npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@background-agents/sandbox-jobs

v0.1.0

Published

Run, observe, and reconnect to long-running shell processes in a Daytona sandbox via the filesystem. Byte-offset incremental reads, real exit codes, and cold-reconnect-by-id.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

jamesmurdzajamesmurdza

Keywords

daytonasandboxbackgroundprocesslong-running

Readme

@background-agents/sandbox-jobs

Run, observe, and reconnect to long-running shell processes in a Daytona sandbox — using the sandbox filesystem as the durable source of truth.

The problem it solves: a sandbox's executeCommand is request/response and short-lived, but a real job (an agent run, a build, a test suite) can run for minutes. This package detaches the process inside the sandbox and represents the entire run as files, so a cold caller — a serverless function, a restarted server, a different process — can reattach by id and read output incrementally without ever holding a connection open.

Model

One job = one process = one directory:

<root>/<jobId>/
  meta.json     { jobId, pgid, processName, outputFile, exitFile, dir, createdAt, version }
  output.log    combined stdout+stderr, byte-exact, append-only
  exit          integer $?, present ONLY once the process finishes
  • Detached + fully reapable. Launched with setsid and placed in its own cgroup-v2. cancel() writes the cgroup's cgroup.kill, which SIGKILLs every descendant — including a child that re-sessions itself with setsid() (e.g. a daemonized MCP server) and so escapes the process group. A process-group kill alone misses those and leaks them. Requires cgroup-v2 and privilege to create a cgroup (the sandbox image grants this via sudo).
  • Real exit codes. The wrapper records the true $?; completion is never guessed. A process killed before it could write $? (SIGKILL/OOM) is detected as crashed via process-group liveness.
  • Incremental, UTF-8-safe reads. read(handle, cursor) returns only bytes after the cursor, truncated to the last complete line — so the cursor never splits a multi-byte character and you never re-read the whole log.
  • Cold reconnect. Everything needed to reattach is the serializable JobHandle + an integer cursor, or just the job id via attach().

Why not Daytona's session API (executeSessionCommand)?

Daytona ships a native way to run a detached command: createSession + executeSessionCommand({ runAsync: true }), then getSessionCommand / getSessionCommandLogs. It looks like it should replace this package — the daemon supervises the process and even returns a real exit code. We evaluated it directly; for the cold-serverless-poller use case (a function that starts a job, dies, and reconnects later to stream output into a DB) the file approach wins on the things that actually bite:

| | This package (files) | executeSessionCommand | |---|---|---| | Incremental reads | byte-offset tail → only new bytes, O(n) over a run | getSessionCommandLogs has no offset param: full-dump every poll (O(n²)), or a streaming callback that forces a held-open connection | | Connectionless polling | any cold caller reads the filesystem; nothing to keep alive | the streaming variant needs a live socket; the dump variant re-sends everything | | Output fidelity | output.log is byte-exact, so a byte cursor is reliable | the log stream is wrapped in control-byte framing (e.g. \x01 markers) — not byte-exact, which breaks offset cursors | | Cancellation | cgroup.kill reaps the whole job cgroup, incl. setsid() escapees | no documented kill for an async session command — you shell out to pkill anyway | | Lifecycle to manage | none — a dead process just leaves files; cleanup is rm -rf <dir> | a session outlives the command and must be torn down; deleting a live session reaps the process (a real footgun), and sessions accumulate | | Isolation | each job is its own process, dir, and cursor | a session is a stateful shell — env/cwd bleed across commands | | Full-transcript retention | the whole log until the disk fills | the daemon's log buffer may be capped (undocumented), which would break replay-from-zero | | Backend surface | only needs executeCommand — the most basic primitive | tied to the full session/command API |

Note one thing it does not beat the session API on: exit codes. getSessionCommand returns a real exitCode too. The exit-code win here is over the older nohup + .done-sentinel approach this package replaces, not over the session API.

When the session API is the better choice: when you want Daytona to own process supervision (server-side observability), or when you have a long-lived server holding a socket and want live push rather than polling — e.g. an interactive terminal/PTY. That's a different shape than "reliably get every line and the exit code into a database from an intermittent caller," which is what this package is for.

Usage

import { createSandboxJobs } from "@background-agents/sandbox-jobs"

const jobs = createSandboxJobs(sandbox) // a @daytonaio/sdk Sandbox

const handle = await jobs.start({
  command: `for i in $(seq 1 100); do echo "tick $i"; sleep 1; done`,
  cwd: "/home/daytona/project",
  env: { FOO: "bar" },
  timeoutSeconds: 600, // optional hard limit (coreutils `timeout`)
})

// Poll incrementally (cold-start safe — rebuild `jobs`/`handle` each time):
let cursor = 0
for (;;) {
  const r = await jobs.read(handle, cursor)
  cursor = r.cursor
  process.stdout.write(r.raw)
  if (r.status.state !== "running") {
    console.log("done", r.status) // { state: "exited", exitCode: 0, alive: false }
    break
  }
}

// Or reattach later from just the id:
const reattached = await jobs.attach(handle.jobId)

Tests

npm run typecheck
npx vitest run tests/parse.test.ts        # pure unit tests, instant
DAYTONA_API_KEY=... npx vitest run        # + integration (creates a sandbox)