Claude Code is becoming more than a coding assistant: it can read repositories, edit files, run commands, and interact with a developer’s local environment. This talk shows how to use it more safely in daily development by configuring permissions, allow/deny rules, command approvals, and sandboxing. We will look at practical ways to reduce the risk of prompt injection, secret exposure, and dangerous command execution without blocking developer productivity.