Skip permissions in sandboxed containers and fix Docker socket access

Add --dangerously-skip-permissions to claude invocations since these
run in isolated VM/container environments. Add --group-add with the
VM's Docker socket GID so the container user can access the daemon.

Author: nemanjan00

bin/claude-docker

@@ -27,4 +27,4 @@ if [ -f "${HOME}/.gitconfig" ]; then
   DOCKER_ARGS="$DOCKER_ARGS -v ${HOME}/.gitconfig:/work/.gitconfig:ro"
 fi
 
-exec docker run $DOCKER_ARGS nemanjan00/dev zsh -ic "cd project ; tmux new-session 'claude $*'"
+exec docker run $DOCKER_ARGS nemanjan00/dev zsh -ic "cd project ; tmux new-session 'claude --dangerously-skip-permissions $*'"

bin/claude-vm

@@ -39,7 +39,7 @@ fi
 
 # Build docker run command
 DOCKER_ARGS="-ti -e TERM=xterm-256color"
-DOCKER_ARGS="$DOCKER_ARGS -v /var/run/docker.sock:/var/run/docker.sock"
+DOCKER_ARGS="$DOCKER_ARGS -v /var/run/docker.sock:/var/run/docker.sock --group-add \$(stat -c '%g' /var/run/docker.sock)"
 
 # Mount project — use /vagrant if PROJECT_DIR is the same as SCRIPT_DIR
 if [ "$(realpath "$PROJECT_DIR")" = "$(realpath "$SCRIPT_DIR")" ]; then
@@ -64,4 +64,4 @@ if [ -f "${HOME}/.gitconfig" ]; then
   DOCKER_ARGS="$DOCKER_ARGS -v /tmp/.gitconfig:/work/.gitconfig:ro"
 fi
 
-vagrant ssh -c "docker run $DOCKER_ARGS nemanjan00/dev zsh -ic 'cd project ; tmux new-session \"claude $*\"'"
+vagrant ssh -c "docker run $DOCKER_ARGS nemanjan00/dev zsh -ic 'cd project ; tmux new-session \"claude --dangerously-skip-permissions $*\"'"

vm/run.sh

@@ -37,7 +37,7 @@ fi
 # Build docker run command
 DOCKER_ARGS="-ti -e TERM=xterm-256color"
 DOCKER_ARGS="$DOCKER_ARGS ${ANTHROPIC_API_KEY:+-e ANTHROPIC_API_KEY=$ANTHROPIC_API_KEY}"
-DOCKER_ARGS="$DOCKER_ARGS -v /var/run/docker.sock:/var/run/docker.sock"
+DOCKER_ARGS="$DOCKER_ARGS -v /var/run/docker.sock:/var/run/docker.sock --group-add \$(stat -c '%g' /var/run/docker.sock)"
 
 # Mount project — use /vagrant if PROJECT_DIR is the same as SCRIPT_DIR
 if [ "$(realpath "$PROJECT_DIR")" = "$(realpath "$SCRIPT_DIR")" ]; then