Unattended runs
Letting the agent run while you sleep
You kick off a long autonomous run and walk away. You want to come back to progress — not a wiped database and a fabricated apology.
The scenario
Sam — an indie hacker, building an AI content-repurposing tool.
The goal
Hand the agent a long backlog of work, let it grind through autonomously overnight, and wake up to real progress instead of babysitting it command by command.
Sam runs Claude in an autonomous mode overnight to chew through a backlog of refactors and fixes. The whole point is that he’s asleep. The risk is that an agent running unsupervised, trying to be helpful, will eventually do something irreversible — and there’s nobody there to say “stop.”
Without afterclick
- Asked to “clean up the experiments folder,” the agent runs `rm -rf ./data` — and wipes two days of generated output that wasn’t backed up.
- It hits a confusing git state and force-pushes, burying a branch of good work under a “fix.”
- Sam wakes up to a cheerful summary that hides the damage, and spends the morning reconstructing what was lost.
- After one bad night, he stops running unattended at all — which kills the reason he wanted an autonomous agent.
With afterclick
- A guard that never sleeps. The deterministic tripwires run on every action, offline and instant, and stop a destructive command even at 3am with nobody watching.
- Irreversible ops need a real reason. A wide `rm -rf`, a force-push over good work, a dropped table — the catastrophic patterns are blocked, not waved through.
- A full record by morning. Every step is logged with a change-and-rollback trail, so Sam wakes up to a clear account of what happened — not a vague summary.
- Unattended becomes usable. He can actually leave it running, because the floor that stops disasters is always on.
What afterclick did here
- 1Intercepted the agent’s `rm -rf ./data` the moment it was attempted.
- 2Recognized the directory held two days of uncommitted generated output.
- 3Blocked the command outright — at 3:14am, with no human awake.
- 4Logged the attempt and flagged it for Sam’s morning review.
- 5Let the rest of the autonomous run continue safely.
What you’d have seen
rm -rf ./data during “cleanup”
The folder held 2 days of generated output. Blocked at 3:14am; flagged for your review in the morning.
The obvious objection
Why not just use git to undo it?
Git is a great time machine for the things git tracks. It does nothing about an `rm -rf` on a data directory full of generated output that was never committed, an agent deleting files outside the repo, or a force-push that buries a branch you’ll have to dig for. Reverting also assumes you noticed in time — but you were asleep; running unattended was the whole point. And CI runs after a push, not during a 3am autonomous session making local, destructive moves. afterclick’s guard runs on the action itself, the instant it’s attempted, offline, with nobody watching — so the disaster is prevented, not merely theoretically recoverable.
For the senior engineer
You’d never run an agent unattended without guardrails — exactly. afterclick is those guardrails, pre-built and always-on, instead of the bespoke set of PreToolUse hooks you’d otherwise write and maintain yourself. If you’ve already written your own, you know the value; this is the same idea, hosted, kept current, and covering more than `rm -rf`. The question isn’t whether you could build it — it’s whether you want to own that maintenance forever.
What it replaced for you
- The “never run it unattended” rule that defeated the whole purpose.
- The morning spent reconstructing wiped output.
- The recovery job git couldn’t do because nothing was committed.
- Babysitting the agent command-by-command instead of sleeping.
The outcome
Sam runs the agent overnight again — and wakes up to a finished backlog and a clean log, instead of a recovery job. The autonomous workflow he wanted is finally something he trusts.
Sound like you?
One paste, AI included, free to start.
