webcoyote/sandvault
295 stars · Last commit 2026-05-11
Run AI agents isolated in a macOS user account and sandbox-exec. Configured to run Claude Code, OpenAI Codex, Cursor Agent, Google Gemini.
README preview
# SandVault - Run AI agents and shell commands in a sandboxed macOS user account. Sandboxed web and app testing with Chrome and iOS Simulator. <img src="https://www.codeofhonor.com/images/projects/sandvault.webp" align="left" width="200px"/> SandVault (`sv`) manages a limited user account to sandbox shell commands and AI agents, providing a lightweight alternative to application isolation using virtual machines. </br> </br> - **AI ready** - Includes Claude Code, OpenAI Codex, OpenCode, Google Gemini - **Web and iOS automation** - sandbox access to Chrome / Lightpanda and iOS Simulator - **Fast context switching** - No VM overhead; instant user switching - **Passwordless** - switch accounts without a prompt (after setup) - **Shared workspace** - joint access to `/Users/Shared/sv-$USER` - **Defense in depth** - limited user account + `sandbox-exec` - **Clean uninstall** - Complete removal with `sv uninstall` </br> </br> ---