Multi-language MCP (Model Context Protocol) server providing isolated sandbox environments for secure code execution. Uses runc/OCI containers for process isolation and supports Python, JavaScript/TypeScript, Go, Rust, Java, C++, C#, and Shell.
- Secure containerized code execution with runc/OCI
- Multi-language support with language-specific handlers
- Resource monitoring and limits (CPU, memory, disk)
- SQLite-based persistence for sandbox state
- MCP protocol over stdio or HTTP/WebSocket
- Configurable security policies and audit logging
Build and run:
make build
make runGenerate configuration:
make configRun tests:
make test- Getting Started - Setup and basic usage
- API Documentation - Tool reference
- Guides - Usage guides and tutorials
- Languages - Language-specific capabilities
- Production Deployment - Deployment guide
- Operations Runbook - Operations and monitoring
Server configuration is managed through config/mcp-sandboxd.yaml. See Getting Started for configuration options.
- Go 1.24+
- runc container runtime
- Linux with container support
MIT