skillsSource-backedReview first Safety ✓ Privacy ✓
Claude Code Deep Links Runbook Capability Pack Skill
Expert Claude Code deep links runbook capability pack for building safe claude-cli:// URLs, embedding them in incident runbooks, and validating cwd, repo, and prompt parameters before users press Enter.
HarnessClaude CodeCodexWindsurfGeminiCursorCLI
Level:expertType:capability-packVerified:validated
Review first — review before installing
Open the source and read safety notes before installing.
Safety notes
- Deep links pre-fill prompts but never auto-send; users must press Enter after reviewing the external-link warning.
- Untrusted pages can craft malicious prompts; treat every deep link like untrusted input until a human reviews it.
- Prompts over 1,000 characters show an extended warning; require scroll review before sending long links.
- Network and UNC paths are rejected for cwd; use absolute local paths or repo slugs instead.
- If both cwd and repo are passed, cwd wins even when the path does not exist; validate parameters deliberately.
- Organizations can disable handler registration with disableDeepLinkRegistration in settings or managed policy.
Privacy notes
- Deep link URLs embed prompt text in query parameters, which may expose incident details, customer names, or internal service names in browser history, chat logs, or ticketing systems.
- repo resolution uses the most recently used local clone path, which can reveal directory layout on shared screens via the welcome header.
- Runbooks pasted into GitHub-rendered Markdown lose clickable claude-cli:// links; code-block copies still expose full URLs to readers.
- Public runbooks should use redacted example prompts and generic repo slugs unless the audience is internal-only.
Prerequisites
- Claude Code v2.1.91 or later on the machines that will click or open the link.
- At least one prior interactive Claude Code session on each target machine so the claude-cli:// handler registers.
- For repo links, a local clone where Claude Code has been run at least once so the owner/name slug resolves.
- Permission to review runbook text, alert templates, and the decoded prompt before users press Enter.
Schema details
- Install type
- package
- Reading time
- 8 min
- Difficulty score
- 77
- Troubleshooting
- Yes
- Breaking changes
- No
Source repository stats
- Scope
- Source repo
Package metadata
Skill and platform metadata
- Skill type
- capability-pack
- Skill level
- expert
- Verification
- validated
- Verified at
- 2026-06-13
Retrieval sources
https://code.claude.com/docs/en/deep-linkshttps://code.claude.com/docs/en/skillshttps://code.claude.com/docs/en/features-overviewhttps://code.claude.com/docs/en/settingshttps://code.claude.com/docs/en/permissionshttps://github.com/anthropics/claude-codehttps://developers.google.com/search/docs/fundamentals/creating-helpful-content
Tested platforms
ClaudeClaude CodeCodexCursorWindsurfGeneric AGENTS
| Platform | Support | Install path |
|---|---|---|
| claude-code | Native | .claude/skills/<skill-name>/SKILL.md |
| codex | Native | .agents/skills/<skill-name>/SKILL.md |
| windsurf | Native | .windsurf/skills/<skill-name>/SKILL.md |
| gemini | Native | .gemini/skills/<skill-name>/SKILL.md or .agents/skills/<skill-name>/SKILL.md |
| cursor | Adapter | .cursor/rules/<skill-name>.mdc |
| cli | Manual | AGENTS.md or tool-specific context file |
Full copyable content
# Trigger
"Apply the Claude Code deep links runbook capability pack to this link or runbook."
# Required output
1) Link purpose, audience, and trust boundary
2) Validated claude-cli://open URL with encoded q, cwd, and repo parameters
3) Platform rendering and handler registration notes
4) Prompt review and permission expectations for launched sessions
5) Privacy-safe runbook excerpt suitable for publicationAbout this resource
Knowledge Freshness
This capability pack is grounded in Claude Code deep links, skills, features-overview, settings, and permissions documentation verified on 2026-06-13. Deep links require Claude Code v2.1.91 or later; prefer live official docs when validating handler behavior on new releases.
Retrieval Sources
- https://code.claude.com/docs/en/deep-links
- https://code.claude.com/docs/en/skills
- https://code.claude.com/docs/en/features-overview
- https://code.claude.com/docs/en/settings
- https://code.claude.com/docs/en/permissions
- https://github.com/anthropics/claude-code
- https://developers.google.com/search/docs/fundamentals/creating-helpful-content
Source Verification Notes
Verified against official Claude Code deep links documentation on 2026-06-13:
- Deep links require Claude Code v2.1.91 or later and use the
claude-cli://openpath with optionalq,cwd, andrepoquery parameters. - Links pre-fill the prompt box but never auto-send; users must review the external-link warning and press Enter.
- The
qparameter accepts URL-encoded text up to 5,000 characters; use%0Afor line breaks in multi-line runbook prompts. - When both
cwdandrepoare supplied,cwdtakes precedence even if the path does not exist. - GitHub-rendered Markdown strips custom schemes such as
claude-cli://; provide copyable code blocks in public runbooks when click-through links are unavailable.
Scope Note
This is not a generic URL-shortener guide. Use it when teams need repeatable,
reviewable claude-cli://open links in runbooks, alerts, dashboards, or shell
automation without auto-executing prompts on untrusted pages.
Core Workflow
- Define the runbook moment: incident triage, onboarding, CI failure review, or recurring operational check.
- Choose the working-directory strategy:
cwdwhen all users share a standardized absolute path.repowhen each engineer clones to different locations and Claude Code has recorded prior sessions in that clone.
- Draft the prompt text separately, then URL-encode it for the
qparameter. Use%0Afor line breaks and stay within the 5,000 character maximum. - Build the link starting from
claude-cli://openand add only supported query parameters:q,cwd, andrepo. - Validate trust boundaries. Deep links never execute automatically; confirm the runbook tells users to read the external-link warning before pressing Enter.
- Test handler registration by starting one interactive Claude Code session on
each target OS, then open the link with
open,xdg-open, orStart-Processas appropriate. - Verify the launched session shows the expected path in the welcome header, the decoded prompt in the input box, and normal permission rules for the selected directory.
- Document platform rendering limits. GitHub Markdown strips custom schemes, so provide a copyable code block or an internal wiki that allows the scheme.
- For long operational playbooks, consider pairing a short deep-link prompt
with an in-repo
/skillso the link only names the skill to invoke.
Capability Scope
claude-cli://openURL construction and parameter validation.- Runbook and alert embedding patterns with trust review.
- Handler registration and terminal selection behavior on macOS, Linux, and Windows.
- External prompt warning and long-prompt review expectations.
- Platform rendering constraints for custom URL schemes.
- Privacy-safe runbook publication guidance.
Compatibility
Native
- Claude Code / Claude: use as an Agent Skill when authoring or reviewing deep links for incident response, onboarding, or local automation.
Manual Adaptation
- Codex, Cursor, Windsurf, and Generic AGENTS workflows: use the workflow as a checklist for validating Claude Code deep links in docs and support assets.
Required Inputs
- Intended audience, trust level of the hosting page, and execution environment.
- Target repository slug or absolute cwd path policy.
- Draft prompt text before URL encoding.
- Platforms that will render the link and whether custom schemes are allowed.
Production Rules
- Never assume a deep link auto-starts work; users must review and press Enter.
- Do not embed secrets, tokens, or customer-identifying data in
qparameters. - Prefer
repofor shared runbooks andcwdonly when paths are standardized. - Confirm Claude Code has run once in target clones before relying on
repo. - Provide code-block URLs where Markdown renderers strip custom schemes.
- Use managed
disableDeepLinkRegistrationwhen organizational policy forbids custom URL handlers. - Redact incident-specific details in public examples.
Review Matrix
| Requirement | Parameter | Validation |
|---|---|---|
| Shared clone locations vary | repo | Prior Claude Code session recorded for slug |
| Standardized devcontainer path | cwd | Absolute local path, no network or UNC |
| Multi-line diagnostic prompt | q | URL-encoded with %0A, under 5,000 chars |
| GitHub README link | rendering | Use code block; scheme is stripped in Markdown |
| Link does nothing on click | handler | Run one interactive session to register |
| Wrong terminal opens | platform | macOS recent terminal, Linux $TERMINAL, Windows WT |
Output Contract
- Runbook purpose and trust boundary summary.
- Final
claude-cli://openURL with decoded prompt preview. - cwd versus repo rationale and expected launch directory.
- Handler registration and platform rendering notes.
- User review checklist before pressing Enter.
- Privacy-safe excerpt suitable for internal or public runbooks.
Duplicate Check
Checked content/skills, content/guides, generated catalog text, and open
pull requests for Claude Code deep links, claude-cli://, runbook launch links,
and external prompt handling. Official docs cover deep links directly, but no
skills entry provides a reusable runbook authoring workflow with parameter
matrix and trust review contract.
Editorial Disclosure
Submitted as an independent source-backed HeyClaude content entry by
kiannidev. It is based on public Claude Code documentation, the public
Anthropic claude-code repository, and Google Search Central helpful-content
guidance. No paid placement, referral link, affiliate link, or vendor
sponsorship is used.
Source citations
Signals
Loading live community signals…
More like this, weekly
A short, calm digest of reviewed Claude resources. Unsubscribe any time.