| ▲ | jrvarela56 2 hours ago | |
Sandboxing is a solved problem, there are dozens of providers of firecracker instances to run your agent in. The problem to be solved is how do you define task-specific least privilege versions of your coding agent. | ||
| ▲ | sheremetyev 5 minutes ago | parent [-] | |
I'm running Codex/Claude in native macOS sandbox with access just to the project folder (plus read-only access to Git repo), and expand to other folders if necessary - https://github.com/sheremetyev/sandfence | ||