Top 23 Rust Sandbox Projects

Sandbox

• Add a project

1. firecracker

   1 86 34,735 9.8 Rust

   Secure and fast microVMs for serverless computing.

   

   Project mention: NPM packages compromised, 271 antv, echarts-for-react, size-sensor, timeago | news.ycombinator.com | 2026-05-19

2. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

3. wasmtime

   2 205 18,102 9.9 Rust

   A lightweight WebAssembly runtime that is fast, secure, and standards-compliant

   

   Project mention: Show HN: WASM with JIT from a Swift SPM Package | news.ycombinator.com | 2026-06-04

   Hello HN,

   For my own needs I needed a powerful WASM engine that provides JIT acceleration, and use it from the convenience of the Swift Package Manager.

   So I ended up wrapping wasmtime (a Rust project) https://github.com/bytecodealliance/wasmtime/

   The SPM package does support most platforms swift supports, including mobile where JIT is simply not available.

   I'd be happy to hear from you if this is something you may be interested in using and what are your WASM use cases.

   Thanks :+1:

4. microsandbox

   3 7 6,426 8.3 Rust

   🧱 local-first and microVM-backed programmable sandboxes for AI agents

   

5. agent-os

   4 1 2,779 - Rust

   A portable open-source operating system for agents. ~6 ms coldstarts, 32x cheaper than sandboxes. Powered by WebAssembly and V8 isolates. (by rivet-dev)

   

   Project mention: AgentOS: A portable open-source operating system for agents | news.ycombinator.com | 2026-05-05

6. moltis

   5 3 2,714 9.9 Rust

   A secure persistent personal agent server in Rust. One binary, sandboxed execution, multi-provider LLMs, voice, memory, Telegram, WhatsApp, Discord, Teams, and MCP tools. Secure by design, runs on your hardware.

   

   Project mention: OpenClaw Is a Security Nightmare Dressed Up as a Daydream | news.ycombinator.com | 2026-03-22

   I'm on my 3rd "claw" variant (currently https://github.com/moltis-org/moltis). I had the same issues you had. Moltis is better (at the moment).

7. nono

   6 15 2,566 9.4 Rust

   Capability-based agent runtime with fine-grained policies . Brokering access directly within the agent's operating context, with zero setup and zero latency

   

   Project mention: Why TUIs Are Back | news.ycombinator.com | 2026-05-03

   Try an external sandboxing tool. When you need to adjust the sandbox, close the agent, launch it with the new params, and resume the session. It doesn't take long to arrive at a stable configuration; for me it's mostly about rw access to the CWD, read access to other local repos, and access to Nix. Other than that I can just use YOLO modes and not sweat it.

   I briefly evaluated a bunch (had an LLM make a list of those that satisfied some basic criteria, then visited READMEs and websites) and chose nono. No regrets: https://nono.sh/

8. zeroboot

   7 2 2,356 7.7 Rust

   Sub-millisecond VM sandboxes for AI agents via copy-on-write forking

   

   Project mention: Show HN: Smol machines – subsecond coldstart, portable virtual machines | news.ycombinator.com | 2026-04-17

   Could it be made even faster using some of the ideas from https://github.com/zerobootdev/zeroboot ?

9. wasmi

   8 9 2,122 9.4 Rust

   Efficient and versatile WebAssembly interpreter for embedded systems.

   

   Project mention: Smart Escrow Series #3: Security | dev.to | 2025-12-18

   Wasmi, the chosen runtime, has also been audited twice previously for blockchain use cases. Those audit reports are available publicly here: https://github.com/wasmi-labs/wasmi/tree/main/resources

10. kuasar

    9 5 1,425 7.2 Rust

    A multi-sandbox container runtime that provides cloud-native, all-scenario multiple sandbox container solutions.

    

11. birdcage

    10 13 214 4.9 Rust

    Cross-platform embeddable sandboxing

    

12. vibebox

    11 2 204 9.1 Rust

    Ultrafast CLI on Apple Silicon macOS for fast, sandboxed development and LLM agents.

    

    Project mention: Show HN: VibeBox – an ultrafast macOS sandbox for AI agents | news.ycombinator.com | 2026-02-08

13. LRVM

    12 2 102 7.9 Rust

    LRVM - A lightweight but powerful virtual machine runtime written in Rust :computer:

    

14. bouvet

    13 5 101 8.5 Rust

    Sandbox for Agents

    

    Project mention: Ask HN: Who wants to be hired? (May 2026) | news.ycombinator.com | 2026-05-01

    I'm KV, an upcoming grad, previously built rl envs + infra at verita-ai.com, hud.ai (YC W25), mecha.so and fileago.com

    And built some projects like: sandbox for agents with firecracker and rust [ https://github.com/vrn21/bouvet ] ; a key value store in rust[ https://github.com/hrefto/shorterdb ]; a serverless FaaS platform with WASM and rust [ https://github.com/orbit-serverless/server ]; a postgres extension with pgrx for full text search using tantivy, bm25, rust [ https://github.com/vrn21/pdb ]

15. hakoniwa

    14 0 75 9.4 Rust

    Process isolation for Linux using namespaces, resource limits, cgroups, landlock and seccomp.

    

16. trusted-remote-execution

    15 1 62 - Rust

    Sandboxed Rhai script execution engine with Cedar policy authorization for every system operation.

    

    Project mention: Rex is a secure script execution engine that uses Cedar policies | news.ycombinator.com | 2026-05-09

17. CubeSandbox

    16 7 54 - Rust

    Instant, Concurrent, Secure & Lightweight Sandbox for AI Agents.

    

    Project mention: How to run CubeSandbox on a cloud server? | news.ycombinator.com | 2026-04-30

18. jsrun

    17 2 52 8.4 Rust

    Modern JavaScript runtime in Python, powered by V8 and bridged by Rust

    

    Project mention: Python interpreter written in Rust for use by AI | news.ycombinator.com | 2026-02-06

    This is a really interesting take on the sandboxing problem. This reminds me of an experiment I worked on a while back (https://github.com/imfing/jsrun), which embedded V8 into Python to allow running JavaScript with tightly controlled access to the host environment. Similar in goal to run untrusted code in Python.

    I’m especially curious about where the Pydantic team wants to take Monty. The minimal-interpreter approach feels like a good starting point for AI workloads, but the long tail of Python semantics is brutal. There is a trade-off between keeping the surface area small (for security and predictability) and providing sufficient language capabilities to handle non-trivial snippets that LLMs generate to do complex tasks

19. Symbiont

    18 4 45 8.0 Rust

    Rust-native runtime for executing AI agents and tools under explicit policy, identity, and audit controls.

    

    Project mention: Symbiont – Typestate-enforced policy gates for AI agents (Rust) | news.ycombinator.com | 2026-04-22

20. railguard

    19 2 40 9.0 Rust

    Safe runtime for Claude Code, built to be yours.

    

    Project mention: Show HN: Railguard – A safer –dangerously-skip-permissions for Claude Code | news.ycombinator.com | 2026-03-17

21. agent-sandbox

    20 1 28 7.5 Rust

    A sandboxed execution environment for AI agents via WASM (by Parassharmaa)

    

    Project mention: Show HN: A sandboxed execution environment for AI agents via WASM | news.ycombinator.com | 2026-02-08

22. sandbox-shell

    21 1 23 8.3 Rust

    macOS Seatbelt sandbox CLI for developers. Protect credentials (SSH, AWS, GPG) from malicious npm packages, supply chain attacks, and untrusted build scripts. Deny-by-default filesystem isolation. Perfect for Claude Code agentic workflows with --dangerously-skip-permissions.

    

    Project mention: Show HN: Sx – macOS sandbox CLI for credential protection | news.ycombinator.com | 2026-02-04

23. nix-sandbox-mcp

    22 1 16 8.1 Rust

    Sandboxed code execution for LLMs, powered by Nix

    

    Project mention: Show HN: Nix-sandbox-MCP: Reproducible, isolated code execution for Claude/LLMs | news.ycombinator.com | 2026-02-09

24. firehazard

    23 1 11 8.2 Rust

    Unopinionated low level API bindings focused on soundness, safety, and stronger types over raw FFI.

    

Rust Sandbox related posts

• Show HN: WASM with JIT from a Swift SPM Package

  2 projects | news.ycombinator.com | 4 Jun 2026

• Show HN: Desktop GUI sandbox for AI agents and MCP servers

  1 project | news.ycombinator.com | 25 May 2026

• MCP servers, sandboxed — introducing ACT

  4 projects | dev.to | 8 May 2026

• How to run CubeSandbox on a cloud server?

  1 project | news.ycombinator.com | 30 Apr 2026

• How I cut my OpenAI Agent latency by replacing cloud sandboxes with a local microVM

  1 project | dev.to | 28 Apr 2026

• Buy a mac mini to Run OpenClaw? Anyone Can Get a Safer Sandbox in 1 Minute

  1 project | dev.to | 25 Apr 2026

• CubeSandbox: Instant, Concurrent, Secure and Lightweight Sandbox for AI Agents

  1 project | news.ycombinator.com | 23 Apr 2026
• A note from our sponsor - SaaSHub
  www.saashub.com | 5 Jun 2026

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Rust projects with our weekly report!