Skip to main content

Crush Configuration and Security

1. The core config mindset​

Crush configuration should be understood through three questions:

  1. which model powers it,
  2. what local resources it can access,
  3. how results are reviewed before they are trusted.

2. Local access is the real safety issue​

Like other coding agents, Crush becomes powerful because it can work close to:

  • source code,
  • local files,
  • shell commands,
  • developer tooling.

That also means teams should treat it as a privileged development tool, not as a harmless chatbot.

3. Safe operating habits​

Use these defaults:

  • work on branches,
  • avoid exposing unnecessary secrets,
  • review all generated diffs,
  • start on low-risk repositories first.

4. Day-two operations​

Once the first session works, the next questions are usually:

  • which models are approved,
  • how the CLI is distributed to developers,
  • what review standards apply,
  • whether logs or traces should be retained.

5. Practical rollout advice​

Treat Crush like any other code-writing tool with elevated power: useful, productive, and worth governing carefully.