Filesystem controls were another important architectural choice. We found that offering different file-mount modes helps to granularly control risk; Claude Cowork offers read-only, read-write, and read-write-no-delete.
行动建议:实现细粒度的文件系统访问控制,提供多种挂载模式(如只读、读写、读写但不删除)来精确控制风险。对于企业环境,还应实现路径允许列表功能,并通过MDM设置进行管理,防止符号链接等机制导致的边界逃逸。