Skip to content

docs(9-ai-sessions): document CLI tools pre-installed in the runner#219

Merged
maximelb merged 1 commit into
masterfrom
docs/ai-sessions-runner-environment
May 5, 2026
Merged

docs(9-ai-sessions): document CLI tools pre-installed in the runner#219
maximelb merged 1 commit into
masterfrom
docs/ai-sessions-runner-environment

Conversation

@maximelb
Copy link
Copy Markdown
Contributor

@maximelb maximelb commented May 5, 2026

Summary

Adds a new Runner Environment page under AI Sessions that enumerates everything pre-installed in the session-runner image:

  • Cloud provider CLIs (gcloud, aws, az, doctl, vultr-cli)
  • Source control & dev tooling (git, gh, Node 20, Python 3 + pipx, jq, etc.)
  • Identity / secrets / remote access (op, sdm, tailscale, m365)
  • Security tooling (sublime, chkp_harmony_endpoint_management_cli, mmdblookup)
  • Binary analysis (lcre, Ghidra 11.0.3 with OpenJDK 17)
  • LimaCharlie CLI v2 and the Claude Code CLI
  • Python venv layout at /opt/venv
  • On-disk reference data: cloned documentation, lc-ai catalogue, and the three first-party plugins

The page also clarifies that pre-installation is not authorization — the agent still needs an allowed_tools entry like Bash(gcloud:*) to actually invoke any of these.

Wired into the section nav (between Tool Permissions and AI Skills) and into the section index page.

Drafting because:

  • The list is derived directly from docker/Dockerfile.session-runner on master. Worth a quick second pair of eyes from someone who knows whether anything in the runner is intentionally undocumented (e.g. tools we'd rather not advertise) before publishing.
  • One companion change is in flight in ai-sessions (refractionPOINT/ai-sessions#70) adding the Check Point Harmony Endpoint CLI; this doc lists it on the assumption that PR lands.

Test plan

  • mkdocs build locally renders the new page without warnings.
  • Manually click through the AI Sessions nav to confirm the page slot order looks right.
  • Read for any tool we should redact before publishing.

🤖 Generated with Claude Code

@maximelb @claude
docs(9-ai-sessions): document CLI tools pre-installed in the runner
7ad6f66 
Adds a new "Runner Environment" page that enumerates the cloud, dev,
identity, security, binary-analysis, and LimaCharlie/Claude CLIs baked
into the session-runner image, plus the Python venv and on-disk
reference data layout. Wires it into the section nav and the index
documentation list, between Tool Permissions and AI Skills.

Authors of agent definitions can now consult one page to decide which
Bash(<prefix>:*) entries to add to allowed_tools instead of having to
read the Dockerfile.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@maximelb maximelb force-pushed the docs/ai-sessions-runner-environment branch from 78ad4e7 to 7ad6f66 Compare May 5, 2026 23:13
@maximelb maximelb requested a review from steveatlc May 5, 2026 23:16
@maximelb maximelb added the to-code-review Used to tag PRs that are force-pushed and will need to be reviewed after the fact. label May 5, 2026
@maximelb maximelb marked this pull request as ready for review May 5, 2026 23:17
@maximelb maximelb merged commit a7c6ea3 into master May 5, 2026
2 checks passed
@maximelb maximelb deleted the docs/ai-sessions-runner-environment branch May 5, 2026 23:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@steveatlc steveatlc Awaiting requested review from steveatlc

Assignees

No one assigned

Labels

to-code-review Used to tag PRs that are force-pushed and will need to be reviewed after the fact.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@maximelb