sandbox
by agent-infra
Overview
An all-in-one agent sandbox environment offering unified browser, shell, file, Jupyter, VSCode, and MCP operations for AI agents and developers.
Installation
docker run --security-opt seccomp=unconfined --rm -it -p 8080:8080 ghcr.io/agent-infra/sandbox:latestEnvironment Variables
- PROXY_SERVER
- JWT_PUBLIC_KEY
- DNS_OVER_HTTPS_TEMPLATES
- WORKSPACE
- HOMEPAGE
- BROWSER_EXTRA_ARGS
- TZ
- WAIT_PORTS
Security Notes
The server is designed to execute arbitrary code (Python, Node.js, shell commands, browser automation), which is inherently high-risk. The recommended Docker run command uses `--security-opt seccomp=unconfined`, disabling a critical host security feature. This removes a layer of defense against container escapes and makes the host system less secure if the container is exploited. Running untrusted AI agent code within such an environment, especially with disabled seccomp, poses a significant security risk to the underlying host.
Similar Servers
1mcp
Orchestrates AI agent tool calls by executing JavaScript/TypeScript code in a WASM sandbox, reducing LLM context bloat and managing security policies.
kitwork
A lightweight workflow engine for automating tasks, orchestrating services, building serverless functions, and creating API endpoints via YAML.
kerneldev-mcp
An MCP server for intelligent Linux kernel configuration management, building, and filesystem regression testing, including advanced device management for performance optimization.
qoder-test-repo
This repository appears to be a placeholder or a test environment for an unknown application, lacking sufficient information to determine its specific function.