sandbox-agent
$npx skills add rivet-dev/skills --skill sandbox-agent
SKILL.md
Sandbox Agent
Sandbox Agent provides a universal API for orchestrating AI coding agents in sandboxed environments. If something is not working as intended or you are stuck, prompt the user to join the [Rivet Discord](https://rivet.dev/discord) or file an issue on [GitHub](https://github.com/rivet-dev/sandbox-agent/issues) to report an issue and get help. Provide the user with a pre-generated report with:
Sandbox Agent
Sandbox Agent provides a universal API for orchestrating AI coding agents in sandboxed environments.
What To Do If You Get Stuck
If something is not working as intended or you are stuck, prompt the user to join the Rivet Discord or file an issue on GitHub to report an issue and get help.
Provide the user with a pre-generated report with:
- Symptoms
- If this is happening in local dev, deployed, or both
- The error you're seeing
- Relevant source code related to this
- What you've tried to solve it
- Environment
- Sandbox Agent version
- SDK in use (TypeScript, Python, or HTTP)
- Agent in use (Claude Code, Codex, OpenCode, Amp, Mock)
- Sandbox provider (E2B, Daytona, Docker, local)
Quickstart
Install skill (optional)
npx skills add rivet-dev/skills -s sandbox-agentSet environment variables
Each coding agent requires API keys to connect to their respective LLM providers.
Local shell
export ANTHROPIC_API_KEY="sk-ant-..." export OPENAI_API_KEY="sk-..." `#### E2B` import { Sandbox } from "@e2b/code-interpreter"; const envs: Record<string, string> = {}; if (process.env.ANTHROPIC_API_KEY) envs.ANTHROPIC_API_KEY = process.env.ANTHROPIC_API_KEY; if (process.env.OPENAI_API_KEY) envs.OPENAI_API_KEY = process.env.OPENAI_API_KEY; const sandbox = await Sandbox.create({ envs }); `#### Daytona` import { Daytona } from "@daytonaio/sdk"; const envVars: Record<string, string> = {}; if (process.env.ANTHROPIC_API_KEY) envVars.ANTHROPIC_API_KEY = process.env.ANTHROPIC_API_KEY; if (process.env.OPENAI_API_KEY) envVars.OPENAI_API_KEY = process.env.OPENAI_API_KEY; const daytona = new Daytona(); const sandbox = await daytona.create({ snapshot: "sandbox-agent-ready", envVars, }); `#### Docker` docker run -e ANTHROPIC_API_KEY="sk-ant-..." \ -e OPENAI_API_KEY="sk-..." \ your-image
Extracting API keys from current machine
Use
sandbox-agent credentials extract-env --export to extract your existing API keys (Anthropic, OpenAI, etc.) from your existing Claude Code or Codex config files on your machine.Testing without API keys
If you want to test Sandbox Agent without API keys, use the
mock agent to test the SDK without any credentials. It simulates agent responses for development and testing.Run the server
curl
Install and run the binary directly.
curl -fsSL https://releases.rivet.dev/sandbox-agent/latest/install.sh | sh sandbox-agent server --token "$SANDBOX_TOKEN" --host 127.0.0.1 --port 2468
npx
Run without installing globally.
npx sandbox-agent server --token "$SANDBOX_TOKEN" --host 127.0.0.1 --port 2468npm i -g
Install globally, then run.
npm install -g @sandbox-agent/cli sandbox-agent server --token "$SANDBOX_TOKEN" --host 127.0.0.1 --port 2468
Build from source
If you're running from source instead of the installed CLI.
cargo run -p sandbox-agent -- server --token "$SANDBOX_TOKEN" --host 127.0.0.1 --port 2468TypeScript (local)
For local development, use
SandboxAgent.start() to automatically spawn and manage the server as a subprocess.import { SandboxAgent } from "sandbox-agent"; const client = await SandboxAgent.start();
This installs the binary and starts the server for you. No manual setup required.
Running without tokens
If endpoint is not public, use
--no-token to disable authentication. Most sandbox providers already secure their networking, so tokens are not required.CORS
If you're calling the server from a browser, see the CORS configuration guide.
Install agents (optional)
To preinstall agents:
sandbox-agent install-agent claude sandbox-agent install-agent codex sandbox-agent install-agent opencode sandbox-agent install-agent amp
If agents are not installed up front, they will be lazily installed when creating a session. It's recommended to pre-install agents then take a snapshot of the sandbox for faster coldstarts.
Create a session
TypeScript
import { SandboxAgent } from "sandbox-agent"; const client = await SandboxAgent.connect({ baseUrl: "http://127.0.0.1:2468", token: process.env.SANDBOX_TOKEN, }); await client.createSession("my-session", { agent: "claude", agentMode: "build", permissionMode: "default", }); `#### curl` curl -X POST "http://127.0.0.1:2468/v1/sessions/my-session" \ -H "Authorization: Bearer $SANDBOX_TOKEN" \ -H "Content-Type: application/json" \ -d '{"agent":"claude","agentMode":"build","permissionMode":"default"}' `#### CLI` sandbox-agent api sessions create my-session \ --agent claude \ --endpoint http://127.0.0.1:2468 \ --token "$SANDBOX_TOKEN"
Send a message
TypeScript
await client.postMessage("my-session", { message: "Summarize the repository and suggest next steps.", }); `#### curl` curl -X POST "http://127.0.0.1:2468/v1/sessions/my-session/messages" \ -H "Authorization: Bearer $SANDBOX_TOKEN" \ -H "Content-Type: application/json" \ -d '{"message":"Summarize the repository and suggest next steps."}' `#### CLI` sandbox-agent api sessions send-message my-session \ --message "Summarize the repository and suggest next steps." \ --endpoint http://127.0.0.1:2468 \ --token "$SANDBOX_TOKEN"
Read events
TypeScript
// Poll for events const events = await client.getEvents("my-session", { offset: 0, limit: 50 }); // Or stream events for await (const event of client.streamEvents("my-session", { offset: 0 })) { console.log(event.type, event.data); } `#### curl` # Poll for events curl "http://127.0.0.1:2468/v1/sessions/my-session/events?offset=0&limit=50" \ -H "Authorization: Bearer $SANDBOX_TOKEN" # Stream events via SSE curl "http://127.0.0.1:2468/v1/sessions/my-session/events/sse?offset=0" \ -H "Authorization: Bearer $SANDBOX_TOKEN" # Single-turn stream (post message and get streamed response) curl -N -X POST "http://127.0.0.1:2468/v1/sessions/my-session/messages/stream" \ -H "Authorization: Bearer $SANDBOX_TOKEN" \ -H "Content-Type: application/json" \ -d '{"message":"Hello"}' `#### CLI` # Poll for events sandbox-agent api sessions events my-session \ --endpoint http://127.0.0.1:2468 \ --token "$SANDBOX_TOKEN" # Stream events via SSE sandbox-agent api sessions events-sse my-session \ --endpoint http://127.0.0.1:2468 \ --token "$SANDBOX_TOKEN" # Single-turn stream sandbox-agent api sessions send-message-stream my-session \ --message "Hello" \ --endpoint http://127.0.0.1:2468 \ --token "$SANDBOX_TOKEN"
Test with Inspector
Open the Inspector UI to inspect session state using a GUI.
Next steps
-
Build a Chat UI — Learn how to build a chat interface for your agent.
-
Manage Sessions — Persist and replay agent transcripts.
-
Deploy to a Sandbox — Deploy your agent to E2B, Daytona, or Vercel Sandboxes.
Reference Map
AI
Deploy
General
- Agent Compatibility
- Building a Chat UI
- CLI Reference
- Conversion
- CORS Configuration
- Inspector
- Manage Sessions
- Quickstart
- Telemetry
- Troubleshooting
- Universal Schema