alt Hacker NewsShow HN: Era – Open-source local sandbox for AI agents
Just watched this video by ThePrimeagen (https://www.youtube.com/watch?v=efwDZw7l2Nk) about attackers jailbreaking Claude to run cyber attacks. The core issue: AI agents need isolation.
We built ERA to fix this – local microVM-based sandboxing for AI-generated code with hardware-level security. Think containers, but safer. Such attacks wouldn't touch your host if running in ERA.
GitHub: https://github.com/BinSquare/ERA
Quick start: https://github.com/BinSquare/ERA/tree/main/era-agent/tutoria...
Would love your thoughts and feedback!
Comments
I am a bit confused how I would use this (maybe because I may not be your target audience?).
For example if I am coding with Kilocode and phpstorm. How would I use these microVms and what is the cloudflare worker for? I currently run a regular set of docker containers to run my code, how does this compare?
can you include a component diagram overview to give folks a quick idea of "what runs where?" before making the decision to try this out.
you wrote that this is local but what's up with the cloudflare subdir? do we need a cf account to run this?
I hate to speak negatively about someone's hard work but I am genuinely confused as to why this needs to be a separate product/service. Could I not spin up a container or a VM and run my agents in it? What is this sandbox letting the agent do safely that neither the current container or VM solutions are able to offer?
What exactly is a microVM?
This is great, and greatly needed with advanced LLM-assistant working.
Is there a way to install / run these from node.js / npm as well (not global), instead of installing them to the whole system ?
Would be a bon for IDEs to run code sandboxed locally!