What's New

Vercel Sandboxes are now generally available as a production-ready service for executing untrusted code in isolated, ephemeral environments. Each sandbox runs inside a Firecracker microVM, providing strong security isolation without exposing production systems to risk.

Key Features

• Isolated Execution: Code running in sandboxes is blocked from accessing environment variables, database connections, and cloud resources
• Ephemeral Compute: Sandboxes are designed to be short-lived, spinning up and down as needed
• Use Cases: Ideal for running AI agent-generated outputs, unverified user uploads, and third-party code

Getting Started

Vercel provides both SDK and CLI options for developers:

SDK Usage (Node.js):

import { Sandbox } from '@vercel/sandbox';

const sandbox = await Sandbox.create();
await sandbox.runCommand({
  cmd: 'node',
  args: ["-e", 'console.log("Hello from Vercel Sandbox!")'],
  stdout: process.stdout,
});
await sandbox.stop();

CLI: Launch an interactive shell with npx sandbox create --connect

Production Adoption

Sandboxes are already in production use by notable teams including v0, Blackbox AI, and RooCode, validating the reliability and utility of the offering.

Developers can explore the full documentation and access the open-source SDK and CLI on npm to get started.