npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

aibox-cli

v0.6.0

Published

Run AI coding agents in isolated Docker containers

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

repalashrepalash

Keywords

aidockersandboxclaudecoding-agentdevtoolscli

Readme

Skip permission prompts safely. Let agents run wild. Tear everything down when you're done.

cd myproject && aibox claude --yolo

One command to go from bare project to fully isolated Claude Code session. Changes sync both ways, the agent stays sandboxed, tear everything down when you're done.

Quickstart

npm install -g aibox-cli    # 1. install
cd myproject                 # 2. go to your project
aibox claude --yolo          # 3. run

Features

  • Zero config — don't even need Docker installed. Detects your machine, auto-installs Colima/Docker, builds an Alpine image with Claude Code + dev tools on first run
  • Safe by default — network firewall (allowlisted domains only), restricted sudo, sensitive file detection. --yolo to unlock everything
  • Full isolation--copy snapshots into a Docker volume, --worktree creates a git worktree. Both handle uncommitted changes, submodules, and LFS
  • Parallel agents — run multiple named instances on the same project, each with its own container
  • Editor integration — VS Code, Cursor, JetBrains, Windsurf — set startup command to aibox claude --yolo
  • Clone and run--repo <url> clones any git repo and launches an agent session
  • Not just Claude — container ships with Node.js, python3, git, ripgrep, build tools. Run aider, codex, or anything else
  • Just a shell script — no daemon, no runtime dependencies, easy to fork

Install

npm install -g aibox-cli
# or
brew install blitzdotdev/tap/aibox

On macOS, if Docker isn't installed, aibox will offer to install Colima + Docker via Homebrew automatically. Also works with Docker Desktop or OrbStack.

Usage

aibox up                    # start container (auto-builds image on first run)
aibox claude --yolo         # no prompts, full sudo, no firewall
aibox claude --safe         # keep prompts, restricted sudo, firewall on
aibox claude                # asks you each time
aibox claude --resume       # resume most recent conversation
aibox shell                 # zsh inside the container
aibox down                  # stop and remove

Named instances

Run multiple containers for the same project:

aibox --name refactor claude --yolo
aibox --name tests claude --safe
aibox --name refactor down

Isolation modes

| Mode | Flag | How it works | |------|------|-------------| | Bind mount | (default) | Live-sync project directory | | Copy | --copy | Snapshot into Docker volume (git or non-git) | | Worktree | --worktree | Lightweight git worktree on host |

Both --copy and --worktree auto-detect uncommitted changes, submodules, and Git LFS. Each creates a aibox/<instance-name> branch.

  • Git repo — uses git bundle to clone tracked files (preserves history, excludes .gitignored files). Asks to include uncommitted changes.
  • Git subfolder — asks whether to copy the full repo or just the current folder.
  • Non-git directory — tars the folder (excluding node_modules and .git).

Creates a git worktree at ~/.config/aibox/worktrees/. Near-instant, shares remotes with the main repo. Requires a git repository. Asks to include uncommitted changes.

Clone from URL

aibox --repo https://github.com/user/project.git claude --yolo
aibox --repo [email protected]:user/project.git --branch dev claude

Repos cached at ~/.config/aibox/repos/ with submodules included.

Port forwarding

Forward ports from a running container to the host — no restart needed:

aibox port-forward 3000              # host:3000 → container:3000
aibox port-forward 8080:3000         # host:8080 → container:3000
aibox port-forward 3000 5173         # multiple ports
aibox port-forward --list            # show active forwards
aibox port-forward --stop 3000       # stop one
aibox port-forward --stop-all        # stop all

Uses a lightweight sidecar container (alpine/socat) on the same Docker network. Cleaned up automatically on aibox down.

Management

aibox status              # list all aibox containers
aibox volumes             # list copy volumes and worktrees
aibox disk                # show disk usage breakdown
aibox clean               # clean everything (containers, volumes, images, sessions)
aibox clean --volumes     # only orphaned volumes
aibox clean --containers  # only stopped containers
aibox clean --sessions 7  # only session data older than 7 days (default: 30)
aibox clean --docker      # only dangling images + build cache
aibox clean --force       # skip confirmation
aibox doctor              # diagnose common issues
aibox down --clean        # also remove copy volumes / worktrees
aibox down --all          # stop all containers for this project
aibox nuke                # remove ALL aibox containers

Containers auto-stop when the last claude or shell session exits.

Security modes

| | --yolo | --safe (default) | |---|---|---| | Permission prompts | Skipped | Kept | | Sudo | Full | Restricted (chown only) | | Network | Unrestricted | Firewall (allowlist only) |

In safe mode, outbound traffic is restricted to Claude API, npm, GitHub, PyPI, DNS, and SSH. Add extra domains:

export AIBOX_EXTRA_DOMAINS="example.com,api.myservice.io"

IDE integration

  1. Install the Claude Code plugin
  2. Run aibox init in your project
  3. Set the plugin's startup command to aibox claude --yolo

Node.js interpreter is also configured to use the container.

  1. Install the Claude Code extension
  2. Set the Claude Code startup command to aibox claude --yolo
  3. Or use Dev Containers with the generated compose.dev.yaml

Set your agent's startup command to aibox claude --yolo. Works anywhere you can configure a shell command.

Other agents

The container ships with Node.js 20, git, git-lfs, ripgrep, zsh, python3, and build tools. Claude Code is pre-installed, but you can run anything:

aibox shell    # then run: aider, codex, etc.

Customize the Dockerfile at ~/.config/aibox/Dockerfile.

CLI reference

| Short | Long | Description | |-------|------|-------------| | -n | --name NAME | Named instance (multiple containers per project) | | -d | --dir PATH | Run in a different project directory | | -r | --repo URL | Clone a git repo and run in it | | -b | --branch NAME | Branch to checkout (with --repo) | | -i | --image NAME | Override base Docker image | | -c | --copy | Copy project into Docker volume (full isolation) | | -w | --worktree | Use git worktree (lightweight isolation) | | -y | --yolo | Skip prompts, full sudo, no firewall | | -s | --safe | Keep prompts, restricted sudo, firewall on | | | --all | With down: stop all project containers | | | --clean | With down: also remove copy volumes / worktrees | | | --force | With clean: skip confirmation prompts |

Config

Per-project settings in .aibox:

IMAGE=aibox:latest
SHARED_MODULES=true

Contributing

See CONTRIBUTING.md.

License

MIT