Sandbox OS OS
Operator surface for the sandbox os workforce. Run, inspect, and approve every agent action.
Panels
- InboxPending approvals + agent runs awaiting your call.
- PlanOutcome plans the workforce is executing.
- KPIsLive revenue, cost, and quality metrics.
- AgentsThe domain workforce roster + capabilities.
- OutcomesOutcome catalog + status by category.
- WorkforceTeam templates + assignments per outcome.
- EvalsEval suites + recent results from /api/agent/systems/health.
- MemoryDomain-scoped memory store.
- ToolsTool catalog + connector registry.
- TwinDigital twin lifecycle + state.
- AutomationScheduled jobs + automation rules.
- SettingsDomain-scope configuration.
- AuditPer-domain audit log.
- AlertsLive alerts + ack history.
- BillingPer-domain usage + cost.
AI systems
- · risk-class → backend selector (shipped — DESTRUCTIVE forces DOCKER minimum)
- · cost-ledger integration (shipped — SandboxLease.costUsd → cost-ledger.ts)
- · lease lifecycle audit emission (shipped — sandbox_lease_completed event)
Backend services
- · sandbox-lease-store
- · docker-driver
- · ssh-driver
- · modal-driver
- · daytona-driver
- · vercel-sandbox-driver
- · openshell-driver
Known gaps in this domain (registry-disclosed)
- · Driver implementations beyond LOCAL + DOCKER (T11 ships first 4)
- · Modal / Daytona / Vercel sandbox API integration (T11 + T17)
- · /api/sandbox/leases route (T17)
Next action: T11 — build lib/agent-os/sandbox/* (types + policy + backends/local + backends/docker).