I always thought Docker/Podman is a bit overkill for this kind of thing. On Linu... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		globular-toast 70 days ago \| parent \| context \| favorite \| on: Show HN: Yolobox – Run AI coding agents with full ... I always thought Docker/Podman is a bit overkill for this kind of thing. On Linux all you need is Bubblewrap. I did this as soon as I downloaded Claude Code as there was no way I was running it without any kind of sandboxing. I stopped using CC mainly because it's closed source and Codex and OpenCode work just a well. I recently updated the script for OpenCode and can update my blog post if anyone is interested: https://blog.gpkb.org/posts/ai-agent-sandbox/

delijati 70 days ago [–]

Interested. I'm on linux now for 20 years but i never heard of bubblewrap :D. I currently run OpenCode in Docker but i always assumed there was a better way. So bubblewrap and your script seams like the perfect fit.

globular-toast 69 days ago | [–]

I have now updated the above to add my OpenCode script. Hope it helps!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact