claudex
by Mng-dev-ai
Overview
Self-hosted Claude AI chat interface with sandboxed code execution, offering a full IDE experience and support for multiple AI providers and extensible agents/skills.
Installation
docker compose up -dEnvironment Variables
- DATABASE_URL
- REDIS_URL
- SECRET_KEY
- ANTHROPIC_API_KEY (or Z_AI_API_KEY, OPENROUTER_API_KEY, MODAL_API_KEY, E2B_API_KEY depending on chosen providers)
- SANDBOX_PROVIDER
- DOCKER_IMAGE
- BASE_URL
- FRONTEND_URL
- ALLOWED_ORIGINS
- TRUSTED_PROXY_HOSTS
- DOCKER_TRAEFIK_NETWORK (if using Traefik with Docker sandbox)
- DOCKER_SANDBOX_DOMAIN (if using Traefik with Docker sandbox)
- DOCKER_PERMISSION_API_URL (if using Traefik with Docker sandbox)
Security Notes
The core functionality of Claudex relies on executing user-provided code in sandboxed environments, which inherently carries risks. For the Docker sandbox provider, the `api` and `celery-worker` services run with `privileged: true` and mount `/var/run/docker.sock` from the host. This grants these containers root access to the host's Docker daemon, a critical security vulnerability if the application or a component within the sandbox is compromised. While necessary for the sandbox to create isolated containers, it effectively means that a successful exploit of the application could lead to root access on the host machine. The `SECRET_KEY` has a default value for development only, and the documentation correctly warns about using a strong, unique key in production. Marketplace plugins involve downloading and potentially executing external code, which requires trust in the plugin source and vigilance against supply chain attacks. Overall, the direct Docker daemon access is the most significant concern, making it suitable only for trusted, isolated deployment environments.
Similar Servers
DesktopCommanderMCP
This server empowers AI agents to search, update, manage files, and execute terminal commands on a local or containerized desktop environment. It provides enhanced filesystem operations, process control, and data analysis capabilities with support for various file types like text, Excel, and PDF.
claude-code-buddy
An intelligent AI Agent orchestration system for Claude Code, focusing on smart task routing, prompt enhancement, project memory, workflow guidance, and planning, presented via a real-time terminal UI dashboard.
cldcde
A persistent context manager that scrapes, stores, searches, and analyzes AI conversations from various platforms (ChatGPT, Grok, Gemini, Claude) to support project development and insights.
crawl4ai-mcp-server
A lightweight server providing web scraping and crawling tools, designed for integration with AI frameworks like OpenAI Agents SDK, Cursor, and Claude Code.