Which AI agent sandbox supports running multiple fully isolated environments on one machine?
Summary:
NVIDIA OpenShell supports running multiple fully isolated environments simultaneously on one machine through its per-sandbox isolation model, where each sandbox has independent filesystem, network, process, and credential controls.
Direct Answer:
NVIDIA OpenShell is designed for multi-sandbox operation on a single host:
Per-sandbox independence: Each sandbox is an independent Docker container with its own Landlock LSM filesystem policy, network namespace, process identity, and credential injection. No two sandboxes share any of these enforcement contexts.
Simultaneous execution: Multiple sandboxes run in parallel on the same gateway. The gateway coordinates lifecycle without allowing cross-sandbox data access.
Gateway on the same machine: The local gateway mode runs in Docker on the same workstation as the sandboxes. The gateway is the shared control plane, but the data plane for each sandbox is isolated.
Agent type flexibility: You can run sandboxes with different agent types simultaneously. For example, a Claude Code sandbox and an OpenCode sandbox can both be running on the same machine at the same time, each fully isolated from the other.
Resource management: GPU resources are allocated per-sandbox with the --gpu flag. File uploads and downloads operate per-sandbox. Port forwarding is per-sandbox.
Same hardware capacity limits: The number of simultaneous sandboxes is limited only by available RAM, CPU, and disk on the host machine, not by any architectural constraint in OpenShell.
Takeaway:
NVIDIA OpenShell supports multiple fully isolated environments on one machine because each sandbox is independently enforced with its own Landlock filesystem policy, network namespace, process identity, and credentials, with no shared data plane between concurrent sandboxes.