Philipp Schmid · Nov 8, 2025 · 1:27 PM UTC

Philipp Schmid · Nov 8, 2025 · 1:27 PM UTC

Philipp Schmid

Philipp Schmid

@_philschmid

12h

TIL: Claude Code local sandbox environment is open-source. > native OS sandboxing primitives (sandbox-exec on macOS, bubblewrap on Linux) and proxy-based network filtering. It can be used to sandbox the behaviour of agents, local MCP servers, bash commands and arbitrary processes.

Nov 8, 2025 · 1:27 PM UTC

490

Carlos A. Wong · Nov 8, 2025 · 2:25 PM UTC

Carlos A. Wong

@Carlos_A_Wong

11h

Replying to @_philschmid

For those interested github.com/anthropic-experim…

GitHub - anthropic-experimental/sandbox-runtime: A lightweight sandboxing tool for enforcing...

A lightweight sandboxing tool for enforcing filesystem and network restrictions on arbitrary processes at the OS level, without requiring a container. - anthropic-experimental/sandbox-runtime

github.com

Igor · Nov 8, 2025 · 5:12 PM UTC

Igor

@igorklepacki

Replying to @_philschmid

it’s funny because sandbox-exec has been marked as deprecated for a looong time and it’s going nowhere and everyone is using it on macOS

Karim C · Nov 8, 2025 · 6:14 PM UTC

Karim C

@BrandGrowthOS

Replying to @_philschmid

Been looking for this. Sandboxing matters when agents execute bash commands - saves debugging weird permission failures.

Gaurav Bhatia · Nov 8, 2025 · 5:00 PM UTC

Gaurav Bhatia

@heygauravbhatia

Replying to @_philschmid

their approach to using native os primitives for sandboxing is really effective, also worth noting that it reduces the overhead of traditional virtualization methods.