Secure Sandboxes for AI Agents
Run untrusted workloads through the standard Docker CLI. Use the base images you already know, keep sandboxes isolated, and watch activity as it happens.
$ export DOCKER_HOST=docker.factorysandbox.ai:2377
$ export DOCKER_CUSTOM_HEADERS='Authorization=Bearer fsb_live_...'
$ docker run alpine echo helloDocker-native sandboxes for agent workloads
FactorySandbox gives AI agents a safe place to run ordinary Docker workloads without changing your integration model.
Ephemeral Environments
Run each workload in a short-lived sandbox. Keep agent work separate from your application and infrastructure.
Secure Isolation
Every sandbox runs in complete isolation with no network access to your infrastructure. Execute untrusted code safely.
Docker CLI Workflow
Use docker run, docker ps, and docker rm against FactorySandbox's remote Docker endpoint.
Bring Any Base Image
Start from Alpine, Python, Node, Ubuntu, or the image your agent already expects to use.
Concurrency-Based Plans
Pick a plan by the number of sandboxes you need running at the same time. No per-second billing model.
Real-time Logs
Stream stdout, stderr, and custom events in real-time. Debug agent behavior with full execution traces.
How it works
Configure Docker once, then use the commands your agents and tooling already understand.
Point Docker at FactorySandbox
Export the FactorySandbox Docker endpoint and your API token in the terminal where your agent runs.
export DOCKER_HOST=docker.factorysandbox.ai:2377
export DOCKER_CUSTOM_HEADERS='Authorization=Bearer fsb_live_...'Run any image
Use normal Docker commands with public or private base images. FactorySandbox creates an isolated sandbox for the run.
docker run --rm alpine echo hello
docker run --rm python:3.12 python -VClean up
Remove containers with the Docker CLI when you are done. The dashboard shows recent sandbox activity and logs.
docker ps
docker rm -f <container-id>Ready to build with secure sandboxes?
Create an account, generate an API token, and point Docker at FactorySandbox.