agentkernel 0.18.1

Run AI coding agents in secure, isolated microVMs
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46

# VS Code Server sandbox template
# Browser-based VS Code IDE using openvscode-server
# Access at http://localhost:3000 after starting

[sandbox]
name = "vscode"
base_image = "gitpod/openvscode-server:latest"
init_script = """
set -e
nohup /home/.openvscode-server/bin/openvscode-server --without-connection-token --host 0.0.0.0 --port 3000 >/tmp/vscode.log 2>&1 &
SERVER_PID=$!
sleep 1
kill -0 "$SERVER_PID" 2>/dev/null || { echo "openvscode-server failed to start; check /tmp/vscode.log" >&2; exit 1; }
for i in $(seq 1 30); do
  if wget -q -O /dev/null http://127.0.0.1:3000 2>/dev/null; then break; fi
  sleep 1
done
wget -q -O /dev/null http://127.0.0.1:3000 2>/dev/null || { echo "openvscode-server not ready after 30s; check /tmp/vscode.log" >&2; exit 1; }
"""

[resources]
vcpus = 2
memory_mb = 2048

[security]
profile = "moderate"
network = true
mount_cwd = true

[ports]
# VS Code web interface
3000 = 3000

[environment]
# Disable connection token for local dev (use --connection-token in production)
OPENVSCODE_SERVER_OPTIONS = "--without-connection-token --host 0.0.0.0"

[template]
description = "Browser-based VS Code IDE (openvscode-server)"
category = "Specialized"
help_text = """
How to use: Start the sandbox and open the mapped web port in your browser.
Example command: ls -la /workspace
Binaries available: openvscode-server
Services and ports: OpenVSCode web UI listens on 3000/tcp.
"""