car-sandbox 0.15.1

Sandboxed execution surface for CAR — process isolation primitives for untrusted agent steps
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23

//! Sandboxed execution environment for CAR agents.
//!
//! Provides `SandboxExecutor`, a `ToolExecutor` implementation that runs
//! tool commands inside an isolated Docker container. The container has:
//!
//! - Full filesystem access to a mounted working directory
//! - No safety policy restrictions (the isolation IS the safety)
//! - Ability to run tests, install deps, and iterate freely
//! - Automatic cleanup on drop
//!
//! Usage from Tokhn:
//! ```ignore
//! let sandbox = SandboxExecutor::new(working_dir, image).await?;
//! let runtime = Runtime::new().with_executor(Arc::new(sandbox));
//! ```

mod executor;
pub mod preflight;

pub use executor::{SandboxConfig, SandboxError, SandboxExecutor};
pub use preflight::{
    filter_sensitive_env, preflight, PreflightResult, SandboxPolicy, SENSITIVE_ENV_VARS,
};