← Back
NVIDIA
NVIDIA launches OpenShell runtime for safer autonomous AI agents with sandboxed execution and policy enforcement
· releasefeatureplatformsecurityopen-source · developer.nvidia.com ↗

NVIDIA Introduces OpenShell for Secure Agent Deployment

NVIDIA announced OpenShell, an Apache 2.0 open-source runtime that addresses critical security gaps in autonomous AI agent execution. As part of the broader NVIDIA Agent Toolkit and NemoClaw stack, OpenShell provides infrastructure to run self-evolving agents safely across cloud, on-premises, NVIDIA RTX PCs, and DGX systems.

The Security Challenge with Autonomous Agents

Long-running autonomous agents like OpenClaw represent a fundamental shift in AI—systems that can plan tasks, spawn sub-agents, write their own code, maintain context across sessions, and execute for hours with minimal human oversight. This autonomy creates new security risks that existing agent runtimes don't address. The core problem: traditional guardrails and safety measures live inside the agent process itself, making them vulnerable to compromise. Each prompt injection becomes a potential credential leak, and self-rewritten tooling poses binary execution risks without review.

How OpenShell Works

OpenShell's key architectural innovation is out-of-process policy enforcement—moving security boundaries outside the agent's execution context entirely. Rather than relying on behavioral prompts or internal guardrails, the runtime enforces constraints on the environment itself, making them impossible to override even if the agent is compromised.

Core capabilities include:

  • Sandboxed execution: Isolated sessions with controlled resource access
  • Granular permissions: Fine-grained control over what agents can access and execute
  • Privacy router: Data handling controls and inspection capabilities
  • Policy-based governance: Behavioral rules enforced at the infrastructure level, not the application level

Deployment and Integration

Developers can deploy agents with a single command: openshell sandbox create --remote spark --from openclaw—requiring zero code changes. OpenShell runs unmodified agents built on OpenClaw, Anthropic's Claude Code, OpenAI's Codex, and other frameworks.

The runtime works with NVIDIA's open-source models like Nemotron and integrates into the full NVIDIA Agent Toolkit stack, which provides models, evaluation tools, and production-ready deployment infrastructure for building enterprise AI agents.