aicoolies logo
OpenSandbox logo
OpenSandbox logo

OpenSandbox

Enterprise-grade sandbox for AI agent code execution

open-sourceopen sourceupdated May 22, 2026
Visit Website →
Share

OpenSandbox is an open-source sandbox platform from Alibaba providing secure, isolated execution environments for AI coding agents. It supports Python, Java, JavaScript, and C# SDKs with a unified Sandbox Protocol for custom runtimes. Integrates with Docker and Kubernetes, offering isolation through gVisor, Kata Containers, and Firecracker microVMs with per-sandbox network controls.

OpenSandbox is Alibaba's open-source platform designed to give AI agents and coding assistants safe, isolated environments for executing code. Built on production-grade infrastructure powering internal Alibaba services, it provides multi-language SDKs covering Python, Java, Kotlin, JavaScript, TypeScript, and C# so developers can integrate sandboxed execution into any stack. The unified Sandbox Protocol ensures consistent behavior across runtimes while remaining extensible for custom environments and specialized workloads.

Security and isolation are central to OpenSandbox's architecture. It supports multiple isolation backends including gVisor for lightweight containerization, Kata Containers for hardware-level VM isolation, and Firecracker microVMs for maximum security boundaries. Network management features include per-sandbox egress controls and ingress gateways, allowing fine-grained control over what each sandbox can access. Built-in filesystem management, command execution, and code interpreter capabilities make it a complete runtime environment for autonomous coding agents.

For production deployments, OpenSandbox offers native Kubernetes integration with auto-scaling, resource quotas, and distributed execution across clusters. Listed in the CNCF Landscape and battle-tested across Alibaba's cloud infrastructure, the project has accumulated over 1,000 commits and 9,900 GitHub stars since its February 2026 release. The community has built integrations with popular AI frameworks including Claude Code, demonstrating the platform's flexibility as a foundation for building secure agent execution environments.

Pricing

Free and open source under Apache 2.0 license

Platforms

Docker, Kubernetes, Linux, macOS, Windows

Categories

Tags

Use Cases

Alternatives

Related Tools

Hermes Agent logo

Hermes Agent

Top Pick

Open-source AI agent framework with persistent memory, reusable skills, tools, and messaging gateways

Hermes Agent is an open-source AI agent framework with persistent memory, reusable skills, 40+ tools, cron jobs, and messaging gateways.

open-sourceOpen Source
MCP Context Forge logo

MCP Context Forge

IBM-backed ContextForge gateway for federating MCP, A2A, REST, and gRPC APIs

MCP Context Forge is IBM’s Apache-2.0 ContextForge project for operating a gateway, registry, and proxy across MCP servers, A2A agents, REST APIs, and gRPC services. It centralizes discovery, authentication, policy controls, federation, and observability, with deployment paths through PyPI, Docker, and Kubernetes.

open-sourceOpen Source

Sakana Fugu

Multi-agent model API that orchestrates frontier models behind one OpenAI-compatible endpoint

Sakana Fugu is a hosted model-provider API that exposes a learned multi-agent system as one OpenAI-compatible model. It dynamically routes coding, code review, research, and reasoning tasks across a frontier-model pool, with Fugu for lower-latency work and Fugu Ultra for harder workloads where answer quality matters more than cost or speed.

paidTelemetry
Mergify logo

Mergify

Merge queue, CI insights, flaky-test controls, and stacked pull requests for GitHub teams

Mergify is a pull request automation platform that keeps main branches green with merge queue batching, merge protections, CI Insights, flaky-test detection, and stacked pull requests. Its Stacks workflow turns commits on one local branch into focused PR chains, helping teams review large AI-generated or feature-heavy changes without losing queue safety.

freemium
Terrateam logo

Terrateam

Open-source GitOps automation for Terraform and OpenTofu pull requests

Terrateam is open-source GitOps infrastructure orchestration for Terraform and OpenTofu pull requests. It automates plans and applies in GitHub workflows, supports monorepos and many workspaces, and adds apply-only locks, OPA/Rego policy checks, cost and drift signals, and approval controls without forcing teams into a separate IaC platform.

freemiumOpen Source
Digger logo

Digger

Open-source IaC orchestration that runs Terraform plans and applies from pull request comments

Digger is an open-source infrastructure-as-code orchestration tool for running Terraform and OpenTofu plan/apply workflows from pull request comments. It uses the team’s existing VCS and CI runners instead of adding a separate runner fleet, supports GitHub, GitLab, and Azure DevOps style workflows, and stores PR-level locks and plan cache in the user’s cloud account.

open-sourceOpen SourceTelemetry