AGENT_SANDBOXES

THE INFRASTRUCTURE OF AGENCY

dax
dax
@thdxr

guys i had a one of a kind idea for a business sandboxes for coding agents

6:20 PM · Apr 7, 2026

859

Have we reached peak agent sandbox yet? YC batches, cloud giants, indie devs, and probably some guy's mom are all building them.

Agent Sandboxes TL;DR

Isolation Tech TL;DR

This page covers every provider we could find, split into three categories:

  • Sandbox-native companies - it's their whole product
  • Platforms with sandboxes - sandboxes alongside other infrastructure
  • Open-source / self-hosted / local - projects you can run yourself, plus proprietary local tools clearly marked as such

Provider Overview

Sandbox-native providers

Daytona

ISOLATION
OCI Containers

Kata / gVisor optional

FUNDING
$31M
PRICING MODEL
Usage-based

AGPL-3.0 self-host

E2B

ISOLATION
Firecracker microVMs
FUNDING
$35M
PRICING MODEL
Usage + Plan

Blaxel

Spring 2025 Y
ISOLATION
Firecracker microVMs
FUNDING
$7.8M
PRICING MODEL
Usage-based

Runloop

ISOLATION
MicroVMs
FUNDING
$7M
PRICING MODEL
Usage + Plan

Freestyle

Summer 2024 Y
ISOLATION
KVM VMs
FUNDING
$M+
PRICING MODEL
Usage + Plan

Terminal Use

Winter 2026 Y
ISOLATION
Containers
FUNDING
$625K
PRICING MODEL
Plan-based
Celesto AI

Celesto AI

ISOLATION
Firecracker microVMs
FUNDING
N/A
PRICING MODEL
Plan-based

Platforms with sandboxes

Modal

ISOLATION
gVisor
FUNDING
$111M
PRICING MODEL
Usage + Plan

Sprites

by Fly.io

ISOLATION
Firecracker microVMs
FUNDING
$111M
PRICING MODEL
Usage-based

Northflank

ISOLATION
Kata Containers

gVisor fallback

FUNDING
$24.9M
PRICING MODEL
Usage-based

Namespace

ISOLATION
Containers
FUNDING
$23M
PRICING MODEL
Usage-based

Claude Managed Agents

by Anthropic

ISOLATION
Containers
FUNDING
$67.3B
PRICING MODEL
Usage-based

$0.08/session-hr + tokens

Sandbox

by Vercel

ISOLATION
Firecracker microVMs
FUNDING
$863M
PRICING MODEL
Usage + Plan

Sandboxes

by Cloudflare

ISOLATION
Containers + V8 Isolates
FUNDING
Public
PRICING MODEL
Usage-based

Open source / Self-hosted / Local

Daytona

ISOLATION
OCI Containers

Kata / gVisor optional

GITHUB STARS
⭐ -
LICENSE
AGPL-3.0

OpenSandbox

by Alibaba

ISOLATION
OCI Containers

Kata / gVisor / Firecracker optional

GITHUB STARS
⭐ -
LICENSE
Apache 2.0

Microsandbox

Fall 2026 Y
ISOLATION
libkrun microVMs
GITHUB STARS
⭐ -
LICENSE
Apache 2.0
OpenShell

OpenShell

by NVIDIA

ISOLATION
Containers + MicroVMs

Landlock / seccomp / policy proxy

GITHUB STARS
⭐ -
LICENSE
Apache 2.0
SmolVM

SmolVM

by Smol Machines

ISOLATION
libkrun (KVM / Hypervisor.framework)
GITHUB STARS
⭐ -
LICENSE
Apache 2.0
Zeroboot

Zeroboot

ISOLATION
Firecracker + KVM
GITHUB STARS
⭐ -
LICENSE
Apache 2.0

Agent Safehouse

ISOLATION
macOS sandbox-exec

Seatbelt profiles

GITHUB STARS
⭐ -
LICENSE
Apache 2.0
Gondolin

Gondolin

by Earendil Works

ISOLATION
QEMU microVMs

krun experimental

GITHUB STARS
⭐ -
LICENSE
Apache 2.0

E2B

ISOLATION
Firecracker microVMs
GITHUB STARS
⭐ -
LICENSE
Apache 2.0
SmolVM (Celesto)

SmolVM

by Celesto

ISOLATION
Firecracker microVMs
GITHUB STARS
⭐ -
LICENSE
Apache 2.0
LIFO

Lifo

ISOLATION
Browser (V8/Web APIs)
GITHUB STARS
⭐ -
LICENSE
MIT

Sandboxes

by Docker

ISOLATION
MicroVMs
GITHUB STARS
⭐ -
PRICING MODEL
Proprietary

Closed-source release repo