sandbox
AI Agents & AssistantsAn all‑in‑one Docker sandbox that unifies browser, shell, file system, VS Code, Jupyter and AI agent APIs in a single container for secure, zero‑configuration development.
Features
- Unified filesystem shared across browser, shell, VS Code and Jupyter components
- Multiple access interfaces: VNC desktop, WebSocket terminal, VS Code server, Jupyter notebook
- Secure sandboxed execution of Python and Node.js with safety guarantees
- Pre‑configured MCP (Model Context Protocol) servers for seamless AI agent integration
Recent releases
View all 18 releases →
v1.0.0.152
New feature
Notable features
- AIO Sandbox evaluation framework with reports
- Service disable capability via DISABLE_JUPYTER and DISABLE_CODE_SERVER
- X-Forwarded-Prefix header support in /v1/browser/info
v1.0.0.151
Mixed
Notable features
- Stateless /mcp requests eliminate the need for session initialization
- AIO_SKILLS_PATH environment variable for mounting and registering Skills at startup with automatic dependency parsing
Full changelog
- Fixed the issue where the homepage showed a 404 error after deploying AIO via a subpath.
- Added the
AIO_SKILLS_PATHenvironment variable to support mounting/registering Skills during service startup, while also parsing the installation commands for Skill dependencies. /mcpnow supports stateless requests, eliminating the need to callinitializefirst to establish a session.
- 修复通过子路径部署 AIO 后,首页 404 无法展示问题
- 新增
AIO_SKILLS_PATH环境变量,支持服务启动时挂载/注册 Skills,同时解析出 Skill 依赖安装命令。 /mcp支持无状态请求,无须先调用initialize来建立 Session
v1.0.0.150
Mixed
⚠ Upgrade required
- Chrome DevTools MCP tools now hidden by default; accessible via /mcp?search=chrome_devtools parameter
Notable features
- Claude Skills API: registration, mounting, retrieval, and deletion of custom skills in sandbox environment
- QR code generation support
Full changelog
- Optimized service startup time, reducing duration from 16s to 8s for 1c2g configuration, and from 11s to 4s for 2c4g configuration.
- The system now supports registration, mounting, retrieval, and deletion of
/v1/skills/*(API) Claude Skills. Users can upload and mount skills to the sandbox environment, integrating seamlessly with the existing Sandbox API. - The number of
/mcptools has been reduced (from 60 to 30). Methods from chrome-devtools-mcp are hidden by default but can be accessed via/mcp?search=chrome_devtools. - Added QR code generation qrcode dependency
- 优化服务启动时长,1c2g 配置耗时从 16s → 8s,2c4g 从 11s → 4s
- 新增
/v1/skills/*(API) Claude Skills 注册/挂载/获取/删除,支持注册、挂载、查询与删除,可将 Skills 上传/挂载到沙箱环境,与现有 Sandbox API 结合使用。 /mcptools 数量压缩(从 60 → 30) ,默认隐藏 chrome-devtools-mcp 工具方法,可通过/mcp?search=chrome_devtools使用;- 新增二维码生成 qrcode 依赖
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Install & Platforms
Install via
docker
pip
npm
go
