New top story on Hacker News: Show HN: Zerobox – Sandbox any command with file and network restrictions

Show HN: Zerobox – Sandbox any command with file and network restrictions
13 by afshinmeh | 5 comments on Hacker News.
I'm excited to introduce Zerobox, a cross-platform, single binary process sandboxing CLI written in Rust. It uses the sandboxing crates from the OpenAI Codex repo and adds additional functionalities like secret injection, SDK, etc. Watch the demo: https://www.youtube.com/watch?v=wZiPm9BOPCg Zerobox follows the same sandboxing policy as Deno which is deny by default. The only operation that the command can run is reading files, all writes and network I/O are blocked by default. No VMs, no Docker, no remote servers. Want to block reads to /etc? zerobox --deny-read=/etc -- cat /etc/passwd cat: /etc/passwd: Operation not permitted How it works: Zerobox wraps any commands/programs, runs an MITM proxy and uses the native sandboxing solutions on each operating system (e.g BubbleWrap on Linux) to run the given process in a sandbox. The MITM proxy has two jobs: blocking network calls and injecting credentials at the network level. Think of it this way, I want to inject "Bearer OPENAI_API_KEY" but I don't want my sandboxed command to know about it, Zerobox does that by replacing "OPENAI_API_KEY" with a placeholder, then replaces it when the actual outbound network call is made, see this example: zerobox --secret OPENAI_API_KEY=$OPENAI_API_KEY --secret-host OPENAI_API_KEY=api.openai.com -- bun agent.ts Zerobox is different than other sandboxing solutions in the sense that it would allow you to easily sandbox any commands locally and it works the same on all platforms. I've been exploring different sandboxing solutions, including Firecracker VMs locally, and this is the closest I was able to get when it comes to sandboxing commands locally. The next thing I'm exploring is `zerobox claude` or `zerobox openclaw` which would wrap the entire agent and preload the correct policy profiles. I'd love to hear your feedback, especially if you are running AI Agents (e.g. OpenClaw), MCPs, AI Tools locally.

New top story on Hacker News: Parrots pack twice as many neurons as primate brains of the same mass

Parrots pack twice as many neurons as primate brains of the same mass
3 by DiffTheEnder | 1 comments on Hacker News.

New top story on Hacker News: Kyushu Railway Company Train Varieties

Kyushu Railway Company Train Varieties
3 by NaOH | 0 comments on Hacker News.

New top story on Hacker News: The Cloud: The dystopian book that changed Germany (2022)

The Cloud: The dystopian book that changed Germany (2022)
7 by leonidasrup | 4 comments on Hacker News.

New top story on Hacker News: The Many Roots of Our Suffering: Reflections on Robert Trivers (1943–2026)

The Many Roots of Our Suffering: Reflections on Robert Trivers (1943–2026)
4 by Petiver | 0 comments on Hacker News.

New top story on Hacker News: OpenYak – An open-source Cowork that runs any model and owns your filesystem

OpenYak – An open-source Cowork that runs any model and owns your filesystem
34 by wangzhangwu | 8 comments on Hacker News.

New top story on Hacker News: Undroidwish – a single-file, batteries-included Tcl/Tk binary for many platforms

Undroidwish – a single-file, batteries-included Tcl/Tk binary for many platforms
11 by smartmic | 1 comments on Hacker News.