The sandbox is an isolated Linux execution environment attached to each session.

System Specifications

PropertyValue
Operating SystemUbuntu Linux (x86-64)
User Accountsandbox with passwordless sudo
Default Resources2 vCPU, 7 GB RAM
Container TypeFirecracker microVM
Public Port8080 only
Working Directory/home/sandbox/

Lifecycle

Startup

A fresh Ubuntu environment starts on first terminal command in a session.

Auto-Termination

SettingTimeout
Default1 hour after last execution
Persist Sandbox enabled24 hours after last execution
Session state (files, memories) is preserved via checkpointing. Only the execution environment terminates.

Resume

On next command after termination: a new sandbox starts, files restore from session state, previously installed packages require reinstallation, environment variables require reactivation.

Manual Reset

The /reset-sandbox command forces immediate termination with a confirmation prompt.

Default Software

CategoryAvailable
PythonSystem Python 3.x, default virtualenv at ./user_venv
CompilersGCC, system development tools
Package Managersapt-get (system), pip (Python), npm/pnpm (JavaScript)

File Synchronization

Working Directory

Session files mount to /home/sandbox/. A file at example/test.txt in the session maps to /home/sandbox/example/test.txt.

Synchronized File Types

To sandbox: All tracked file changes sync immediately (eager synchronization). From sandbox to session:
TypeSynchronized
Text-based source codeYes
Configuration files (JSON, YAML, TOML)Yes
Documentation (Markdown, text)Yes
PNG, JPG, WebP, GIF, PDFYes
Build artifactsNo
Dependencies (node_modules, .venv)No
Large binariesNo
Temporary filesNo
Log directoriesNo

Synchronization Control

.gitignore rules are respected. Files outside /home/sandbox/ are not synchronized.

Live Reload

Running servers see file changes instantly via eager synchronization.

Network

Inbound Access

PortAccess
8080Public via preview URL
All othersInternal only (localhost)
Preview URL format: \{hash\}.preview.igent.ai. Available as $PUBLIC_HOSTNAME environment variable.

Outbound Access

Full internet access: HTTPS, databases, APIs, external services.

Terminal Windows

PropertyBehavior
CreationOn first use
PersistenceEnvironment variables and working directory persist across commands in same window
Auto-closeAfter 600 seconds of inactivity
ReuseRunning a new command cancels the previous command in that window

Custom Sandbox Types

Custom Resources

The cpu_count parameter accepts values 1-16. The memory_gb parameter accepts values 1-64. Custom resource sandboxes run Ubuntu.

GPU

The gpu_type parameter accepts: A10G, A100, T4, L4, H100. The gpu_count parameter accepts values 1-8. GPU parameters cannot be combined with SSH parameters.

Privileged

The privileged parameter, when true, enables Docker and containerization. Privileged sandboxes run Ubuntu. The privileged parameter cannot be combined with SSH or GPU parameters.

Docker Image

The docker_image parameter (e.g., python:3.11) runs commands inside the specified container. Requires privileged=true. Files are mounted at /workspace.

SSH

The ssh_connection parameter (format: username@host:port) and ssh_private_key parameter connect to external systems. SSH parameters cannot be combined with resource or GPU parameters.

Constraints

ConstraintDetail
No nested containersDocker is unavailable in the default sandbox; privileged mode is required
No rebootRebooting terminates the session
No global process killSupport services run alongside user processes
Single public portOnly 8080 is exposed publicly
Ephemeral stateInstalled packages, environment variables, and running processes do not persist across sandbox restarts

Environment Variables

System Variables

VariableDescription
PUBLIC_HOSTNAMEPublic preview hostname for the sandbox

Activated Secrets

Secrets activated via the /secrets command become environment variables. They are session-scoped, never logged, and automatically cleaned up on session end.