crabcage

Auditable sandbox for AI coding agents

crabcage is a sandbox for running AI coding agents with a full audit trail. Each agent runs inside a hardened Docker sandbox — dropped capabilities, read-only root, blocked access to sensitive paths like ~/.ssh and ~/.aws — behind a safety layer that classifies and catches destructive commands before they run and git guardrails that gate push, merge, and force-push. Every action is recorded in a cryptographically signed audit log, so agents can work autonomously without losing sight of what they changed. Built in TypeScript on Docker.

Source