README

Research comparing tools for running Claude Code and other AI coding agents in isolated/sandboxed environments on macOS.

Documents

Document	Description
Tool Comparison	Comprehensive feature comparison of 7 sandboxing tools

Tools Covered

Tool	Type	Key Differentiator
Agent-Box	Full VM (Lima/UTM)	SSHFS reverse-mount for native performance
ClodPod	Full VM (Tart)	macOS guest with Xcode
macSandbox	Micro-VM (Apple Container)	Uses Apple’s native containerization
Agentastic.dev	Git Worktrees	Multi-agent orchestration IDE
claude-code-sandbox	Docker	GitHub integration, cross-platform
Docker Sandboxes	Docker	Official Docker support
Apple Container	Micro-VM	Apple’s Docker alternative (macOS 26+)

Key Findings

1. Strongest isolation: VM-based tools (Agent-Box, ClodPod, macSandbox) provide kernel-level isolation
2. Cross-platform: Docker-based solutions work on Linux, macOS, Windows
3. Best performance: Agent-Box’s SSHFS approach avoids VirtFS/9P bottlenecks
4. Multi-agent: Agentastic.dev and ClodPod best support running multiple AI agents
5. Future direction: Apple Container (macOS 26) may simplify VM-based isolation

Related Research

• Claude Code Sandbox - Claude Code’s built-in sandboxing features
• Claude Code Agents - Agent development patterns