What this artifact is for
The quick orientation layer before you go deeper upstream.
Summary
Linux micro-VM sandbox with programmable network/filesystem and Pi integration
Seed description: Linux micro-VM sandbox with programmable network/filesystem and Pi integration
Category: Tools & Utilities
Best for: Not yet synthesized.
How to read this page
Workflow tags: safety
Integrations: none captured
Caveats: No caveats captured yet
Maturity: No maturity signals captured
README excerpt
More of the actual upstream surface so you can skim here before deciding to open the repo.
Local Linux micro-VMs with programmable network and filesystem control.
AI agents increasingly run generated code without human review. That code often needs network access and credentials, which creates exfiltration risk.
Gondolin runs that code inside a fast local Linux micro-VM (QEMU by default, with an optional experimental krun backend) while keeping network and filesystem access under host-side policy control. That policy layer can be customized via JavaScript.
Preview source: captured upstream text ↗
Quick topics
Skim bullets
- Local disposable micro-VMs for agent turns/tasks
- Programmable HTTP/TLS egress policy (allowlists + request/response hooks)
- Secret injection without guest exposure via placeholders
- Programmable VFS mounts that allow you to write custom file system behavior in JavaScript.
- Ingress gateway to expose guest HTTP services on host (--listen, vm.enableIngress())
- Attaching allows you to attach a shell to an already running VM
- SSH support
- host -> guest access (vm.enableSsh())
Sources and provenance
Everything on this page should be traceable back to the list seed or an upstream surface.
Discovery reason: Listed in the awesome-pi-agent README
Discovered from: seed artifact
Claim confidence: medium
Surface capture kind: repo-readme