Skip to main content
Native macOS App
New · 1-Click Hardening

Your Claude Code sessions, from every angle.

A native macOS menu bar app for exploring, analyzing, and managing your Claude Code and Cowork sessions in one place. Real-time tracking, zero telemetry, 100% local.

Catches leaked API keys, tokens, and credentials in your sessions, automatically.

brew tap cordwainersmith/claudoscope && brew install --cask claudoscope
or download the .dmg directly

100% local. Zero telemetry. Your sessions never leave your disk.

Claudoscope dashboard showing Claude Code session analytics and cost tracking
Claudoscope macOS menu bar widget showing live Claude Code session stats

Featured on Product Hunt

Browse, search & track costs across Claude Code sessions

View ->

Everything you need to understand your Claude Code sessions.

From real-time token tracking to deep configuration browsing, all running natively on your Mac.

Real-time Monitoring

Watches ~/.claude/projects/ via macOS FSEvents for near-instant file change detection. No polling, no Electron.

Cost & Session Analytics

Aggregates token usage across input, output, and cache, maps it to Anthropic or Vertex AI pricing, and visualizes your sessions, spending patterns, and usage over time.

Secret Detection & Config Health

19 lint rules check your CLAUDE.md files, skills, and hooks for issues. Secret detection scans sessions for leaked credentials with entropy-based filtering. Session checks flag runaway costs and token usage.

Configuration Viewer

Reads your settings.json and presents permissions, YOLO mode, memory, and custom slash commands in a browsable layout.

Fully Local & Private

No servers, no network requests, no analytics pings. Claudoscope reads your logs directly from disk. Nothing leaves your machine.

Skills & MCP Browser

Browse installed skills with full markdown rendering. Inspect MCP server arguments, commands, and environment variables.

1-Click Security Hardening

Installs a layered security baseline into ~/.claude/ in one click. Deny rules, hooks, sandbox, and 11 drift checks keep the baseline in place. Fully reversible.

Cowork Sessions

Reads Claude Cowork sessions from the Claude desktop app alongside your Claude Code data. One view of every Claude session you've ever run, with cost rolled into the same totals.

New

Lock down Claude Code in one click

Claude Code reads your filesystem, runs shell commands, and reaches outbound networks. Out of the box, it ships with very few guardrails. Claudoscope installs a layered security baseline into ~/.claude/ and continuously verifies the baseline stays in place.

  • Layered defense: Hard-deny rules block credential paths, destructive shell commands, and pipe-to-shell exfiltration. Sandbox isolation on by default.
  • Pre/post-tool hooks: Six shell hooks vet every Bash, Edit, and Write call. Blocks young packages, force-pushes to public repos, and credential leaks before they ship.
  • Drift detection: 11 lint checks (HRD001–HRD011) verify each layer stays in place. Plain-language explanations and one-click fixes.
  • Reversible by design: Auto-backup before install. Revert restores the pre-install state. Uninstall removes only Claudoscope artifacts.
Claudoscope Hardening rail showing the layered security baseline installed in ~/.claude/ with drift detection

The baseline is layered, so weakening any single layer doesn’t unlock the others.

Permissions & Sandbox

Hard-deny credential paths, destructive commands, and pipe-to-shell.

Pre/Post-Tool Hooks

Credential scan, command validator, push guard, package-age check.

AutoMode Soft-Deny

High-risk operations require explicit user intent and confirmation.

Governance

Marker-wrapped block in your global CLAUDE.md keeps rules in conversation.

Security Skill

On-demand guidance for secrets, dangerous patterns, and network calls.

Catch leaked secrets in your Claude Code sessions

Claudoscope continuously checks your configuration quality and watches for leaked credentials, all without leaving your machine.

  • Secret detection: Scans for private keys, AWS keys, API tokens, and more. Entropy filtering minimizes false positives.
  • Real-time alerts: Floating alert when a leaked credential is detected in an active session.
  • Config linting: 19 rules check your CLAUDE.md files, skills, and hooks for structural issues and invalid globs.
  • Health scores: Weighted config quality grade plus session checks for runaway costs, excessive tokens, and long conversations.
Claudoscope secret detection and config health view for Claude Code sessions
Skills browser showing installed Claude Code skills

Deep Dive into Skills & MCPs

Browse all installed Claude Code skills and Model Context Protocol servers. View triggers, full definitions, and environment variables instantly.

  • Full markdown rendering for skills
  • Inspect MCP arguments and commands
  • Check custom slash commands defined in config

Claude Code Configuration at a Glance

Reads your ~/.claude/settings.json and presents it in a beautifully organized, browsable layout.

  • Native Light / Dark / System themes
  • Track permissions, YOLO mode status, and memory
  • Easy toggling of Anthropic / Vertex pricing
Settings view showing Claude Code configuration

Frequently asked questions

Is Claudoscope free?
Yes. Claudoscope is completely free and open-source under the MIT license.
Does Claudoscope work with Enterprise Claude Code?
Yes. Claudoscope reads directly from local JSONL session files in ~/.claude/projects/. It works with any Claude Code deployment including Enterprise API setups where cookie-based trackers cannot function.
How is Claudoscope different from the /usage command?
The /usage command shows a snapshot of your current session. Claudoscope gives you a full browsable history of every session, with search, cost breakdowns, and analytics across all your projects.
Does Claudoscope collect any data?
No. Claudoscope runs 100% locally on your Mac with zero telemetry. It reads session files from your local disk and never sends data anywhere.
What is Claude Code hardening?
Claudoscope's hardening locks down Claude Code in one click. Claude Code can read your filesystem, run shell commands, and reach outbound networks with very few guardrails out of the box. Claudoscope's hardening baseline blocks credential leaks, destructive commands, and risky network calls through a layered mix of deny rules, sandbox isolation, and pre/post-tool hooks. Drift checks keep the baseline in place over time, and the install is fully reversible.
Is the security hardening reversible?
Yes. Before installing the baseline, Claudoscope takes a full backup of your existing ~/.claude/ configuration. Revert restores the pre-install state from the auto-backup. Uninstall surgically removes only Claudoscope-installed artifacts and leaves any rules you added by hand intact.
Does Claudoscope work with Claude Cowork?
Yes. Claudoscope reads Cowork sessions from ~/Library/Application Support/Claude/ and surfaces them in a dedicated rail alongside your Claude Code data. Cowork spend is rolled into the analytics totals, so the dashboard reflects your full Claude bill, not just the CLI portion. The rail appears automatically once at least one Cowork session exists on disk.

Start exploring your Claude Code sessions, free and open source.

Free, MIT-licensed, and maintained in the open. Requires macOS 14.0 (Sonoma) or later.

Download Claudoscope View on GitHub