What is the difference between SCC and Claude Code or Codex?

Claude Code and Codex are AI coding CLIs. SCC runs them inside container sandboxes with team-managed policies, a built-in safety engine, and plugin governance. SCC doesn't replace your agent — it wraps it in a governed environment.

Is SCC safer than running agents locally?

SCC adds container isolation (agent cannot access host files outside mounted paths), a fail-closed safety engine (blocks destructive commands), topology-enforced network egress, and plugin governance (org-approved plugins only). These reduce risk compared to unrestricted local execution.

Do I need SCC if I'm a solo developer?

Solo developers can use agents directly. SCC is most valuable for teams that need consistent configurations, security policies, and governance. However, solo developers who want container isolation or git protection may still benefit from SCC.

SCC vs Running Agents Locally

This guide compares running AI coding agents (Claude Code, Codex) through SCC’s container sandbox versus running them directly on your local machine.

Quick Comparison

Aspect	SCC CLI	Local Agent
Execution environment	OCI container (Docker Engine, OrbStack, Colima, etc.)	Your host machine
File access	Only mounted paths	Full filesystem
Git protection	Built-in safety engine + optional safety-net plugin	Relies on agent’s built-in behavior
Network control	Topology-enforced egress or full lockdown	No restriction
Configuration	Centralized org/team profiles	Per-user local settings
Plugin control	Org-approved plugins only	Any plugin
Provider choice	Claude Code or Codex through same pipeline	Single agent
Setup	`scc setup` + `scc start`	Agent CLI directly

What SCC Adds

Container Isolation

With SCC, the agent runs inside an OCI container. The AI can only access files in paths you explicitly mount, typically your project directory.

# SCC mounts only the workspace
scc start ~/my-project
# The agent sees /home/user/my-project inside container
# Cannot access ~/.ssh, ~/.aws, or other host paths

Running an agent locally gives it access to your full filesystem within the permissions of your user account.

Git Safety Rails

SCC’s Safety Net plugin blocks commands that can cause data loss:

Blocked Command	Risk
`git push --force`	Overwrites remote history
`git reset --hard`	Discards uncommitted changes
`git branch -D`	Force-deletes branches
`git clean -fd`	Deletes untracked files

Local agents rely on their own judgment and your confirmation prompts.

Team-Managed Configuration

SCC lets organizations define:

Approved plugins: Only whitelisted plugins can run
MCP servers: Control which external services the agent can access
Security policies: Network posture, blocked patterns
Team profiles: Consistent defaults across developers

Developers run scc setup once to inherit all team settings.

With local agent setups, each developer manages their own provider configuration independently.

Git Worktree Integration

SCC provides built-in worktree management for parallel AI tasks:

scc worktree create ~/project feature-auth
# Creates isolated branch scc/feature-auth
# Claude experiments don't touch main branch

This keeps AI work isolated from your main development branch.

When to Use Each

Choose SCC When

Your team needs consistent agent configurations
You want container isolation between AI and host system
You need to prevent destructive git operations
Org admins must control which plugins are allowed
Multiple developers need standardized setups

Choose Local Agent When

You’re a solo developer with simple needs
You need maximum speed (no container startup)
You trust your agent’s built-in safety measures
You don’t need team-wide governance

Hybrid Approach

Some teams use both:

Local agent execution for quick, trusted tasks
SCC for experimental work or when working with sensitive code

Next Steps

Quick Start Try SCC in minutes

Security Model Understand SCC's isolation layers

Why Sandbox AI Coding Agents Detailed reasons for sandboxing