Developer Tools●●●Banger
Capsule Bash – Sandboxed Bash for Agents
Returns exact filesystem diffs per command, solving the silent-failure problem in agent loops.
Big BrainSolve My ProblemZero to One
mavdol04
331mo ago
Back to browse
GitHub Repository
Embedded bash sandbox for agents, inspired by gVisor
189 starsZig
BVisor – An Embedded Bash Sandbox, 2ms Boot, Written in Zig
by edunteman·Feb 23, 2026·24 points·9 comments
AI Analysis
●●●BangerWizardryBig Brain
gVisor-inspired—2ms userspace sandbox beats containers for ephemeral agent tasks.
Strengths
- •Seccomp user notifier + copy-on-write filesystem isolation achieves strong security without VM/container overhead—novel architecture for this use case
- •2ms boot time is orders of magnitude faster than Docker/Kubernetes for agent workloads; native speed execution with minor syscall overhead
- •TypeScript SDK + npm packaging lowers friction vs. pure syscall-level libraries; Python SDK planned
Weaknesses
- •PoC status (early, Linux-only)—Windows/macOS support missing; documentation is sparse on threat model or production readiness
- •No evidence of hardening against timing attacks or advanced seccomp bypasses—"should not be used in production" is honest but limits immediate impact
Category
Target Audience
AI agents executing untrusted code; developers building safe CLI tools; LLM-powered automation platforms
Similar To
gVisor · Docker · Kubernetes
Post Description
bVisor is an SDK and runtime for safely executing bash commands directly on your host machine. We built it on the belief that "sandbox" doesn't need to mean shipping off to remote sandbox products, or spinning up local VMs / containers. Sometimes, you just want to run that bash command locally.
bVisor boots a sandbox from user-space without special permissions, powered by seccomp user notifier. This allows us to intercept syscalls from guest processes and selectively virtualize them to block privilege escalation, isolate process visibility, and keep filesystem changes isolated per sandbox (copy-on-write). Sandboxes boot in 2ms, and can run arbitrary binaries at native speed (with minor overhead per syscall). This approach is heavily inspired by Google's gVisor.
As of today, bVisor supports most filesystem operations, basic file I/O, and can run complex binaries such as python interpreters. It is packaged as a Typescript SDK and installable via npm. There's much to still implement (such as outbound network access to support 'curl', shipping a python SDK, etc), but we wanted to share it here for feedback and anyone who'd be able to make use of the current featureset!
Similar Projects
AI/ML●●Solid
On-device embedding and vector search for Apple Devices, built in Zig
Manually converting PyTorch models to CoreML so you don't have to call cloud APIs.
Niche GemWizardry
mcdow
203mo ago
Infrastructure●●●●Gem
AionOS – self-healing microkernel in Zig (boots on real hardware)
AI daemon hot-patches crashes in 2 seconds—nobody's done self-healing OS like this.
WizardryZero to OneBold Bet
rodancz
6118d ago
Developer Tools●●Solid
Autolang-A C++ VM with 2ms startup time and arena-restart memory model
2ms startup beats Lua, but 2x-5x slower at runtime—unfocused tradeoff.
Big BrainNiche Gem
hoansdz
203mo ago
AI/ML●●●Banger
NervOS – Sandbox for AI Agents Using Firecracker MicroVMs
Hardware-isolated VM sandbox for Claude, 2-second boot, no Docker complexity.
Zero to OneWizardrySolve My Problem
ashishch111
103mo ago
Security●●●Banger
Zero-allocation embedded security in Rust (fits in 256KB Flash)
Sub-microsecond CAN frame detection with zero heap allocation in 122K lines of Rust.
WizardryBig BrainNiche Gem
victor-craton
401mo ago