Auto Mode - Claude Code
Eliminate prompts with a background classifier that judges safety.
Auto mode replaces per-action prompts with a background safety classifier. The classifier judges each proposed action and only blocks or escalates the risky ones.
What it does
When auto mode is on, Claude keeps working without asking for routine tool calls. A lightweight model reviews each call and compares it against your permission rules and safety baselines. Unambiguously safe calls go through; ambiguous or dangerous ones surface as prompts or denials. This is how you get unattended runs without surrendering review.
When to use it
- Long autonomous tasks where constant prompts would stall you out.
- Background agents in a sandboxed or containerized environment.
- Well-understood repos where you've already tuned permission rules.
- Pairing with hooks that log or checkpoint for audit.
Gotchas
- Auto mode is a research preview. Behavior can change between releases.
- The classifier isn't perfect. Keep protected paths and critical deny rules in place.
- Prefer sandboxed environments for true unattended runs - auto mode is not the same as bypass mode.
Official docs: https://code.claude.com/docs/en/permission-modes.md#eliminate-prompts-with-auto-mode
Technical content at the intersection of AI and development. Building with AI agents, Claude Code, and modern dev tools - then showing you exactly how it works.
Get the weekly deep dive
Tutorials on Claude Code, AI agents, and dev tools - delivered free every week.
Was this helpful?
Related Guides
Related Tools
Claude Code
Anthropic's agentic coding CLI. Runs in your terminal, edits files autonomously, spawns sub-agents, and maintains memory...
View ToolClaude Opus 4.7
Anthropic's flagship reasoning model. Best-in-class for coding, long-context analysis, and agentic workflows. 1M token c...
View ToolCursor
AI-native code editor forked from VS Code. Composer mode rewrites multiple files at once. Tab autocomplete predicts your...
View ToolWindsurf
Codeium's AI-native IDE. Cascade agent mode handles multi-file edits autonomously. Free tier with generous limits. Stron...
View ToolRelated Videos
Nimbalyst: The Open-Source Visual Workspace for Building with Codex and Claude Code
Nimbalyst Demo: A Visual Workspace for Codex + Claude Code with Kanban, Plans, and AI Commits Try it: https://nimbalyst.com/ Star Repo Here: https://github.com/Nimbalyst/nimbalyst This video demos N...
Composio: Connect OpenClaw & Claude Code to 1,000+ Apps via CLI
Composio: Connect AI Agents to 1,000+ Apps via CLI (Gmail, Google Docs/Sheets, Hacker News Workflows) Check out Composio here: http://dashboard.composio.dev/?utm_source=Youtube&utm_channel=0426&utm_...
Claude Code Channels in 8 Minutes
Anthropic has released Channels for Claude Code, enabling external events (CI alerts, production errors, PR comments, Discord/Telegram messages, webhooks, cron jobs, logs, and monitoring signals) to b...
Related Posts
Claude Opus 4.8 Is an Agent Honesty Release
Claude Opus 4.8 looks like a benchmark bump, but the developer story is better honesty, dynamic workflows, and effort co...
Anthropic Sonnet 4.5 in Claude Code
Anthropic's Claude Sonnet 4.5 isn't just another model increment. The company claims they've observed it maintaining foc...
AI Code Attribution Needs Defect Forensics, Not Vibes
The rsync Claude debate shows why teams need reproducible defect forensics before AI attribution becomes a public blame...
Security Agents Need Repro Harnesses, Not More Scan Prompts
Anthropic's open-source vulnerability harness shows where AI security work is going: reproducible exploit loops, separat...
AI Agent Containment Needs a Capability Ledger
Anthropic's Claude containment writeup points to the next security layer for coding agents: deterministic capability led...
The Model, IDE, CLI, and Agent Framework Changes That Actually Matter
The AI coding market is noisy. The changes that matter are easier to spot when you separate model capability, editor loo...
