> ## Documentation Index
> Fetch the complete documentation index at: https://docs.praison.ai/llms.txt
> Use this file to discover all available pages before exploring further.
# Sandboxed Agent
> Local agent loop with optional tool sandboxing for secure execution
Sandboxed agents keep the agent loop local while optionally running tools in secure sandboxes.
```mermaid theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
graph LR
subgraph "Sandboxed Agent Architecture"
A[👤 User Input] --> B[🧠 Local Agent Loop]
B --> C{🔧 Tool Execution}
C -->|Sandboxed| D[📦 E2B/Docker]
C -->|Local| E[🖥️ Host System]
D --> F[✅ Result]
E --> F
end
classDef input fill:#6366F1,stroke:#7C90A0,color:#fff
classDef loop fill:#8B0000,stroke:#7C90A0,color:#fff
classDef sandbox fill:#189AB4,stroke:#7C90A0,color:#fff
classDef local fill:#F59E0B,stroke:#7C90A0,color:#fff
classDef output fill:#10B981,stroke:#7C90A0,color:#fff
class A input
class B loop
class C,D sandbox
class E local
class F output
```
## Quick Start
Local loop, local tools - simplest configuration.
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
from praisonai import SandboxedAgent, SandboxedAgentConfig
from praisonaiagents import Agent
sandboxed = SandboxedAgent(
config=SandboxedAgentConfig(
model="gpt-4o",
system="You are a coding assistant.",
)
)
agent = Agent(name="coder", backend=sandboxed)
result = agent.start("Create a Python script that prints hello")
```
Local loop, tools run in E2B sandbox for security.
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
from praisonai import SandboxedAgent, SandboxedAgentConfig
sandboxed = SandboxedAgent(
compute="e2b", # Tools run in E2B, loop stays local
config=SandboxedAgentConfig(
model="gpt-4o",
system="You are a coding assistant.",
tools=["execute_command", "read_file", "write_file"],
packages={"pip": ["pandas", "numpy"]},
)
)
agent = Agent(name="secure_coder", backend=sandboxed)
result = agent.start("Analyze CSV data with pandas")
```
***
## How It Works
```mermaid theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
sequenceDiagram
participant User
participant AgentLoop
participant Tools
participant Sandbox
User->>AgentLoop: "Create Python script"
AgentLoop->>Tools: Determine tools needed
alt Tool sandboxing enabled
Tools->>Sandbox: Execute in E2B/Docker
Sandbox-->>Tools: Secure result
else Local execution
Tools->>Tools: Execute on host
end
Tools-->>AgentLoop: Tool output
AgentLoop-->>User: Generated script
```
| Component | Location | Purpose |
| ------------------ | ---------------- | ---------------------------------- |
| **Agent Loop** | Local | LLM calls, decision making, memory |
| **Tool Execution** | Local or Sandbox | Code execution, file operations |
| **Memory & State** | Local | Session persistence, context |
***
## Configuration Options
Full configuration options for sandboxed agents
### Essential Configuration
| Option | Type | Default | Description |
| ------------------ | ---------------------- | ---------------------------------------------------------------------------- | ------------------------------- |
| `model` | `str` | `"gpt-4o"` | LLM model to use |
| `system` | `str` | `"You are a helpful coding assistant."` | System prompt |
| `tools` | `List[str]` | `["execute_command", "read_file", "write_file", "list_files", "search_web"]` | Available tools |
| `packages` | `Dict[str, List[str]]` | `None` | Package dependencies |
| `networking` | `Dict[str, Any]` | `{"type": "unrestricted"}` | Network access rules |
| `host_packages_ok` | `bool` | `False` | Allow host package installation |
***
## Common Patterns
### Secure Development Environment
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
# Development with package isolation
sandboxed = SandboxedAgent(
compute="docker",
config=SandboxedAgentConfig(
model="claude-sonnet-4-6",
tools=["execute_command", "read_file", "write_file"],
packages={
"pip": ["requests", "beautifulsoup4"],
"npm": ["express", "lodash"]
},
networking={"type": "limited", "allowed_hosts": ["api.github.com"]}
)
)
```
### Local Development (No Sandbox)
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
# Fast iteration, local execution
sandboxed = SandboxedAgent(
config=SandboxedAgentConfig(
model="gpt-4o-mini",
host_packages_ok=True, # Allow host package installs
tools=["execute_command", "search_web"]
)
)
```
### Multi-Provider Flexibility
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
# Use with any LLM provider
sandboxed = SandboxedAgent(
config=SandboxedAgentConfig(
model="ollama/llama3.3", # Local model
system="You are a Python expert.",
tools=["execute_command"]
)
)
```
***
## Best Practices
Always use sandboxing when running untrusted code or installing packages:
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
# Secure: Tools run in sandbox
SandboxedAgent(compute="e2b", config=config)
# Insecure: Tools run on host
SandboxedAgent(config=config) # Only if you trust the code
```
* Use local execution for trusted environments and faster iteration
* Use sandbox for production or when handling user-generated code
* Consider model choice: `gpt-4o-mini` for speed, `claude-sonnet-4-6` for complex tasks
`LocalManagedAgent` and `SandboxedAgent` are the same class:
```python theme={"theme":{"light":"vitesse-light","dark":"vitesse-dark"}}
# Both imports work identically
from praisonai import LocalManagedAgent, LocalManagedConfig
from praisonai import SandboxedAgent, SandboxedAgentConfig
# Same functionality
old_agent = LocalManagedAgent(config=LocalManagedConfig())
new_agent = SandboxedAgent(config=SandboxedAgentConfig())
```
* **SandboxedAgent**: Agent loop stays local, only tools may be sandboxed
* **Managed Runtime**: Entire agent loop runs remotely (see [Managed Runtime Protocol](/docs/features/managed-runtime-protocol))
***
## Related
Remote agent runtime for full managed execution
Core concepts for managed agent backends