npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

dustcastle

v0.5.3

Published

A global toolchain manager for AI coding agent sandboxes — one shared, deduplicated Nix store instead of per-project image builds.

Downloads

2,621

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

laimklaimk

Keywords

sandboxnixtoolchainai-agentcoding-agentclicontainerreproducible

Readme

One toolchain store for every AI-agent sandbox. Install once, share everywhere, any language.

AI coding agents work best inside isolated sandboxes. But today every project ships its own Dockerfile, and every one rebuilds the same language runtime, git, gh, and agent CLI from scratch. N projects means N image builds and N copies of the same boilerplate.

dustcastle removes the per-project build. It manages one shared, content-addressed Nix store on your machine and mounts it read-only into every sandbox. The toolchain is described once, deduplicated across all of your projects, and works for any ecosystem with zero per-project setup.

HOST
  /nix/store   <- ONE store. Deduplicated, content-addressed, immutable.
      |  (mounted read-only)
      |--> sandbox A   (Node project)
      |--> sandbox B   (Python project)  <- same store, no copy
      `--> sandbox C   (Rust project)

Why dustcastle

  • Install once, share everywhere. The store grows with unique package-versions, not projects times dependencies. No more N identical image builds, and nothing to tend: dustcastle keeps the store lean on its own.
  • Every repo just works. dustcastle runs your project's real package manager inside the sandbox, lifecycle scripts and all, so native builds, postinstall hooks, and git dependencies install cleanly. The assembled result is cached by lockfile hash, so the next sandbox restores it instantly instead of reinstalling.
  • Any ecosystem, no config. The language, package manager, and dependencies are detected from your lockfile. There is no dustcastle.toml and nothing to wire up.
  • Host boundary, normal network. Sandboxes inherit none of your host credentials by default, while using normal container network access so package managers, git dependencies, and the agent can reach what they need. Curated Credentials (today: GitHub/GitLab via dustcastle config) are the explicit opt-in path for private HTTPS git dependencies.
  • Automatic and quiet. Detection, dependency caching, store garbage collection, and session reuse all happen on their own. One command, nothing to pass.

Status

Released at v0.2.0. Linux first; macOS and Windows run through a Linux container. Requires a container runtime (Docker or Podman) and Node 22 or newer.

Install

npm install -g dustcastle    # exposes the `dustcastle` command on your PATH

Or run it on demand without installing:

npx dustcastle run

Build from source

git clone https://github.com/madebymlai/dustcastle.git
cd dustcastle
npm install
npm run build
npm link        # exposes the `dustcastle` command on your PATH

Or run it directly without linking:

npm run dev     # runs src/cli/main.ts via tsx

Quick start

From the root of any git repository:

dustcastle run

That is the entire surface: one zero-argument command, nothing to pass. dustcastle then:

  1. Detects the ecosystem from your lockfile (package-lock.json, pnpm-lock.yaml, uv.lock, Cargo.lock, go.sum, Gemfile.lock, and so on).
  2. Provisions the language toolchain from the shared store (downloaded once, then reused forever) and installs your project's dependencies inside the sandbox, caching the assembled result by lockfile hash.
  3. Launches your coding agent inside the sandbox, wired to the shared store and a locked-down network.

The first run downloads the base toolchain closure (a few minutes, one time). Every run after that, and every other project on your machine, reuses it instantly. A repeat run on an unchanged lockfile skips dependency installation entirely.

Running on the host (--dustless)

On a host you already trust and have tooled — your own machine, or a CI runner where the language toolchains and dependencies already exist — you can skip the store, the container boundary, and detection entirely:

dustcastle run --dustless   # or -d

A dustless run drives the same orchestration loop directly on the host via sandcastle's no-sandbox provider. There is no Nix store, no container, and no ecosystem detection, so it runs even in repositories dustcastle doesn't recognize. Each issue's worktree inherits the host's already-installed dependencies (your git-ignored node_modules, vendor, .venv, …), and the agent uses your host's own PATH, git/gh, and pi login — nothing is provisioned or injected.

The agent runs with no isolation — it acts directly on your host — so dustless is opt-in and prints a clear warning on every run. Use it only where you trust the work.

How it works

dustcastle is the shared store manager and the UX around it. It uses sandcastle as a library to stand up the sandbox, and slots the shared Nix store in where per-project image provisioning used to live. Two independent ideas carry the design:

| Axis | Question | Answer | |---|---|---| | The Store | How is the toolchain described, stored, and shared? | One shared, content-addressed Nix store, mounted read-only into every sandbox | | The Boundary | What isolates the agent from your host? | A container today, with a microVM as a drop-in upgrade |

The dedup value lives entirely in the Store and is identical whether the boundary is a plain container or a microVM.

Every ecosystem reduces to three slots, which is why "works for everything" falls out of the design rather than being a special case:

| Slot | npm / TS | Python | Rust | Go | Ruby | |---|---|---|---|---|---| | Toolchain (from shared store) | node, pnpm | python, uv | rustc, cargo | go | ruby, bundler | | Install deps (real manager, then cached) | npm install | pip install / uv export | cargo fetch | go mod download | bundle install | | Run tests (sandbox capability) | vitest | pytest | cargo test | go test | rspec |

The toolchain comes from the shared store. The dependencies are installed by the repo's own package manager inside the sandbox, and the assembled result is cached and kept warm by the same garbage collector that tends the store, so repeat runs stay fast without you ever managing disk.

License

MIT