run coding agents in localised airlocked microVMs
Summary
code-airlock is an open-source tool that runs AI coding agents inside disposable microVMs to avoid granting them direct access to the host filesystem. It clones the repo into a sandbox so agents can work freely, and after completion, users review and pull back only desired changes.
Similar Articles
Running my agents in a VPS
The author outlines a method for running AI coding agents on an isolated VPS to enable autonomous, asynchronous work without compromising their local machine's security.
AI coding agents need a local safety boundary before they touch files or run commands
Discussion on the need for local safety boundaries in AI coding agents to prevent unauthorized file access or command execution.
Coding Agent VMs on NixOS with microvm.nix
A technical guide on using microvm.nix on NixOS to create ephemeral VMs for safely running coding agents without access to personal files.
Give your agent its own computer (7 minute read)
LangChain introduces LangSmith Sandboxes, providing each AI agent with its own isolated computer environment for safe code execution, addressing security risks of running untrusted code in containers or locally.
We Reverse-Engineered Docker Sandbox's Undocumented MicroVM API
A team reverse-engineered Docker's undocumented MicroVM API used by Docker Sandboxes and built the open-source Sandbox Agent SDK to orchestrate AI coding agents inside microVMs for secure untrusted code execution.