Skip to content

microsandbox

v0.4.6 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 21d Virtualization
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

agents ai container docker linux macos
+12 more
mcp nodejs orchestration rust sandbox sandboxing security self-hosted typescript virtualization vm windows

Affected surfaces

auth

ReleasePort's take

Light signal
editorial:auto 13d

Version v0.4.6 fixes sandbox SIGKILL handling when the replace grace period is exceeded and improves delivery of large stdin payloads.

Why it matters: Patch to v0.4.6 immediately if your workload relies on long‑running sandboxed processes or transmits large stdin streams; failures can now be avoided.

Summary

AI summary

Fixes SIGKILL handling when replace exceeds grace period and improves stdin large payload delivery.

Changes in this release

Feature Medium

Basic auth and encoded/split bypass attempts detected

Basic auth and encoded/split bypass attempts detected

Source: llm_adapter@2026-05-21

Confidence: high
Feature Medium

DNS queries subject to egress policy

DNS queries subject to egress policy

Source: llm_adapter@2026-05-21

Confidence: high
Feature Medium

Docker-in-sandbox recipe added to documentation

Docker-in-sandbox recipe added to documentation

Source: llm_adapter@2026-05-21

Confidence: low
Feature Medium

MSB_HOME environment variable honored in prebuilt downloads

MSB_HOME environment variable honored in prebuilt downloads

Source: llm_adapter@2026-05-21

Confidence: low
Dependency Medium

Hickory bumped to 0.26.0-alpha.1

Hickory bumped to 0.26.0-alpha.1

Source: llm_adapter@2026-05-21

Confidence: low
Dependency Medium

Rand bumped to 0.8.6

Rand bumped to 0.8.6

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

Prebuilt downloads trust system certificates

Prebuilt downloads trust system certificates

Source: llm_adapter@2026-05-21

Confidence: high
Bugfix Medium

Image digest path components are validated

Image digest path components are validated

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

Sandbox sends SIGKILL if replace grace period exceeded

Sandbox sends SIGKILL if replace grace period exceeded

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

Large stdin payloads delivered; broken-pipe errors surfaced

Large stdin payloads delivered; broken-pipe errors surfaced

Source: llm_adapter@2026-05-21

Confidence: low
Bugfix Medium

SDK path bridge supports bun runtime

SDK path bridge supports bun runtime

Source: llm_adapter@2026-05-21

Confidence: low
Full changelog

What's Changed

  • fix(ci): make rm in mcp-publish idempotent by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/680
  • docs(recipes): add docker-in-sandbox recipe by @appcypher in https://github.com/superradcompany/microsandbox/pull/684
  • deps: bump hickory to 0.26.0-alpha.1 and rand to 0.8.6 by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/690
  • fix(sandbox): SIGKILL if replace exceeds grace period by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/697
  • fix(sdk): bun-compatible msb path bridge by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/693
  • feat(secrets): handle Basic auth + detect encoded/split bypasses by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/702
  • feat(build): honor MSB_HOME in prebuilt download path by @nuri-yoo in https://github.com/superradcompany/microsandbox/pull/704
  • chore(sandbox): rename replace_grace for clarity by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/710
  • chore(release): automate version bumping by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/711
  • feat(network/dns): subject dns queries to egress policy by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/694
  • fix(stdin): deliver large payloads and surface broken-pipe errors by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/706
  • fix(image): validate digest path components by @immanuwell in https://github.com/superradcompany/microsandbox/pull/712
  • fix: trust system certs for prebuilt downloads by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/713
  • chore(release): bump version to 0.4.6 by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/714
  • chore(release): bump mcp submodule to 0.4.6 by @toksdotdev in https://github.com/superradcompany/microsandbox/pull/715

New Contributors

  • @nuri-yoo made their first contribution in https://github.com/superradcompany/microsandbox/pull/704
  • @immanuwell made their first contribution in https://github.com/superradcompany/microsandbox/pull/712

Full Changelog: https://github.com/superradcompany/microsandbox/compare/v0.4.5...v0.4.6

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track microsandbox

Get notified when new releases ship.

Sign up free

About microsandbox

secure, local, cross-platform and programmable sandboxes for AI agents

All releases →

Related context

Beta — feedback welcome: [email protected]