boxctl
Isolated container environments for autonomous AI coding agents with auto-approve, background execution, and desktop notifications.
Role: Developer
About the Project
boxctl runs AI coding agents (Claude Code, Codex, Gemini CLI, Qwen) inside isolated Docker containers. Each agent gets its own sandboxed environment with persistent workspaces, git worktree management, and tmux session orchestration. The container boundary replaces per-action approval as the safety mechanism — agents can read, write, and execute freely within their container without affecting the host system.
Features
- Container isolation — each agent runs in its own Docker container with full filesystem and network isolation
- Auto-approve mode — agents operate autonomously without manual confirmation, safe within the container boundary
- Background execution — detach from sessions, continue other work, and get desktop notifications when complete
- Multi-agent support — run Claude, Codex, Gemini, and Qwen agents side by side
- Worktree support — parallel branches with dedicated agents, enabling concurrent development on the same repository
- Device passthrough — GPU, audio, serial, and camera access for agents that need hardware
- agentctl MCP server — in-container tool for session and worktree management by the agent itself
- Zero-config credentials — auto-mounts OAuth tokens for Claude, Codex, Gemini, Qwen, GitHub CLI, and SSH keys