IronBox
Rust-native sandbox engine with pluggable security hooks. e2b-compatible API for self-hosted or managed agent code execution. Production-ready core with comprehensive defense-in-depth security layer.
Key metrics
Architecture
Production-ready Rust sandbox engine with an e2b-compatible API for self-hosted or managed agent code execution. Modular security hooks layer (ironbox-sec) provides identity, auth, DLP, and audit enforcement on top of the core sandbox runtime.
Case study
IronBox
Secure sandboxing for AI agents — self-hosted or managed.
When agents run code, that code needs somewhere to run that won't compromise your machine, your data, or your network. IronBox is a Rust-native sandbox engine with an e2b-compatible API, built so you can run agent code inside boundaries you actually trust.
Two layers
ironbox — the core sandbox runtime. Production-ready, 664 passing tests, e2b-API-compatible so you can drop it into existing tooling. Live demo endpoint deployed.
ironbox-sec — the security hooks layer that bolts onto the core. 216 tests, 15,000+ lines of Rust, zero unsafe code. Identity, auth, DLP scanning, and audit pipeline as composable middleware.
Status
Prototype, but unusually mature for one. The core is production-ready and the security layer is structurally sound. Built as a "what would a security-first sandbox look like if you started from scratch in Rust" experiment.