NAME

Claude::Agent::DryRun - Dry-run mode support for Claude Agent SDK

SYNOPSIS

use Claude::Agent::DryRun qw(create_dry_run_hooks);
use Claude::Agent::Options;

# Simple dry-run with default output
my $options = Claude::Agent::Options->new(
    dry_run => 1,
);

# Dry-run with custom callback
my $changes = [];
my $options = Claude::Agent::Options->new(
    dry_run => 1,
    on_dry_run => sub {
        my ($tool_name, $tool_input, $preview) = @_;
        push @$changes, { tool => $tool_name, input => $tool_input };
        print "[DRY-RUN] $preview\n";
    },
);

# After query completes, review changes
for my $change (@$changes) {
    print "Would have used: $change->{tool}\n";
}

DESCRIPTION

This module provides dry-run functionality for the Claude Agent SDK. In dry-run mode, file-modifying tools are intercepted and their effects are previewed without executing them.

IMPORTANT SECURITY NOTE: Dry-run mode provides preview functionality only, NOT security guarantees. The Bash command detection uses regex-based heuristics that can be bypassed through shell obfuscation techniques (command substitution, variable expansion, hex/octal encoding, aliases, etc.). For security-critical applications, use explicit tool whitelisting, containerization, or sandboxed environments instead of relying on dry-run mode.

WRITE TOOLS

The following tools are considered "write" tools and will be blocked in dry-run mode:

Write - File creation/overwrite
Edit - File modification
Bash - Commands that may modify files (detected by heuristics)
NotebookEdit - Jupyter notebook modifications

Read-only tools execute normally:

Read - File reading
Glob - File pattern matching
Grep - Content searching
WebFetch - Web content fetching
WebSearch - Web searching

MCP TOOLS AND DRY-RUN MODE

Custom MCP tools (tools with names starting with mcp__) are allowed by default in dry-run mode because the system cannot automatically determine whether they perform write operations.

To block specific MCP tools in dry-run mode, you have the following options:

Set the CLAUDE_AGENT_MCP_WRITE_TOOLS environment variable to a comma-separated list of MCP tool names that should be blocked (e.g., mcp__myserver__write_file,mcp__myserver__delete_record)
Implement dry-run logic within the MCP tool itself
Create custom PreToolUse hooks to explicitly block specific MCP tools

FUNCTIONS

create_dry_run_hooks

my $hooks = create_dry_run_hooks($on_dry_run_callback);

Creates hook matchers for dry-run mode. Returns a hashref suitable for the hooks option.

is_write_tool

my $is_write = is_write_tool($tool_name, $tool_input);

Returns true if the tool is considered a write operation.

format_preview

my $preview = format_preview($tool_name, $tool_input);

Formats a human-readable preview of what the tool would do.

AUTHOR

LNATION, <email at lnation.org>

LICENSE

This is free software, licensed under The Artistic License 2.0 (GPL Compatible).

To install Claude::Agent, copy and paste the appropriate command in to your terminal.

cpanm

cpanm Claude::Agent

CPAN shell

perl -MCPAN -e shell
install Claude::Agent

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)