DEV Community: Oz Gomez The latest articles on DEV Community by Oz Gomez (@ozforce_1998). https://dev.to/ozforce_1998 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3938819%2F7063659b-c0d5-466f-881b-ae37b0ae9ee2.jpg DEV Community: Oz Gomez https://dev.to/ozforce_1998 en I built a file watcher for AI coding agents — would love brutal feedback Oz Gomez Mon, 18 May 2026 19:43:46 +0000 https://dev.to/ozforce_1998/i-built-a-file-watcher-for-ai-coding-agents-would-love-brutal-feedback-3in6 https://dev.to/ozforce_1998/i-built-a-file-watcher-for-ai-coding-agents-would-love-brutal-feedback-3in6 <p>I've been using Claude Code for the past few months — heavily. And a lot of the time, I'm running it remotely. I'll kick off a session from my phone via Telegram, leave it working on a project, and come back later to see what it did.<br> That's when I started noticing something uncomfortable.<br> The agent would modify files I didn't expect. Overwrite a .env. Delete something it considered "unused". Touch config files while doing something else entirely. When I was sitting at the machine, I'd catch it. When I wasn't — I'd find out later, sometimes much later.<br> So I built something to watch what it does while I'm away.<br> AgentGuard is a CLI wrapper and background daemon that monitors your filesystem while AI coding agents work. It detects changes to sensitive files (.env, keys, CI configs, package.json), logs everything to an audit trail, and can send you a Telegram message with rollback buttons if something looks wrong — even when you're not at the machine.<br> npm install -g agentguard-dev<br> agentguard init<br> agentguard claude # wraps Claude Code<br> Or run it as a permanent background daemon:<br> agentguard daemon install # starts on login via launchd<br> agentguard daemon status<br> What it actually does:</p> <p>Watches configured directories permanently, even when you're away<br> Detects mass deletes, env overwrites, CI config changes, credential files<br> Sends Telegram alerts with ✅ Keep / ↩️ Rollback buttons you can tap from your phone<br> Writes a full audit log so you can see what the agent touched during a session</p> <p>Honest limitations:</p> <p>Real-time command interception doesn't work reliably — Codex is a Rust binary that bypasses our hooks, Copilot CLI has a TUI that interferes. The file watcher is the primary defense.<br> Tested mainly with Claude Code on macOS. Other agents and Linux need more testing.<br> Nobody has really used this except me.</p> <p>That last point is why I'm posting this.<br> I have a few years of experience in testing and developer support, so I know enough to build something that works — but I built this primarily because I needed it, and Claude Code helped me write most of it, which is a bit meta. The code works, the tests pass, and it's been running as a daemon on my machine for a week watching two real projects.<br> But I have no idea if it's useful to anyone else, if the UX makes sense, or if I'm solving the wrong problem entirely.<br> GitHub: github.com/Osva2023/AgentGuard<br> If you use Claude Code, Codex, or aider — I'd genuinely appreciate you taking a look. Even just "this is pointless because X" would be valuable right now.<br> leave questions, suggestions, etc, in the comments, thanks DEVs</p> agents ai monitoring showdev