Deno Sandbox
10 hours ago
- #Deno
- #Sandbox
- #Security
- Deno Sandbox is designed to run untrusted code, especially LLM-generated code, securely by providing lightweight Linux microVMs.
- It offers defense-in-depth security, including network egress control and secret protection, where secrets only materialize for approved outbound requests.
- Sandboxes can be created programmatically via JavaScript or Python SDKs, boot in under a second, and support interaction via SSH, HTTP, or VS Code.
- Features include ephemeral sandboxes by default, with options for persistence through volumes and snapshots for pre-installed toolchains.
- Deno Sandbox allows direct deployment to Deno Deploy without rebuilding, streamlining the transition from development to production.
- Pricing is usage-based, with competitive rates for compute time, memory, and storage, included in Deno Deploy plans.
- Available in beta, Deno Sandbox targets AI agents, secure plugin systems, ephemeral CI runners, and customer-supplied code scenarios.