage example. - Removes the now-inaccurate description of bypassPermissions being auto-derived from bash wildcards. bypassPermissions is now opt-in only. - Adds the tools.edit: false -> auto default rule. - Documents legacy engine.args --permission-mode compatibility and the single-flag emission guarantee. - Replaces the workflow-config-based summary table with one keyed on engine.permission-mode values.
github-actions
Bot
added
automation
documentation
pelikhan
deleted the
docs/engine-permission-mode-2026-05-25-ccee3cefeeed7684
branch
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
docs: document first-class
engine.permission-modefor ClaudeSummary
Replaces the implicit derivation of
bypassPermissionsfrom bash config with an explicit, first-classengine.permission-modesetting in the engines reference documentation. Adds resolution-order rules, newautoandplanmode entries to the summary table, and legacyengine.argscompatibility notes.What changed
docs/src/content/docs/reference/engines.mdengine.permission-modesetting; resolution-order documentation;auto/planmodes added to summary table;engine.argslegacy compat notesWhy
Previously,
bypassPermissionswas derived implicitly from the bash config, making the behaviour opaque and hard to override. Surfacingengine.permission-modeas a first-class setting gives operators and users a clear, documented knob to control permission behaviour for Claude without relying on undocumented side-effects.How it works
engine.permission-modeis now the canonical setting for controlling whether Claude operates in default,auto, orplanpermission mode.engine.argscompatibility notes ensure existing configurations continue to work without modification.Testing
Documentation-only change; no automated tests required. Manual verification: review rendered docs for accuracy of the new table rows and resolution-order description.
Breaking changes
None.