npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@treesap/sandbox

v0.2.2

Published

Self-hosted sandbox API for isolated code execution and file management

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

jaydanurwinjaydanurwin

Keywords

sandboxcode-executionfile-operationsapicloudflare-sandboxself-hostedhonoprocess-management

Readme

🌳 TreeSap Sandbox

A self-hosted sandbox API for isolated code execution and file management. Similar to Cloudflare's Sandbox SDK, but designed for self-hosting on your own infrastructure.

Perfect for AI agents, code execution platforms, and automation tools that need secure, isolated environments.

⚠️ Warning: This package is experimental and exposes your machine to the local network. It executes arbitrary code with folder-based isolation only (not containerized). Proceed with caution.

Features

  • 🔒 Folder-based isolation - Each sandbox gets its own working directory
  • 📁 File Operations API - Read, write, list, and delete files
  • Command Execution - Run commands with streaming output
  • 🔄 Process Management - Start, monitor, and kill background processes
  • 🌊 Real-time Streaming - Server-Sent Events for live output
  • 🎯 Simple REST API - Easy to integrate with any language
  • 📦 TypeScript SDK - Full-featured client library included
  • 🚀 Self-hosted - Run on your own servers, no cloud dependencies

Installation

npm install @treesap/sandbox

Quick Start

Start the Server

# Using CLI
npx treesap-sandbox --port 3000

# Or programmatically
import { startServer } from '@treesap/sandbox';

await startServer({ port: 3000 });

Use the Client SDK

import { SandboxClient } from '@treesap/sandbox';

// Create a new sandbox
const sandbox = await SandboxClient.create('http://localhost:3000');

// Execute commands
const result = await sandbox.exec('npm install');
console.log(result.stdout);

// File operations
await sandbox.writeFile('hello.txt', 'Hello, World!');
const content = await sandbox.readFile('hello.txt');
const files = await sandbox.listFiles();

// Background processes
const server = await sandbox.startProcess('node server.js');
const logs = await sandbox.streamProcessLogs(server.id);

// Cleanup
await sandbox.destroy({ cleanup: true });

API Reference

Sandbox Management

Create a Sandbox

POST /sandbox
const sandbox = await SandboxClient.create('http://localhost:3000', {
  workDir: '/custom/path',  // optional
  timeout: 60000,           // optional, default timeout for commands
});

Get Sandbox Info

GET /sandbox/:id
const status = await sandbox.getStatus();
console.log(status);
// {
//   id: 'abc123',
//   workDir: '/path/to/sandbox',
//   createdAt: 1234567890,
//   processCount: 2,
//   ...
// }

List All Sandboxes

GET /sandbox

Destroy a Sandbox

DELETE /sandbox/:id?cleanup=true
await sandbox.destroy({ cleanup: true });

Command Execution

Execute Command

POST /sandbox/:id/exec
const result = await sandbox.exec('ls -la', {
  timeout: 5000,
  cwd: '/custom/dir',
  env: { NODE_ENV: 'production' }
});

console.log(result);
// {
//   success: true,
//   stdout: '...',
//   stderr: '...',
//   exitCode: 0
// }

Stream Command Output

GET /sandbox/:id/exec-stream?command=npm%20install
import { parseSSEStream } from '@treesap/sandbox';

const stream = await sandbox.execStream('npm install');

for await (const event of parseSSEStream(stream)) {
  switch (event.type) {
    case 'stdout':
      console.log('Output:', event.data);
      break;
    case 'stderr':
      console.error('Error:', event.data);
      break;
    case 'complete':
      console.log('Exit code:', event.exitCode);
      break;
  }
}

Process Management

Start a Background Process

POST /sandbox/:id/process
const process = await sandbox.startProcess('python -m http.server 8000');
console.log('Started with PID:', process.pid);

List Processes

GET /sandbox/:id/process
const processes = await sandbox.listProcesses();

Get Process Info

GET /sandbox/:id/process/:processId
const info = await sandbox.getProcess(processId);

Kill a Process

DELETE /sandbox/:id/process/:processId?signal=SIGTERM
await sandbox.killProcess(processId, 'SIGTERM');

Stream Process Logs

GET /sandbox/:id/process/:processId/logs
const stream = await sandbox.streamProcessLogs(processId);

for await (const event of parseSSEStream(stream)) {
  console.log(`[${event.timestamp}] ${event.data}`);
}

File Operations

List Files

GET /sandbox/:id/files?path=.&recursive=true&pattern=*.js
const files = await sandbox.listFiles('.', {
  recursive: true,
  pattern: '*.js',
  includeHidden: false
});

files.forEach(file => {
  console.log(file.name, file.type, file.size);
});

Read File

GET /sandbox/:id/files/path/to/file.txt
const content = await sandbox.readFile('package.json');
console.log(content);

Write File

POST /sandbox/:id/files/path/to/file.txt
await sandbox.writeFile('README.md', '# Hello World');

Delete File

DELETE /sandbox/:id/files/path/to/file.txt?recursive=true
await sandbox.deleteFile('node_modules', { recursive: true });

Use Cases

AI Agent Code Execution

const sandbox = await SandboxClient.create('http://localhost:3000');

// Agent writes code
await sandbox.writeFile('script.py', `
import pandas as pd
print(pd.__version__)
`);

// Agent installs dependencies
await sandbox.exec('pip install pandas');

// Agent runs code
const result = await sandbox.exec('python script.py');
console.log(result.stdout);

// Cleanup
await sandbox.destroy({ cleanup: true });

Running Tests in Isolation

const sandbox = await SandboxClient.create('http://localhost:3000');

// Clone repo
await sandbox.exec('git clone https://github.com/user/repo.git');
await sandbox.exec('cd repo && npm install');

// Run tests
const testResult = await sandbox.exec('cd repo && npm test');

console.log('Tests passed:', testResult.success);

Long-Running Services

const sandbox = await SandboxClient.create('http://localhost:3000');

// Start a web server
const server = await sandbox.startProcess('node server.js');

// Monitor logs in real-time
const logStream = await sandbox.streamProcessLogs(server.id);

for await (const log of parseSSEStream(logStream)) {
  console.log('[Server]', log.data);

  if (log.data.includes('Server started')) {
    console.log('Server is ready!');
    break;
  }
}

// Later: stop the server
await sandbox.killProcess(server.id);

Server Configuration

CLI Options

treesap-sandbox [options]

Options:
  -p, --port <port>            Port to listen on (default: 3000)
  -h, --host <host>            Host to bind to (default: 0.0.0.0)
  -b, --base-path <path>       Base path for sandbox folders (default: ./.sandboxes)
  -m, --max-sandboxes <num>    Maximum number of sandboxes (default: 100)
  --cors                       Enable CORS (default: false)
  --help                       Show this help message

Programmatic Configuration

import { startServer } from '@treesap/sandbox';

const { server, manager } = await startServer({
  port: 3000,
  host: '0.0.0.0',
  basePath: './.sandboxes',
  maxSandboxes: 100,
  cors: true,
});

// Access sandbox manager directly
const stats = manager.getStats();
console.log('Active sandboxes:', stats.totalSandboxes);

Architecture

TreeSap Sandbox uses a simple, lightweight architecture:

┌─────────────────────────────────────┐
│         Client SDK / API            │
│    (HTTP REST + Server-Sent Events) │
└──────────────┬──────────────────────┘
               │
               │ HTTP/REST
               │
┌──────────────▼──────────────────────┐
│         API Server (Hono)           │
│  - Sandbox Management               │
│  - Command Execution                │
│  - Process Management               │
│  - File Operations                  │
└──────────────┬──────────────────────┘
               │
               │
┌──────────────▼──────────────────────┐
│       Sandbox Manager               │
│  - Creates isolated sandboxes       │
│  - Manages lifecycle                │
│  - Auto-cleanup                     │
└──────────────┬──────────────────────┘
               │
               │
┌──────────────▼──────────────────────┐
│     Individual Sandboxes            │
│  - Isolated working directory       │
│  - Process spawning (child_process) │
│  - File operations (fs)             │
└─────────────────────────────────────┘

Security Model

  • Folder-based isolation: Each sandbox operates in its own directory
  • Path traversal prevention: File operations are validated to prevent ../ attacks
  • Process limits: Configurable max processes per sandbox
  • Automatic cleanup: Idle sandboxes are cleaned up after 30 minutes
  • Resource monitoring: Optional timeout limits for commands

⚠️ Note: This is folder-based isolation, not container-based. For production use with untrusted code, consider running the server inside a Docker container or VM for an additional security layer.

Comparison with Cloudflare Sandbox SDK

| Feature | TreeSap Sandbox | Cloudflare Sandbox | |---------|----------------|-------------------| | Self-hosted | ✅ Yes | ❌ Cloud only | | Folder isolation | ✅ Yes | Container-based | | File operations | ✅ Full API | ✅ Full API | | Command execution | ✅ Yes | ✅ Yes | | Process management | ✅ Yes | ✅ Yes | | Streaming output | ✅ SSE | ✅ SSE | | Code interpreters | ⚠️ Planned | ✅ Python/JS | | Public URLs | ❌ No | ✅ Yes | | Platform | Node.js | Cloudflare Workers |

Advanced Usage

Using Core Components Directly

import { Sandbox, FileService } from '@treesap/sandbox';

// Create a sandbox directly (without server)
const sandbox = new Sandbox({
  workDir: '/tmp/my-sandbox',
  timeout: 30000,
});

await sandbox.initialize();

// Execute commands
const result = await sandbox.exec('ls -la');

// Use file service
const fileService = new FileService(sandbox.workDir);
await fileService.writeFile('test.txt', 'Hello!');
const files = await fileService.listFiles();

// Cleanup
await sandbox.destroy({ cleanup: true });

Custom Server Integration

import { createServer, SandboxManager } from '@treesap/sandbox';
import { serve } from '@hono/node-server';

const { app, manager } = createServer({
  basePath: '/custom/sandboxes',
  maxSandboxes: 50,
});

// Add custom routes
app.get('/custom-endpoint', (c) => {
  const stats = manager.getStats();
  return c.json({ stats });
});

// Start server
serve({ fetch: app.fetch, port: 3000 });

Contributing

Contributions are welcome! Please check out the GitHub repository for more information.

License

MIT

Related Projects

Built with ❤️ by the TreeSap Team