sandbox

Open-source AI sandbox infrastructure for running code, browsing the web, and isolating agent workflows inside disposable microVMs.

Open-source infrastructure for computer-use agents, with sandboxes, SDKs, benchmarks, and desktop automation tooling for macOS, Linux, Windows, and Android. The repo also includes Cua Driver, CuaBot, Cua-Bench, and Lume for VM management.

Tail Panic is a code-driven battle game where you script AI agents to chase or evade on a 25×25 grid, join bot matches, and review 3D replays.

SpadeBox is an open-source sandboxed tools and JavaScript runtime for AI agents, with Rust core plus JavaScript and Python bindings. It provides file, network, and code-execution tools, supports MCP, and includes examples for JavaScript, Rust, and Python.

Open-source, self-hostable sandbox for AI agents. It lets agents work inside isolated Linux containers through MCP tools, with CLI and host-level admin controls for creating, managing, and exposing boxes.

Open-source infrastructure for running and automating sandboxed coding agents, with local Docker setup, integrations, snapshots, sessions, and automations.

Open-source AI-powered desktop automation agent that gives an LLM a fully isolated Ubuntu workspace with browser-based supervision, MCP access, audit logs, and OS-level control.

A browser-based demo where an AI agent writes x86_64 assembly and eBPF to generate Wolfram cellular automata and Mandelbrot fractals inside a real Linux VM, with framebuffer and kernel trace streams exposed live.

A minimal native macOS sandbox for running Claude Code or Codex with OS-enforced limits on what the agent can touch.

A demo for running the Odysseus self-hosted AI workspace on throwaway islo.dev microVMs in one command, with both a clickable live app path and an agent tool for running code on disposable boxes.

Open-source local compute fabric for AI agents. It runs a single-node K3s stack through Docker Compose, provisions isolated Ubuntu sandboxes, and exposes native MCP support for local agent workflows.

A research-style demo showing LLM agents evolving through a genetic algorithm to play Pokémon in parallel sandboxed VMs. The page explains the setup, scoring loop, generations, results, and links to the repo and run artifacts.

Sandboxed bash for agents with structured command output and full filesystem state capture after each run.

A Docker-based sandbox for running AI coding agents with dropped capabilities, no-new-privileges, and no Docker socket access. It wraps the pi terminal coding agent and supports local file edits, persistent auth, and skills mounts.

Autolang is a scripting language and compiler for AI agent code, designed to run untrusted AI-written scripts in a controlled environment with restricted access to registered functions.

A blog post describing ptc_runner’s MCP server and code-mode approach, where agents run short-lived untrusted programs inside a small Lisp REPL instead of Python or JavaScript.