npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@loopstack/sandbox-filesystem

v0.7.4

Published

Secure, controlled filesystem operations within Docker sandbox environments

Downloads

1,442

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

loopstack.ailoopstack.ai

Keywords

dockerfilesystemsandbox

Readme

title: Sandbox Filesystem description: SandboxFilesystemModule providing SandboxWriteFile, SandboxReadFile, SandboxListDirectory, SandboxCreateDirectory, SandboxDelete, SandboxExists, SandboxFileInfo tools for secure file operations inside Docker containers. Depends on @loopstack/sandbox-tool.

@loopstack/sandbox-filesystem

Sandbox filesystem module for the Loopstack automation framework.

Provides secure filesystem operations inside Docker sandbox containers. Use it alongside @loopstack/sandbox-tool to read, write, list, create, delete, and inspect files and directories in isolated environments without risking the host system.

When to Use

  • You need to read or write files inside an isolated Docker container (e.g., code execution sandboxes, build pipelines)
  • Your workflow generates untrusted or AI-produced files and you want filesystem access confined to a container
  • You want structured directory listing, existence checks, or file metadata from inside a sandbox
  • You already use @loopstack/sandbox-tool for container lifecycle and need filesystem operations on top

Installation

npm install @loopstack/sandbox-filesystem @loopstack/sandbox-tool

Import SandboxFilesystemModule in your module. It automatically imports SandboxToolModule, so container lifecycle tools (SandboxInit, SandboxDestroy, SandboxCommand) are available too.

import { Module } from '@nestjs/common';
import { SandboxFilesystemModule } from '@loopstack/sandbox-filesystem';

@Module({
  imports: [SandboxFilesystemModule],
  providers: [MyWorkflow],
  exports: [MyWorkflow],
})
export class MyModule {}

Quick Start

import { z } from 'zod';
import { BaseWorkflow, ToolResult, Transition, Workflow } from '@loopstack/common';
import type { RunContext } from '@loopstack/common';
import { SandboxCreateDirectory, SandboxReadFile, SandboxWriteFile } from '@loopstack/sandbox-filesystem';
import { SandboxDestroy, SandboxInit } from '@loopstack/sandbox-tool';

interface SandboxState {
  containerId?: string;
}

@Workflow({
  schema: z.object({ outputDir: z.string().default(process.cwd() + '/out') }),
})
export class SandboxWorkflow extends BaseWorkflow<{ outputDir: string }, SandboxState> {
  constructor(
    private readonly sandboxInit: SandboxInit,
    private readonly sandboxDestroy: SandboxDestroy,
    private readonly sandboxWriteFile: SandboxWriteFile,
    private readonly sandboxReadFile: SandboxReadFile,
    private readonly sandboxCreateDirectory: SandboxCreateDirectory,
  ) {
    super();
  }

  @Transition({ to: 'sandbox_ready' })
  async initSandbox(state: SandboxState, ctx: RunContext): Promise<SandboxState> {
    const args = ctx.args as { outputDir: string };
    const result: ToolResult = await this.sandboxInit.call({
      containerId: 'my-sandbox',
      imageName: 'node:18',
      containerName: 'sandbox-container',
      projectOutPath: args.outputDir,
      rootPath: 'workspace',
    });
    return { ...state, containerId: result.data.containerId };
  }

  @Transition({ from: 'sandbox_ready', to: 'file_written' })
  async writeFile(state: SandboxState): Promise<SandboxState> {
    await this.sandboxCreateDirectory.call({
      containerId: state.containerId!,
      path: '/workspace/src',
      recursive: true,
    });

    await this.sandboxWriteFile.call({
      containerId: state.containerId!,
      path: '/workspace/src/hello.js',
      content: "console.log('Hello from sandbox!');",
      encoding: 'utf8',
      createParentDirs: true,
    });
    return state;
  }

  @Transition({ from: 'file_written', to: 'file_read' })
  async readFile(state: SandboxState): Promise<SandboxState> {
    await this.sandboxReadFile.call({
      containerId: state.containerId!,
      path: '/workspace/src/hello.js',
      encoding: 'utf8',
    });
    return state;
  }

  @Transition({ from: 'file_read', to: 'end' })
  async destroySandbox(state: SandboxState): Promise<unknown> {
    await this.sandboxDestroy.call({
      containerId: state.containerId!,
      removeContainer: true,
    });
    return {};
  }
}

How It Works

All filesystem tools delegate to SandboxCommand from @loopstack/sandbox-tool, which executes shell commands (cat, mkdir, rm, stat, find) inside the Docker container via the Docker exec API. Content is transferred safely using base64 encoding.

start ──> sandbox_ready ──> file_written ──> file_read ──> end
  |            |                  |              |           |
  v            v                  v              v           v
SandboxInit  mkdir/write       read           cleanup    SandboxDestroy

Container lifecycle (SandboxInit / SandboxDestroy) comes from @loopstack/sandbox-tool. This module adds the filesystem layer on top.

Tools Reference

Every tool requires a containerId argument that references a container created by SandboxInit.

sandbox_write_file

Write content to a file in a sandbox container.

| Arg | Type | Required | Description | | ------------------ | -------------------- | --------------------- | ------------------------------------ | | containerId | string | Yes | Container ID | | path | string | Yes | File path inside the container | | content | string | Yes | Content to write | | encoding | 'utf8' \| 'base64' | No (default 'utf8') | Content encoding | | createParentDirs | boolean | No (default true) | Create parent directories if missing |

Returns: { path: string, bytesWritten: number }

sandbox_read_file

Read file contents from a sandbox container.

| Arg | Type | Required | Description | | ------------- | -------------------- | --------------------- | ------------------------------ | | containerId | string | Yes | Container ID | | path | string | Yes | File path inside the container | | encoding | 'utf8' \| 'base64' | No (default 'utf8') | Encoding to use when reading |

Returns: { content: string, encoding: string }

sandbox_list_directory

List files and directories in a sandbox container.

| Arg | Type | Required | Description | | ------------- | --------- | -------------------- | ----------------------------------- | | containerId | string | Yes | Container ID | | path | string | Yes | Directory path inside the container | | recursive | boolean | No (default false) | List recursively |

Returns: { path: string, entries: Array<{ name: string, type: 'file' | 'directory' | 'symlink' | 'other', size: number, path: string }> }

sandbox_create_directory

Create a directory in a sandbox container.

| Arg | Type | Required | Description | | ------------- | --------- | ------------------- | ------------------------------------ | | containerId | string | Yes | Container ID | | path | string | Yes | Directory path to create | | recursive | boolean | No (default true) | Create parent directories if missing |

Returns: { path: string, created: boolean }

sandbox_delete

Delete a file or directory in a sandbox container.

| Arg | Type | Required | Description | | ------------- | --------- | -------------------- | ----------------------------------- | | containerId | string | Yes | Container ID | | path | string | Yes | Path to delete | | recursive | boolean | No (default false) | Recursively delete directories | | force | boolean | No (default false) | Force deletion without confirmation |

Returns: { path: string, deleted: boolean }

sandbox_exists

Check if a file or directory exists in a sandbox container.

| Arg | Type | Required | Description | | ------------- | -------- | -------- | ------------- | | containerId | string | Yes | Container ID | | path | string | Yes | Path to check |

Returns: { path: string, exists: boolean, type: 'file' | 'directory' | 'symlink' | 'other' | null }

sandbox_file_info

Get detailed information about a file or directory in a sandbox container.

| Arg | Type | Required | Description | | ------------- | -------- | -------- | --------------- | | containerId | string | Yes | Container ID | | path | string | Yes | Path to inspect |

Returns: { path: string, name: string, type: 'file' | 'directory' | 'symlink' | 'other', size: number, permissions: string, owner: string, group: string, modifiedAt: string, accessedAt: string, createdAt: string }

Public API

  • Module: SandboxFilesystemModule
  • Tools: SandboxWriteFile, SandboxReadFile, SandboxListDirectory, SandboxCreateDirectory, SandboxDelete, SandboxExists, SandboxFileInfo

Dependencies

| Package | Role | | ------------------------- | ------------------------------------------------------------------------------------------------------------------ | | @loopstack/common | Base tool class, decorators, types | | @loopstack/sandbox-tool | Container lifecycle (SandboxInit, SandboxDestroy) and SandboxCommand used internally by all filesystem tools | | @nestjs/common | NestJS dependency injection | | zod | Schema validation |

Related

  • Sandbox Execution -- Setup guide, full tool table, and security details for sandbox containers
  • sandbox-example-workflow -- Complete example covering init, create directory, write/read files, list, exists, file info, delete, and destroy
  • @loopstack/sandbox-tool -- Container lifecycle and command execution (required companion package)

About

Author: Tobias Blattermann, Jakob Klippel

License: MIT