Safely Execute Untrusted Code with Remote Sandboxes

Workspaces now support remote sandboxes. We’re launching with three providers: Daytona, E2B, and Blaxel, with more to follow.

With remote sandboxes, agents can install packages, run untrusted code, or spawn long-lived processes in their own isolated environment instead of on your application server. Each sandbox has its own filesystem, network, and process space. Agent workloads don’t compete for CPU or memory. And if an agent does something destructive, the blast radius is contained.