Glossary / Security & Safety

Sandbox

A contained place where an agent or program can work without touching the real system directly.

Updated July 2, 2026

The value of a sandbox is that you can test, inspect, and learn before your changes matter to anyone. The agent can run commands, edit copies of files, or preview a site without touching production data or sending anything to the outside world.

Think about a practice kitchen. You can try a new recipe, spill flour, burn the first batch, and change the process three times. None of that reaches a paying customer until you decide it’s ready.

The point is separation, which is why sandboxes pair well with guardrails. The guardrail says what the agent can’t do. The sandbox gives allowed work a place to happen with less risk.

How it shows up

In coding work, a sandbox might be a local folder, a temporary worktree, a container, or a branch kept separate from production. In web work, localhost is often a sandbox because the site runs on your machine, not in front of customers. In data work, it might be a copy of a spreadsheet or a test database. If you want an agent to clean up a directory, have it work on a copy first. If you want it to update a website, test locally before pushing live.

Why you care

This matters because agents can act, not just answer, and a tool that can edit files or send messages is different from a chat answer. The fastest way to trust AI work is to watch it succeed somewhere contained before it touches the real thing.