always-further/nono
Secure, kernel-enforced sandbox CLI and SDKs for AI agents. Capability-based isolation with secure key management, atomic rollback, cryptographic immutable audit chain of provenance. Run your agents in a zero-trust environment.
Implements kernel-enforced sandboxing via Landlock (Linux 5.13+) and Seatbelt (macOS 10.5+) with irreversible capability-based access control applied before execution. Provides credential injection via proxy mode—keeping API keys entirely outside the sandbox—or environment injection from system keystores and 1Password. Includes Sigstore-based cryptographic verification of agent instruction files and scripts using DSSE envelopes and in-toto attestations to prevent supply chain attacks.
980 stars. Actively maintained with 267 commits in the last 30 days.
Stars
980
Forks
73
Language
Rust
License
Apache-2.0
Category
Last pushed
Mar 12, 2026
Commits (30d)
267
Get this data via API
curl "https://pt-edge.onrender.com/api/v1/quality/agents/always-further/nono"
Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.
Featured in
Compare
Related agents
e2b-dev/E2B
Open-source, secure environment with real-world tools for enterprise-grade agents.
alibaba/OpenSandbox
OpenSandbox is a general-purpose sandbox platform for AI applications, offering multi-language...
e2b-dev/infra
Infrastructure that's powering E2B Cloud.
boxlite-ai/boxlite
Sandboxes for every agent. Embeddable, stateful, snapshots, and hardware isolation.
eugene1g/agent-safehouse
Sandbox your local AI agents so they can read/write only what they need