Safe Unix FAQs

Question 1

Is Safe Unix compatible with my existing AI setup?

Accepted Answer

While primarily designed for Crush AI agents with an automated setup utility, Safe Unix uses the stdio MCP transport, making it potentially compatible with any MCP client. It supports both Linux and macOS environments.

Question 2

How does Safe Unix ensure secure access for AI agents?

Accepted Answer

It rigorously enforces read-only operations by blocking dangerous flags and commands, such as `find -exec`, `find -delete`, and `sed -i`. This prevents AI agents from accidentally or intentionally making destructive changes to the system.

Question 3

How do I set up Safe Unix for my AI agent?

Accepted Answer

The recommended method is to use the `setup-safe-unix` utility after global installation (`npm install -g .`). This script automatically configures your Crush config. Manual setup by adding a JSON entry to your `~/.crush.json` is also an option.

Question 4

What is Safe Unix?

Accepted Answer

Safe Unix is a stdio MCP server that provides AI agents, specifically Crush, with secure, read-only access to a curated set of Unix-like command-line tools, ensuring safe and controlled execution within development workflows.

Question 5

Which Unix-like tools are available through Safe Unix?

Accepted Answer

Safe Unix includes secure versions of essential tools for file/directory listing (`safe_ls`), viewing (`safe_cat`, `safe_less`), searching (`safe_grep`, `safe_awk`), text transforms (`safe_sed`, `safe_cut`), read-only Git inspection (`safe_git`), JSON/YAML processing (`safe_jq`, `safe_yq`), and many more common utilities.

Safe Unix

概要

主な機能

ユースケース