embeddable · stateful · snapshots · hardware isolationembeddable · stateful · snapshots

Sandboxes for
every agent

The SQLite of sandboxing — embeddable, stateful micro-VMs with snapshots and hardware isolation. Just import and run.

Read Docs

terminal

features

Built for developers
who need control

Everything you need to run untrusted code safely.

Embeddable

The SQLite of sandboxing. A single importable library — no cloud accounts, no daemons, no root. Just import and run.

Stateful

Environments persist across sessions. Install packages, create files, configure once — come back hours later and everything is still there.

Snapshots

Checkpoint before risky operations, rollback instantly. Fork environments for parallel exploration. Clone identical sandboxes for batch processing.

Hardware Isolation

Each sandbox runs in its own micro-VM with a dedicated Linux kernel. Not containers — true hardware-level isolation via KVM or Hypervisor.framework.

sdk

Three lines to sandbox

Native support for Python, Node.js, and Rust.

python

import asyncio
import boxlite

async def main():
    async with boxlite.SimpleBox(image="python:slim") as box:
        # Execute code safely
        result = await box.exec("python", "-c", "print(2 + 2)")
        print(result.stdout)  # "4"

        # Install packages persistently
        await box.exec("pip", "install", "numpy")
        result = await box.exec(
            "python", "-c",
            "import numpy as np; print(np.random.rand(3))"
        )
        print(result.stdout)

asyncio.run(main())

architecture

How it works

BoxLite runs real microVMs on your machine — each with its own Linux kernel.

your_machine

Your App / AI Agent

Python, Node.js, Rust, C

SDK call

boxlite

Hypervisor

KVM / Hypervisor.framework

OCI Images

Prebuilt or custom rootfs

spawns

microVM 1

Linux Kernel

Guest Agent

Isolated Network

microVM 2

Linux Kernel

Guest Agent

Isolated Network

microVM 3

Linux Kernel

Guest Agent

Isolated Network

comparison

Local vs Cloud

Keep your data local. Skip the cloud bill.

	BoxLite	Cloud Sandboxes
Runs on	Your machine	Remote servers
Latency	< 50ms boot	200ms+ network round-trip
State	Persistent across restarts	Ephemeral by default
Snapshots	Checkpoint, fork & clone	Rebuild from scratch
Isolation	Hardware-level (microVM)	Container-level
Cost	Free & open source	Per-minute billing
Privacy	Data never leaves your machine	Data sent to third party

Runs on

Your machine

vs Remote servers

Latency

< 50ms boot

vs 200ms+ network round-trip

State

Persistent across restarts

vs Ephemeral by default

Snapshots

Checkpoint, fork & clone

vs Rebuild from scratch

Isolation

Hardware-level (microVM)

vs Container-level

Cost

Free & open source

vs Per-minute billing

Privacy

Data never leaves your machine

vs Data sent to third party

use cases

One runtime, every workload

From AI agents to browser automation — one sandbox runtime for everything.

AI Agent Sandboxing

Hardware-isolated micro-VMs keep untrusted code fully contained. Checkpoint before risky operations, rollback on failure — agents can explore fearlessly.

Code Execution

Persistent state across sessions means packages and files survive restarts. Fork snapshots for parallel exploration — perfect for notebooks, REPLs, and build systems.

Browser Automation

Just import the library and run — each automation task gets its own micro-VM with a dedicated kernel, network isolation, and resource limits.

Get started in 30 seconds

Install BoxLite and spin up your first sandbox.

Read the Docs GitHub

Sandboxes forevery agent

Built for developerswho need control

Embeddable

Stateful

Snapshots

Hardware Isolation

Three lines to sandbox

How it works

Local vs Cloud

One runtime, every workload

AI Agent Sandboxing

Code Execution

Browser Automation

Get started in 30 seconds

Sandboxes for
every agent

Built for developers
who need control