OpenSandbox is a secure execution environment and runtime designed for running untrusted code and scripts generated by AI agents. It utilizes a containerized code execution engine and microVM-based isolation to protect host systems from malicious actions while providing isolated virtual environments.
The project features a sandbox server based on the Model Context Protocol to automate the creation and control of virtual workspaces. It supports the deployment of secure remote desktop hosts, including headless web browsers and editor instances, for automated interaction.
The system includes an isolated workload network gateway for managing egress routing and a vault mechanism for secure credential injection into outbound requests. Additional capabilities cover filesystem operations and a dedicated command-line interface for environment management and diagnostics.
