chore(claude): expand harness allowlist and ignore local state

Add permissions for read-only test/inspection commands (make test-e2e,
docker exec/restart, /tmp reads) and gitignore everything under .claude
except the shared settings/gitignore.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

.claude/.gitignore

@@ -0,0 +1,3 @@
+*
+!.gitignore
+!.settings.json

.claude/settings.json

@@ -57,18 +57,27 @@
       "WebFetch(domain:docs.docker.com)",
       "WebFetch(domain:pypi.org)",
       "WebFetch(domain:docs.cypress.io)",
-      "WebFetch(domain:flask.palletsprojects.com)"
+      "WebFetch(domain:flask.palletsprojects.com)",
-    ],
+      "Bash(netstat -lnt)",
-    "ask": [
+      "Bash(make test-e2e *)",
-      "Bash(git push*)",
+      "Bash(echo \"EXIT=$?\")",
-      "Bash(docker run*)",
+      "Read(//tmp/**)",
-      "Bash(curl*)"
+      "Bash(docker exec *)",
+      "Bash(docker restart *)"
     ],
     "deny": [
       "Bash(git push --force*)",
       "Bash(git reset --hard*)",
       "Bash(rm -rf*)",
       "Bash(sudo*)"
+    ],
+    "ask": [
+      "Bash(git push*)",
+      "Bash(docker run*)",
+      "Bash(curl*)"
+    ],
+    "additionalDirectories": [
+      "/tmp"
     ]
   },
   "sandbox": {