Unix permissions have been battle-tested for fifty years: give a new collaborator their own account and let the filesystem enforce the boundaries. sucoder applies the same principle to AI coding agents, sandboxing them in mirror clones with full write access while protecting the human's canonical repository.

Overview

sucoder treats an LLM coding agent (Claude, Codex, Gemini) as a collaborator with its own Unix account. The human’s canonical repository is group-readable but not group-writable; the agent works in a sandboxed mirror clone where it has full write access.

The sucoder collaborate command resolves configuration, prepares the canonical repo, clones or verifies the mirror, syncs or creates task branches, composes agent launch commands, launches the agent, and reviews results. Features include git worktree support for parallel agent work, remote execution on HPC clusters via SSH, tmux session management, and compliance auditing of agent-written code.