multikernel/sandlock
Lightweight process-based sandbox for Linux, no container, no VM, no root.
Sandlock helps operations engineers, security professionals, or developers run untrusted code on Linux without the overhead of full virtual machines or containers. It takes a program or script and runs it in a highly restricted environment, controlling its access to files, network resources, and system calls. The output is the result of the program's execution, safely isolated from your main system.
Available on PyPI.
Use this if you need to execute third-party plugins, user-submitted code, or potentially malicious scripts with strong security boundaries and minimal performance impact on a Linux system.
Not ideal if you need to run complex, long-lived applications that require their own dedicated operating system environments or a fully virtualized network stack.
Stars
16
Forks
3
Language
Python
License
Apache-2.0
Category
Last pushed
Mar 27, 2026
Commits (30d)
0
Dependencies
1
Get this data via API
curl "https://pt-edge.onrender.com/api/v1/quality/agents/multikernel/sandlock"
Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.
Featured in
Compare
Related agents
e2b-dev/E2B
Open-source, secure environment with real-world tools for enterprise-grade agents.
alibaba/OpenSandbox
OpenSandbox is a general-purpose sandbox platform for AI applications, offering multi-language...
e2b-dev/infra
Infrastructure that's powering E2B Cloud.
always-further/nono
Secure, kernel-enforced sandbox CLI and SDKs for AI agents. Capability-based isolation with...
boxlite-ai/boxlite
Sandboxes for every agent. Embeddable, stateful, snapshots, and hardware isolation.