Did somewhat exactly that for apple container based sandbox - Coderunner[1]. You can use it to safely execute ai generated code via an MCP at http://coderunner.local:8222
A fun fact about apple containers[2], it's more isolated than docker containers as in it doesn't share the VM across all containers.
We are a sandbox provider company and we have a manus like agent deployed to "showcase" our capabilities. You can build one too -- maybe we will open-source it. For now, you can try it for free at https://showcase.instavm.io/
Not OP but I used to be totally into productivity hacks and being on top of things, goal setting, habit tracking, everything.
I stopped when I realized I could just... Not, and still thrive in my life. Simplify my systems.
I set myself a goal to workout every morning. Sometimes I miss it because my infant daughter decides to wake up at 4am instead of 5am. I give myself grace.
We eat largely the same meals every day. Some cooked protein, some cooked veggies, and a grain (rice or pasta).
And I just have a regular routine at work where I work on work and also do explorative education for myself during breaks. Look into different frameworks, patterns, etc.
I didn't need to meticulously plan out every second of my day, month, year. I just needed systems that made things predictable. Sometimes I drop the ball and it's fine. I get back on the horse when I can.
If you don't want to depend on cloud, have a mac, then you can run a sandbox locally on you mac. I have built an apple container (not docker) based sandbox to run arbitrary code - coderunner[1]. It is quite fast. And apple container provides one vm per container unlike docker on macos which shares the vm across all containers. Coderunner is good for processing sensitive docs locally in a secure sandbox.
In the coderunner read me it talks about reading files without sending them to the cloud. Does that mean there is something agentic going on? That’s more than I expect from something called a sandbox.
Also if it is agentic, why is it less cloud based than eg Claude code? Are there LLMs running locally?
I’m still not sure why sending files to the cloud is supposed to be a disadvantage of other approaches but not this one. Whether you run your LLM’s commands in this sandbox or not, content is going to the cloud if the LLM is in the cloud, and not going to the cloud if the LLM is local. It looks like the amount of data in the cloud is entirely orthogonal to whether you use coderunner.
I think their point is more that that architecture of this CodeRunner program isn't very clear.
It's unclear if it is a container manager, or comes with a LLM Agent built in. These are two separate concerns and the README makes it very unclear how to use one without the other.
I could say the same about any AI architecture. By definition cloud = cloud, local = not cloud. So when coderunner advertises ~ “more privacy because less cloud” I’m not sure what it is about coderunner that helps me get less cloud than anything else.
Yes. Infact you can serve each Skill as a tool exposed via MCP if you want. I did the same to make Skills work with Gemini CLI (or any other tool that supports MCP) while creating open-skills.
A fun fact about apple containers[2], it's more isolated than docker containers as in it doesn't share the VM across all containers.
1. https://github.com/instavm/coderunner
2. https://github.com/apple/container