Security●●Solid
Nixcage – Sandbox AI coding agents per project with Nix and direnv
direnv auto-activation with bubblewrap sandboxing isolates agents per project.
Big BrainNiche Gem
hamidr
103mo ago
Back to browse
GitHub Repository
Lightweight and declarative sandboxing for AI agents on Linux and macOS using Nix.
101 starsNix
Sandboxing Agents on macOS and Linux with Nix
by peacefulPanda·Mar 10, 2026·1 point·1 comment
AI Analysis
●●SolidSolve My ProblemBig Brain
Sandbox Claude Code and Aider before they read your SSH keys.
Strengths
- •Uses bubblewrap on Linux and sandbox-exec on macOS—native OS primitives, not containers.
- •Declarative Nix flakes integration means reproducible sandbox configs across teams.
- •Blocks git push while allowing local commits—clever guardrail for agent-generated code.
Weaknesses
- •Requires Nix knowledge, which limits adoption to an already niche developer audience.
- •No Windows support, and setup requires manual flake configuration for each agent.
Category
Target Audience
Developers using CLI-based AI coding agents
Similar To
Firecracker · gVisor · Docker
Similar Projects
Security●●●Banger
Userland local agent sandbox with real-time network control dashboard
Kernel-enforced agent sandboxing that blocks .env access without container overhead.
WizardrySolve My ProblemZero to One
cowpig
713mo ago
Security●●●Banger
Ash, an Agent Sandbox for Mac
macOS Endpoint Security frameworks beat sandbox-exec for AI agent isolation.
WizardrySolve My Problem
amsha
16153mo ago
Developer Tools●●●Banger
Minimal native macOS sandbox for Claude and Codex
macOS sandbox-exec guards AI agents so rm -rf can't wreck your whole machine.
Big BrainNiche GemSolve My Problem
sheremetyev
2010d ago
Security●●●Banger
Hazmat – I made unrestricted Claude Code safe on macOS
TLA+ verified sandbox makes --dangerously-skip-permissions safe for Claude Code and other agents on macOS.
WizardrySolve My ProblemShip It
dredozubov
112mo ago
Developer Tools●●●Banger
Sandbox AI Agents with Full macOS
Full macOS isolation beats containers for agents needing GUI apps and native tools.
WizardryBold BetSlick
CarolineWang
102mo ago