Settings.json: Permissions, Env Vars, Model Overrides

Settings.json is where the harness — not the model — gets configured. It is also where most surprises live, so understanding the layers saves debugging time.

9 min · Reviewed 2026

What settings.json controls

Settings.json is the place to configure everything the model isn't deciding for itself: which permissions auto-approve, which env vars get exposed, which model the session defaults to, which hooks fire, which MCP servers connect. The model reads its own instructions; the harness reads settings.json.

The three config layers

Layer	Path	Scope
User	~/.claude/settings.json	All your sessions
Project	.claude/settings.json	Anyone in this repo
Local	.claude/settings.local.json	Just you, this repo (gitignored)

What goes where

User: personal model preference, default permissions, your global hooks
Project: shared permissions, project-specific hooks, MCP servers everyone uses, env vars the project needs exposed
Local: per-repo overrides for just you (an MCP server only you have credentials for)

Permission entries that pay off

{
  "permissions": {
    "allow": [
      "Bash(pnpm test:*)",
      "Bash(pnpm lint:*)",
      "Bash(git status)",
      "Bash(git diff:*)",
      "Read(**)"
    ],
    "deny": [
      "Bash(git push --force:*)",
      "Bash(rm -rf:*)"
    ]
  }
}Common permission setup. Allow the safe, repeated commands; explicitly deny the destructive ones.

Env vars and overrides

Settings.json can expose env vars to the harness — useful for things like alternate API keys or AI Gateway URLs. It can also override the default model for a project (handy when one repo wants Sonnet and another wants Opus). The override happens at the harness level, before the model ever sees the request.

Apply: audit your settings tonight

Open ~/.claude/settings.json
Read every permission entry; ask 'would I be okay if this fired right now without asking?'
Move team-wide entries to project settings
Move personal/secret entries to local settings
Commit the project settings; gitignore the local

The big idea: settings.json is the harness contract. Audit it like you audit credentials, layer it like you layer dotfiles.

End-of-lesson check

15 questions · take it digitally for instant feedback at tendril.neural-forge.io/learn/quiz/end-claude-code-settings-creators

What is the core idea behind "Settings.json: Permissions, Env Vars, Model Overrides"?
1. Settings.json is where the harness — not the model — gets configured. It is also where most surprises live, so understanding the layers saves debugging time.
2. Long codebase searches that would otherwise block the session for minutes
3. Git worktrees let you run multiple Claude Code sessions on the same repo without…
4. lifecycle event
Which term best describes a foundational idea in "Settings.json: Permissions, Env Vars, Model Overrides"?
1. config layer
2. settings.json
3. permission model
4. auto-approval
A learner studying Settings.json: Permissions, Env Vars, Model Overrides would need to understand which concept?
1. settings.json
2. permission model
3. config layer
4. auto-approval
Which of these is directly relevant to Settings.json: Permissions, Env Vars, Model Overrides?
1. settings.json
2. config layer
3. auto-approval
4. permission model
Which of the following is a key point about Settings.json: Permissions, Env Vars, Model Overrides?
1. User: personal model preference, default permissions, your global hooks
2. Project: shared permissions, project-specific hooks, MCP servers everyone uses, env vars the project…
3. Local: per-repo overrides for just you (an MCP server only you have credentials for)
4. Long codebase searches that would otherwise block the session for minutes
What is one important takeaway from studying Settings.json: Permissions, Env Vars, Model Overrides?
1. Read every permission entry; ask 'would I be okay if this fired right now without asking?'
2. Open ~/.claude/settings.json
3. Move team-wide entries to project settings
4. Move personal/secret entries to local settings
Which of these does NOT belong in a discussion of Settings.json: Permissions, Env Vars, Model Overrides?
1. Long codebase searches that would otherwise block the session for minutes
2. Open ~/.claude/settings.json
3. Read every permission entry; ask 'would I be okay if this fired right now without asking?'
4. Move team-wide entries to project settings
What is the key insight about "Project settings get committed" in the context of Settings.json: Permissions, Env Vars, Model Overrides?
1. Long codebase searches that would otherwise block the session for minutes
2. Git worktrees let you run multiple Claude Code sessions on the same repo without…
3. lifecycle event
4. Project settings are shared with the team — they belong in version control.
What is the key insight about "Auto-approval is sharp" in the context of Settings.json: Permissions, Env Vars, Model Overrides?
1. Every command on the allow-list runs without asking. That is a feature for `pnpm test`, a footgun for `git push`.
2. Long codebase searches that would otherwise block the session for minutes
3. Git worktrees let you run multiple Claude Code sessions on the same repo without…
4. lifecycle event
What is the key insight about "From the community" in the context of Settings.json: Permissions, Env Vars, Model Overrides?
1. Long codebase searches that would otherwise block the session for minutes
2. On r/ClaudeAI, the most-cited settings.json improvement is adding the JSON schema reference (`"$schema": "https://json-s…
3. Git worktrees let you run multiple Claude Code sessions on the same repo without…
4. lifecycle event
Which statement accurately describes an aspect of Settings.json: Permissions, Env Vars, Model Overrides?
1. Long codebase searches that would otherwise block the session for minutes
2. Git worktrees let you run multiple Claude Code sessions on the same repo without…
3. Settings.json is the place to configure everything the model isn't deciding for itself: which permissions auto-approve, which env vars get e…
4. lifecycle event
What does working with Settings.json: Permissions, Env Vars, Model Overrides typically involve?
1. Long codebase searches that would otherwise block the session for minutes
2. Git worktrees let you run multiple Claude Code sessions on the same repo without…
3. lifecycle event
4. Settings.json can expose env vars to the harness — useful for things like alternate API keys or AI Gateway URLs.
Which of the following is true about Settings.json: Permissions, Env Vars, Model Overrides?
1. The big idea: settings.json is the harness contract. Audit it like you audit credentials, layer it like you layer dotfiles.
2. Long codebase searches that would otherwise block the session for minutes
3. Git worktrees let you run multiple Claude Code sessions on the same repo without…
4. lifecycle event
Which best describes the scope of "Settings.json: Permissions, Env Vars, Model Overrides"?
1. It is unrelated to tools workflows
2. It focuses on Settings.json is where the harness — not the model — gets configured. It is also where most surprise
3. It applies only to the opposite beginner tier
4. It was deprecated in 2024 and no longer relevant
Which section heading best belongs in a lesson about Settings.json: Permissions, Env Vars, Model Overrides?
1. Long codebase searches that would otherwise block the session for minutes
2. Git worktrees let you run multiple Claude Code sessions on the same repo without…
3. The three config layers
4. lifecycle event

← Back to interactive lesson

Tendril · Creators · Tools Literacy

Settings.json: Permissions, Env Vars, Model Overrides

Settings.json is where the harness — not the model — gets configured. It is also where most surprises live, so understanding the layers saves debugging time.

9 min · Reviewed 2026

What settings.json controls

The three config layers

Layer	Path	Scope
User	~/.claude/settings.json	All your sessions
Project	.claude/settings.json	Anyone in this repo
Local	.claude/settings.local.json	Just you, this repo (gitignored)

What goes where

User: personal model preference, default permissions, your global hooks
Project: shared permissions, project-specific hooks, MCP servers everyone uses, env vars the project needs exposed
Local: per-repo overrides for just you (an MCP server only you have credentials for)

Permission entries that pay off

{
  "permissions": {
    "allow": [
      "Bash(pnpm test:*)",
      "Bash(pnpm lint:*)",
      "Bash(git status)",
      "Bash(git diff:*)",
      "Read(**)"
    ],
    "deny": [
      "Bash(git push --force:*)",
      "Bash(rm -rf:*)"
    ]
  }
}Common permission setup. Allow the safe, repeated commands; explicitly deny the destructive ones.

Env vars and overrides

Apply: audit your settings tonight

Open ~/.claude/settings.json
Read every permission entry; ask 'would I be okay if this fired right now without asking?'
Move team-wide entries to project settings
Move personal/secret entries to local settings
Commit the project settings; gitignore the local

The big idea: settings.json is the harness contract. Audit it like you audit credentials, layer it like you layer dotfiles.

End-of-lesson check

15 questions · take it digitally for instant feedback at tendril.neural-forge.io/learn/quiz/end-claude-code-settings-creators

What is the core idea behind "Settings.json: Permissions, Env Vars, Model Overrides"?
1. Settings.json is where the harness — not the model — gets configured. It is also where most surprises live, so understanding the layers saves debugging time.
2. Long codebase searches that would otherwise block the session for minutes
3. Git worktrees let you run multiple Claude Code sessions on the same repo without…
4. lifecycle event
Which term best describes a foundational idea in "Settings.json: Permissions, Env Vars, Model Overrides"?
1. config layer
2. settings.json
3. permission model
4. auto-approval
A learner studying Settings.json: Permissions, Env Vars, Model Overrides would need to understand which concept?
1. settings.json
2. permission model
3. config layer
4. auto-approval
Which of these is directly relevant to Settings.json: Permissions, Env Vars, Model Overrides?
1. settings.json
2. config layer
3. auto-approval
4. permission model
Which of the following is a key point about Settings.json: Permissions, Env Vars, Model Overrides?
1. User: personal model preference, default permissions, your global hooks
2. Project: shared permissions, project-specific hooks, MCP servers everyone uses, env vars the project…
3. Local: per-repo overrides for just you (an MCP server only you have credentials for)
4. Long codebase searches that would otherwise block the session for minutes
What is one important takeaway from studying Settings.json: Permissions, Env Vars, Model Overrides?
1. Read every permission entry; ask 'would I be okay if this fired right now without asking?'
2. Open ~/.claude/settings.json
3. Move team-wide entries to project settings
4. Move personal/secret entries to local settings
Which of these does NOT belong in a discussion of Settings.json: Permissions, Env Vars, Model Overrides?
1. Long codebase searches that would otherwise block the session for minutes
2. Open ~/.claude/settings.json
3. Read every permission entry; ask 'would I be okay if this fired right now without asking?'
4. Move team-wide entries to project settings
What is the key insight about "Project settings get committed" in the context of Settings.json: Permissions, Env Vars, Model Overrides?
1. Long codebase searches that would otherwise block the session for minutes
2. Git worktrees let you run multiple Claude Code sessions on the same repo without…
3. lifecycle event
4. Project settings are shared with the team — they belong in version control.
What is the key insight about "Auto-approval is sharp" in the context of Settings.json: Permissions, Env Vars, Model Overrides?
1. Every command on the allow-list runs without asking. That is a feature for `pnpm test`, a footgun for `git push`.
2. Long codebase searches that would otherwise block the session for minutes
3. Git worktrees let you run multiple Claude Code sessions on the same repo without…
4. lifecycle event
What is the key insight about "From the community" in the context of Settings.json: Permissions, Env Vars, Model Overrides?
1. Long codebase searches that would otherwise block the session for minutes
2. On r/ClaudeAI, the most-cited settings.json improvement is adding the JSON schema reference (`"$schema": "https://json-s…
3. Git worktrees let you run multiple Claude Code sessions on the same repo without…
4. lifecycle event
Which statement accurately describes an aspect of Settings.json: Permissions, Env Vars, Model Overrides?
1. Long codebase searches that would otherwise block the session for minutes
2. Git worktrees let you run multiple Claude Code sessions on the same repo without…
3. Settings.json is the place to configure everything the model isn't deciding for itself: which permissions auto-approve, which env vars get e…
4. lifecycle event
What does working with Settings.json: Permissions, Env Vars, Model Overrides typically involve?
1. Long codebase searches that would otherwise block the session for minutes
2. Git worktrees let you run multiple Claude Code sessions on the same repo without…
3. lifecycle event
4. Settings.json can expose env vars to the harness — useful for things like alternate API keys or AI Gateway URLs.
Which of the following is true about Settings.json: Permissions, Env Vars, Model Overrides?
1. The big idea: settings.json is the harness contract. Audit it like you audit credentials, layer it like you layer dotfiles.
2. Long codebase searches that would otherwise block the session for minutes
3. Git worktrees let you run multiple Claude Code sessions on the same repo without…
4. lifecycle event
Which best describes the scope of "Settings.json: Permissions, Env Vars, Model Overrides"?
1. It is unrelated to tools workflows
2. It focuses on Settings.json is where the harness — not the model — gets configured. It is also where most surprise
3. It applies only to the opposite beginner tier
4. It was deprecated in 2024 and no longer relevant
Which section heading best belongs in a lesson about Settings.json: Permissions, Env Vars, Model Overrides?
1. Long codebase searches that would otherwise block the session for minutes
2. Git worktrees let you run multiple Claude Code sessions on the same repo without…
3. The three config layers
4. lifecycle event

← Back to interactive lesson