Name: Zeroboot Vm Sandbox
Author: Aradotso

Install

Terminal · npx

$npx skills add https://github.com/nextlevelbuilder/ui-ux-pro-max-skill --skill ui-ux-pro-max

Works with Paperclip

How Zeroboot Vm Sandbox fits into a Paperclip company.

Zeroboot Vm Sandbox drops into any Paperclip agent that handles this kind of work. Assign it to a specialist inside a pre-configured PaperclipOrg company and the skill becomes available on every heartbeat — no prompt engineering, no tool wiring.

SaaS FactoryPaired

Pre-configured AI company — 18 agents, 18 skills, one-time purchase.

$27$59

Explore pack

Source file

SKILL.md315 linesmarkdown

Expand

1---2name: zeroboot-vm-sandbox3description: Sub-millisecond VM sandboxes for AI agents using copy-on-write KVM forking via Zeroboot4triggers:5  - run code in a sandbox6  - execute code safely in a VM7  - create an isolated sandbox for AI agents8  - spin up a VM sandbox fast9  - use zeroboot to run untrusted code10  - fork a VM with copy-on-write11  - sub-millisecond sandbox execution12  - secure code execution for AI13---14 15# Zeroboot VM Sandbox16 17> Skill by [ara.so](https://ara.so) — Daily 2026 Skills collection.18 19Zeroboot provides sub-millisecond KVM virtual machine sandboxes for AI agents using copy-on-write forking. Each sandbox is a real hardware-isolated VM (via Firecracker + KVM), not a container. A template VM is snapshotted once, then forked in ~0.8ms per execution using `mmap(MAP_PRIVATE)` CoW semantics.20 21## How It Works22 23```24Firecracker snapshot ──► mmap(MAP_PRIVATE) ──► KVM VM + restored CPU state25                           (copy-on-write)          (~0.8ms)26```27 281. **Template**: Firecracker boots once, pre-loads your runtime, snapshots memory + CPU state292. **Fork (~0.8ms)**: New KVM VM maps snapshot memory as CoW, restores CPU state303. **Isolation**: Each fork is a separate KVM VM with hardware-enforced memory isolation31 32## Installation33 34### Python SDK35 36```bash37pip install zeroboot38```39 40### Node/TypeScript SDK41 42```bash43npm install @zeroboot/sdk44# or45pnpm add @zeroboot/sdk46```47 48## Authentication49 50Set your API key as an environment variable:51 52```bash53export ZEROBOOT_API_KEY="zb_live_your_key_here"54```55 56Never hardcode keys in source files.57 58## Quick Start59 60### REST API (cURL)61 62```bash63curl -X POST https://api.zeroboot.dev/v1/exec \64  -H 'Content-Type: application/json' \65  -H "Authorization: Bearer $ZEROBOOT_API_KEY" \66  -d '{"code":"import numpy as np; print(np.random.rand(3))"}'67```68 69### Python70 71```python72import os73from zeroboot import Sandbox74 75# Initialize with API key from environment76sb = Sandbox(os.environ["ZEROBOOT_API_KEY"])77 78# Run Python code79result = sb.run("print(1 + 1)")80print(result)  # "2"81 82# Run multi-line code83result = sb.run("""84import numpy as np85arr = np.arange(10)86print(arr.mean())87""")88print(result)89```90 91### TypeScript / Node.js92 93```typescript94import { Sandbox } from "@zeroboot/sdk";95 96const apiKey = process.env.ZEROBOOT_API_KEY!;97const sb = new Sandbox(apiKey);98 99// Run JavaScript/Node code100const result = await sb.run("console.log(1 + 1)");101console.log(result); // "2"102 103// Run async code104const output = await sb.run(`105const data = [1, 2, 3, 4, 5];106const sum = data.reduce((a, b) => a + b, 0);107console.log(sum / data.length);108`);109console.log(output);110```111 112## Common Patterns113 114### AI Agent Code Execution Loop (Python)115 116```python117import os118from zeroboot import Sandbox119 120def execute_agent_code(code: str) -> dict:121    """Execute LLM-generated code in an isolated VM sandbox."""122    sb = Sandbox(os.environ["ZEROBOOT_API_KEY"])123    try:124        result = sb.run(code)125        return {"success": True, "output": result}126    except Exception as e:127        return {"success": False, "error": str(e)}128 129# Example: running agent-generated code safely130agent_code = """131import json132data = {"agent": "result", "value": 42}133print(json.dumps(data))134"""135response = execute_agent_code(agent_code)136print(response)137```138 139### Concurrent Sandbox Execution (Python)140 141```python142import os143import asyncio144from zeroboot import Sandbox145 146async def run_sandbox(code: str, index: int) -> str:147    sb = Sandbox(os.environ["ZEROBOOT_API_KEY"])148    result = await asyncio.to_thread(sb.run, code)149    return f"[{index}] {result}"150 151async def run_concurrent(snippets: list[str]):152    tasks = [run_sandbox(code, i) for i, code in enumerate(snippets)]153    results = await asyncio.gather(*tasks)154    return results155 156# Run 10 sandboxes concurrently157codes = [f"print({i} ** 2)" for i in range(10)]158outputs = asyncio.run(run_concurrent(codes))159for out in outputs:160    print(out)161```162 163### TypeScript: Agent Tool Integration164 165```typescript166import { Sandbox } from "@zeroboot/sdk";167 168interface ExecutionResult {169  success: boolean;170  output?: string;171  error?: string;172}173 174async function runInSandbox(code: string): Promise<ExecutionResult> {175  const sb = new Sandbox(process.env.ZEROBOOT_API_KEY!);176  try {177    const output = await sb.run(code);178    return { success: true, output };179  } catch (err) {180    return { success: false, error: String(err) };181  }182}183 184// Integrate as a tool for an LLM agent185const tool = {186  name: "execute_code",187  description: "Run code in an isolated VM sandbox",188  execute: async ({ code }: { code: string }) => runInSandbox(code),189};190```191 192### REST API with fetch (TypeScript)193 194```typescript195const API_BASE = "https://api.zeroboot.dev/v1";196 197async function execCode(code: string): Promise<string> {198  const res = await fetch(`${API_BASE}/exec`, {199    method: "POST",200    headers: {201      "Content-Type": "application/json",202      Authorization: `Bearer ${process.env.ZEROBOOT_API_KEY}`,203    },204    body: JSON.stringify({ code }),205  });206  if (!res.ok) {207    const err = await res.text();208    throw new Error(`Zeroboot error ${res.status}: ${err}`);209  }210  const data = await res.json();211  return data.output;212}213```214 215### Health Check216 217```bash218curl https://api.zeroboot.dev/v1/health219```220 221## API Reference222 223### `POST /v1/exec`224 225Execute code in a fresh sandbox fork.226 227**Request:**228```json229{230  "code": "print('hello')"231}232```233 234**Headers:**235```236Authorization: Bearer <ZEROBOOT_API_KEY>237Content-Type: application/json238```239 240**Response:**241```json242{243  "output": "hello\n",244  "duration_ms": 0.79245}246```247 248## Performance Characteristics249 250| Metric | Value |251|---|---|252| Spawn latency p50 | ~0.79ms |253| Spawn latency p99 | ~1.74ms |254| Memory per sandbox | ~265KB |255| Fork + exec Python | ~8ms |256| 1000 concurrent forks | ~815ms |257 258- Each sandbox is a real KVM VM — not a container or process jail259- Memory isolation is hardware-enforced (not software)260- CoW means only pages written by your code consume extra RAM261 262## Self-Hosting / Deployment263 264See [docs/DEPLOYMENT.md](docs/DEPLOYMENT.md) in the repo. Requirements:265- Linux host with KVM support (`/dev/kvm` accessible)266- Firecracker binary267- Rust 2021 edition toolchain268 269```bash270# Check KVM availability271ls /dev/kvm272 273# Clone and build274git clone https://github.com/adammiribyan/zeroboot275cd zeroboot276cargo build --release277```278 279## Architecture Notes280 281- **Snapshot layer**: Firecracker VM boots once per runtime template, memory + vCPU state saved to disk282- **Fork layer** (Rust): `mmap(MAP_PRIVATE)` on snapshot file → kernel handles CoW page faults per VM283- **Isolation**: Each fork has its own KVM VM file descriptors, vCPU, and page table — fully hardware-separated284- **No shared kernel**: Unlike containers, each sandbox runs its own kernel instance285 286## Troubleshooting287 288**`/dev/kvm not found` (self-hosted)**289```bash290# Enable KVM kernel module291sudo modprobe kvm292sudo modprobe kvm_intel  # or kvm_amd293```294 295**API returns 401 Unauthorized**296- Verify `ZEROBOOT_API_KEY` is set and starts with `zb_live_`297- Check the key is not expired in your dashboard298 299**Timeout on execution**300- Default execution timeout is enforced server-side301- Break large computations into smaller chunks302- Avoid infinite loops or blocking I/O in sandbox code303 304**High memory usage (self-hosted)**305- Each VM fork starts at ~265KB CoW overhead306- Pages are allocated on write — memory grows with sandbox activity307- Tune concurrent fork limits based on available RAM308 309## Resources310 311- [API Reference](https://github.com/adammiribyan/zeroboot/blob/main/docs/API.md)312- [Architecture Docs](https://github.com/adammiribyan/zeroboot/blob/main/docs/ARCHITECTURE.md)313- [Deployment Guide](https://github.com/adammiribyan/zeroboot/blob/main/docs/DEPLOYMENT.md)314- [Homepage](https://zeroboot.dev)315- [GitHub](https://github.com/adammiribyan/zeroboot)

Related skills

Agency Agents Ai Specialists

Install Agency Agents Ai Specialists skill for Claude Code from aradotso/trending-skills.

Agent Browser Automation

Install Agent Browser Automation skill for Claude Code from aradotso/trending-skills.

Antigravity Manager

Install Antigravity Manager skill for Claude Code from aradotso/trending-skills.