API Reference¶

Comprehensive API documentation for LLM Sandbox.

Core Classes¶

SandboxSession¶

SandboxSession `module-attribute` ¶

SandboxSession = create_session

ArtifactSandboxSession¶

ArtifactSandboxSession ¶

ArtifactSandboxSession(
    backend: SandboxBackend = SandboxBackend.DOCKER,
    image: str | None = None,
    dockerfile: str | None = None,
    lang: str = SupportedLanguage.PYTHON,
    *,
    keep_template: bool = False,
    commit_container: bool = False,
    verbose: bool = False,
    runtime_configs: dict | None = None,
    workdir: str | None = "/sandbox",
    enable_plotting: bool = True,
    security_policy: SecurityPolicy | None = None,
    container_id: str | None = None,
    **kwargs: Any,
)

Sandbox session with artifact extraction capabilities.

Create a new artifact sandbox session.

The ArtifactSandboxSession provides a secure environment for running code that generates artifacts like plots, images, or other files. It supports multiple container backends (Docker, Kubernetes, Podman) and can capture and extract artifacts from the execution.

PARAMETER	DESCRIPTION
`backend`	Container backend to use (Docker, Kubernetes or Podman) TYPE: `SandboxBackend` DEFAULT: `DOCKER`
`image`	Container image to use (e.g., "vndee/sandbox-python-311-bullseye") TYPE: `str` DEFAULT: `None`
`dockerfile`	Path to Dockerfile TYPE: `str` DEFAULT: `None`
`lang`	Programming language (e.g., "python") TYPE: `str` DEFAULT: `PYTHON`
`keep_template`	Whether to keep the container template TYPE: `bool` DEFAULT: `False`
`commit_container`	Whether to commit container changes TYPE: `bool` DEFAULT: `False`
`verbose`	Enable verbose logging TYPE: `bool` DEFAULT: `False`
`runtime_configs`	Additional runtime configurations TYPE: `dict` DEFAULT: `None`
`workdir`	Working directory inside the container TYPE: `str` DEFAULT: `'/sandbox'`
`enable_plotting`	Whether to enable plot extraction TYPE: `bool` DEFAULT: `True`
`security_policy`	Security policy to enforce TYPE: `SecurityPolicy` DEFAULT: `None`
`container_id`	ID of existing container/pod to connect to TYPE: `str` DEFAULT: `None`
`**kwargs`	Additional keyword arguments for specific backends (e.g., client for Podman) TYPE: `Any` DEFAULT: `{}`

RAISES	DESCRIPTION
`MissingDependencyError`	If the required dependency for the chosen backend is not installed
`UnsupportedBackendError`	If the chosen backend is not supported

Examples:

Connect to existing container for artifact generation:

from llm_sandbox import ArtifactSandboxSession, SandboxBackend
from pathlib import Path
import base64

# Connect to existing container
with ArtifactSandboxSession(
    container_id='existing-container-id',
    lang="python",
    verbose=True,
    backend=SandboxBackend.DOCKER
) as session:
    # Code that generates plots in existing environment
    code = '''
    import matplotlib.pyplot as plt
    import numpy as np

    # Generate and plot data
    x = np.linspace(0, 10, 100)
    y = np.sin(x)

    plt.figure()
    plt.plot(x, y)
    plt.title('Plot from Existing Container')
    plt.show()
    '''

    result = session.run(code)
    print(f"Captured {len(result.plots)} plots")

    # Save captured plots
    for i, plot in enumerate(result.plots):
        plot_path = Path("plots") / f"existing_{i + 1:06d}.{plot.format.value}"
        with plot_path.open("wb") as f:
            f.write(base64.b64decode(plot.content_base64))

Basic usage with Docker backend:

from llm_sandbox import ArtifactSandboxSession, SandboxBackend
from pathlib import Path
import base64

# Create plots directory
Path("plots/docker").mkdir(parents=True, exist_ok=True)

# Run code that generates plots
with ArtifactSandboxSession(
    lang="python",
    verbose=True,
    image="ghcr.io/vndee/sandbox-python-311-bullseye",
    backend=SandboxBackend.DOCKER
) as session:
    # Example code that generates matplotlib, seaborn, and plotly plots
    code = '''
    import matplotlib.pyplot as plt
    import numpy as np

    # Generate and plot data
    x = np.linspace(0, 10, 100)
    y = np.sin(x)

    plt.figure()
    plt.plot(x, y)
    plt.title('Simple Sine Wave')
    plt.show()
    '''

    result = session.run(code)
    print(f"Captured {len(result.plots)} plots")

    # Save captured plots
    for i, plot in enumerate(result.plots):
        plot_path = Path("plots/docker") / f"{i + 1:06d}.{plot.format.value}"
        with plot_path.open("wb") as f:
            f.write(base64.b64decode(plot.content_base64))

Using Podman backend:

from podman import PodmanClient

# Initialize Podman client
podman_client = PodmanClient(base_url="unix:///path/to/podman.sock")

with ArtifactSandboxSession(
    client=podman_client,  # Podman specific
    lang="python",
    verbose=True,
    image="ghcr.io/vndee/sandbox-python-311-bullseye",
    backend=SandboxBackend.PODMAN
) as session:
    result = session.run(code)

Using Kubernetes backend:

with ArtifactSandboxSession(
    lang="python",
    verbose=True,
    image="ghcr.io/vndee/sandbox-python-311-bullseye",
    backend=SandboxBackend.KUBERNETES
) as session:
    result = session.run(code)

Source code in llm_sandbox/session.py

def __init__(
    self,
    backend: SandboxBackend = SandboxBackend.DOCKER,
    image: str | None = None,
    dockerfile: str | None = None,
    lang: str = SupportedLanguage.PYTHON,
    *,
    keep_template: bool = False,
    commit_container: bool = False,
    verbose: bool = False,
    runtime_configs: dict | None = None,
    workdir: str | None = "/sandbox",
    enable_plotting: bool = True,
    security_policy: SecurityPolicy | None = None,
    container_id: str | None = None,
    **kwargs: Any,
) -> None:
    """Create a new artifact sandbox session.

    The ArtifactSandboxSession provides a secure environment for running code that generates artifacts
    like plots, images, or other files. It supports multiple container backends (Docker, Kubernetes, Podman)
    and can capture and extract artifacts from the execution.

    Args:
        backend (SandboxBackend): Container backend to use (Docker, Kubernetes or Podman)
        image (str): Container image to use (e.g., "vndee/sandbox-python-311-bullseye")
        dockerfile (str, optional): Path to Dockerfile
        lang (str): Programming language (e.g., "python")
        keep_template (bool, optional): Whether to keep the container template
        commit_container (bool, optional): Whether to commit container changes
        verbose (bool, optional): Enable verbose logging
        runtime_configs (dict, optional): Additional runtime configurations
        workdir (str, optional): Working directory inside the container
        enable_plotting (bool, optional): Whether to enable plot extraction
        security_policy (SecurityPolicy, optional): Security policy to enforce
        container_id (str, optional): ID of existing container/pod to connect to
        **kwargs: Additional keyword arguments for specific backends (e.g., client for Podman)

    Raises:
        MissingDependencyError: If the required dependency for the chosen backend is not installed
        UnsupportedBackendError: If the chosen backend is not supported

    Examples:
        Connect to existing container for artifact generation:
        ```python
        from llm_sandbox import ArtifactSandboxSession, SandboxBackend
        from pathlib import Path
        import base64

        # Connect to existing container
        with ArtifactSandboxSession(
            container_id='existing-container-id',
            lang="python",
            verbose=True,
            backend=SandboxBackend.DOCKER
        ) as session:
            # Code that generates plots in existing environment
            code = '''
            import matplotlib.pyplot as plt
            import numpy as np

            # Generate and plot data
            x = np.linspace(0, 10, 100)
            y = np.sin(x)

            plt.figure()
            plt.plot(x, y)
            plt.title('Plot from Existing Container')
            plt.show()
            '''

            result = session.run(code)
            print(f"Captured {len(result.plots)} plots")

            # Save captured plots
            for i, plot in enumerate(result.plots):
                plot_path = Path("plots") / f"existing_{i + 1:06d}.{plot.format.value}"
                with plot_path.open("wb") as f:
                    f.write(base64.b64decode(plot.content_base64))
        ```

        Basic usage with Docker backend:
        ```python
        from llm_sandbox import ArtifactSandboxSession, SandboxBackend
        from pathlib import Path
        import base64

        # Create plots directory
        Path("plots/docker").mkdir(parents=True, exist_ok=True)

        # Run code that generates plots
        with ArtifactSandboxSession(
            lang="python",
            verbose=True,
            image="ghcr.io/vndee/sandbox-python-311-bullseye",
            backend=SandboxBackend.DOCKER
        ) as session:
            # Example code that generates matplotlib, seaborn, and plotly plots
            code = '''
            import matplotlib.pyplot as plt
            import numpy as np

            # Generate and plot data
            x = np.linspace(0, 10, 100)
            y = np.sin(x)

            plt.figure()
            plt.plot(x, y)
            plt.title('Simple Sine Wave')
            plt.show()
            '''

            result = session.run(code)
            print(f"Captured {len(result.plots)} plots")

            # Save captured plots
            for i, plot in enumerate(result.plots):
                plot_path = Path("plots/docker") / f"{i + 1:06d}.{plot.format.value}"
                with plot_path.open("wb") as f:
                    f.write(base64.b64decode(plot.content_base64))
        ```
        Using Podman backend:
        ```python
        from podman import PodmanClient

        # Initialize Podman client
        podman_client = PodmanClient(base_url="unix:///path/to/podman.sock")

        with ArtifactSandboxSession(
            client=podman_client,  # Podman specific
            lang="python",
            verbose=True,
            image="ghcr.io/vndee/sandbox-python-311-bullseye",
            backend=SandboxBackend.PODMAN
        ) as session:
            result = session.run(code)
        ```

        Using Kubernetes backend:
        ```python
        with ArtifactSandboxSession(
            lang="python",
            verbose=True,
            image="ghcr.io/vndee/sandbox-python-311-bullseye",
            backend=SandboxBackend.KUBERNETES
        ) as session:
            result = session.run(code)
        ```

    """
    # Create the base session
    self._session: BaseSession = create_session(
        backend=backend,
        image=image,
        dockerfile=dockerfile,
        lang=lang,
        keep_template=keep_template,
        commit_container=commit_container,
        verbose=verbose,
        runtime_configs=runtime_configs,
        workdir=workdir,
        security_policy=security_policy,
        container_id=container_id,
        **kwargs,
    )

    self.enable_plotting = enable_plotting

Functions¶

enter ¶

__enter__() -> ArtifactSandboxSession

Enter the context manager.

Source code in llm_sandbox/session.py

def __enter__(self) -> "ArtifactSandboxSession":
    """Enter the context manager."""
    self._session.__enter__()
    return self

exit ¶

__exit__(
    exc_type: type[BaseException] | None,
    exc_val: BaseException | None,
    exc_tb: TracebackType | None,
) -> None

Exit the context manager.

Source code in llm_sandbox/session.py

def __exit__(
    self,
    exc_type: type[BaseException] | None,
    exc_val: BaseException | None,
    exc_tb: TracebackType | None,
) -> None:
    """Exit the context manager."""
    return self._session.__exit__(exc_type, exc_val, exc_tb)

getattr ¶

__getattr__(name: str) -> Any

Delegate any other attributes/methods to the underlying session.

Source code in llm_sandbox/session.py

def __getattr__(self, name: str) -> Any:
    """Delegate any other attributes/methods to the underlying session."""
    return getattr(self._session, name)

clear_plots ¶

clear_plots() -> None

Manually clear all plots and reset the plot counter.

This method can be called between runs to clear existing plots without creating a new session.

RAISES	DESCRIPTION
`Exception`	If plot clearing is not supported or fails

Source code in llm_sandbox/session.py

def clear_plots(self) -> None:
    """Manually clear all plots and reset the plot counter.

    This method can be called between runs to clear existing plots
    without creating a new session.

    Raises:
        Exception: If plot clearing is not supported or fails

    """
    if not self.enable_plotting:
        return

    self._clear_plots_in_container()

run ¶

run(
    code: str,
    libraries: list | None = None,
    timeout: float | None = None,
    clear_plots: bool = False,
) -> ExecutionResult

Run code in the sandbox session and extract any generated artifacts.

This method executes the provided code in an isolated environment and captures any generated artifacts (e.g., plots, figures). When plotting is enabled, it delegates to the language handler's run_with_artifacts method for language-specific artifact extraction.

PARAMETER	DESCRIPTION
`code`	The code to execute. Can include plotting commands from matplotlib, seaborn, plotly, or other visualization libraries. TYPE: `str`
`libraries`	Additional libraries to install before running the code. Defaults to None. TYPE: `list \| None` DEFAULT: `None`
`timeout`	Timeout in seconds for the code execution. Defaults to the configuration's execution_timeout (typically 60) or 60 if not configured. TYPE: `float \| None` DEFAULT: `None`
`clear_plots`	Whether to clear existing plots before running the code. Defaults to False. TYPE: `bool` DEFAULT: `False`

RETURNS	DESCRIPTION
`ExecutionResult`	An object containing: - exit_code (int): The exit code of the execution - stdout (str): Standard output from the code execution - stderr (str): Standard error from the code execution - plots (list[Plot]): List of captured plots, each containing: - content_base64 (str): Base64 encoded plot data - format (PlotFormat): Format of the plot (e.g., 'png', 'svg') TYPE: `ExecutionResult`

RAISES	DESCRIPTION
`LanguageNotSupportPlotError`	If the language does not support plot detection

Examples:

Basic plotting example:

with ArtifactSandboxSession(
    lang="python",
    verbose=True,
    image="ghcr.io/vndee/sandbox-python-311-bullseye"
) as session:
    code = '''
    import matplotlib.pyplot as plt
    import numpy as np

    x = np.linspace(0, 10, 100)
    y = np.sin(x)
    plt.plot(x, y)
    plt.title('Sine Wave')
    plt.show()
    '''
    result = session.run(code)
    print(f"Generated {len(result.plots)} plots")

Multiple plot types and libraries:

code = '''
import matplotlib.pyplot as plt
import seaborn as sns
import plotly.express as px
import pandas as pd
import numpy as np

# Matplotlib plot
plt.figure(figsize=(10, 6))
x = np.linspace(0, 10, 100)
plt.plot(x, np.sin(x))
plt.title('Matplotlib: Sine Wave')
plt.show()

# Seaborn plot
data = pd.DataFrame({
    'x': np.random.randn(100),
    'y': np.random.randn(100)
})
sns.scatterplot(data=data, x='x', y='y')
plt.title('Seaborn: Scatter Plot')
plt.show()

# Plotly plot
fig = px.line(data, x='x', y='y', title='Plotly: Line Plot')
fig.show()
'''

result = session.run(code, libraries=['plotly'])

# Save the generated plots
for i, plot in enumerate(result.plots):
    with open(f'plot_{i}.{plot.format.value}', 'wb') as f:
        f.write(base64.b64decode(plot.content_base64))

Installing additional libraries:

code = '''
import torch
import torch.nn as nn
print(f"PyTorch version: {torch.__version__}")
'''

result = session.run(code, libraries=['torch'])
print(result.stdout)

Clearing plots between runs:

with ArtifactSandboxSession(lang="python") as session:
    # First run with plots
    plot_code = '''
    import matplotlib.pyplot as plt
    plt.plot([1, 2, 3], [1, 4, 2])
    plt.show()
    '''
    result1 = session.run(plot_code)
    print(f"First run: {len(result1.plots)} plots")

    # Clear plots and run again
    result2 = session.run("print('hello world')", clear_plots=True)
    print(f"Second run: {len(result2.plots)} plots")

    # Manual plot clearing
    session.clear_plots()
    result3 = session.run(plot_code)
    print(f"Third run: {len(result3.plots)} plots")

Source code in llm_sandbox/session.py

def run(
    self,
    code: str,
    libraries: list | None = None,
    timeout: float | None = None,
    clear_plots: bool = False,
) -> ExecutionResult:
    """Run code in the sandbox session and extract any generated artifacts.

    This method executes the provided code in an isolated environment and captures any
    generated artifacts (e.g., plots, figures). When plotting is enabled, it delegates
    to the language handler's run_with_artifacts method for language-specific artifact
    extraction.

    Args:
        code (str): The code to execute. Can include plotting commands from matplotlib,
                    seaborn, plotly, or other visualization libraries.
        libraries (list | None, optional): Additional libraries to install before running
                                            the code. Defaults to None.
        timeout (float | None, optional): Timeout in seconds for the code execution.
                                            Defaults to the configuration's execution_timeout
                                            (typically 60) or 60 if not configured.
        clear_plots (bool, optional): Whether to clear existing plots before running
                                        the code. Defaults to False.

    Returns:
        ExecutionResult: An object containing:
            - exit_code (int): The exit code of the execution
            - stdout (str): Standard output from the code execution
            - stderr (str): Standard error from the code execution
            - plots (list[Plot]): List of captured plots, each containing:
                - content_base64 (str): Base64 encoded plot data
                - format (PlotFormat): Format of the plot (e.g., 'png', 'svg')

    Raises:
        LanguageNotSupportPlotError: If the language does not support plot detection

    Examples:
        Basic plotting example:
        ```python
        with ArtifactSandboxSession(
            lang="python",
            verbose=True,
            image="ghcr.io/vndee/sandbox-python-311-bullseye"
        ) as session:
            code = '''
            import matplotlib.pyplot as plt
            import numpy as np

            x = np.linspace(0, 10, 100)
            y = np.sin(x)
            plt.plot(x, y)
            plt.title('Sine Wave')
            plt.show()
            '''
            result = session.run(code)
            print(f"Generated {len(result.plots)} plots")
        ```

        Multiple plot types and libraries:
        ```python
        code = '''
        import matplotlib.pyplot as plt
        import seaborn as sns
        import plotly.express as px
        import pandas as pd
        import numpy as np

        # Matplotlib plot
        plt.figure(figsize=(10, 6))
        x = np.linspace(0, 10, 100)
        plt.plot(x, np.sin(x))
        plt.title('Matplotlib: Sine Wave')
        plt.show()

        # Seaborn plot
        data = pd.DataFrame({
            'x': np.random.randn(100),
            'y': np.random.randn(100)
        })
        sns.scatterplot(data=data, x='x', y='y')
        plt.title('Seaborn: Scatter Plot')
        plt.show()

        # Plotly plot
        fig = px.line(data, x='x', y='y', title='Plotly: Line Plot')
        fig.show()
        '''

        result = session.run(code, libraries=['plotly'])

        # Save the generated plots
        for i, plot in enumerate(result.plots):
            with open(f'plot_{i}.{plot.format.value}', 'wb') as f:
                f.write(base64.b64decode(plot.content_base64))
        ```

        Installing additional libraries:
        ```python
        code = '''
        import torch
        import torch.nn as nn
        print(f"PyTorch version: {torch.__version__}")
        '''

        result = session.run(code, libraries=['torch'])
        print(result.stdout)
        ```

        Clearing plots between runs:
        ```python
        with ArtifactSandboxSession(lang="python") as session:
            # First run with plots
            plot_code = '''
            import matplotlib.pyplot as plt
            plt.plot([1, 2, 3], [1, 4, 2])
            plt.show()
            '''
            result1 = session.run(plot_code)
            print(f"First run: {len(result1.plots)} plots")

            # Clear plots and run again
            result2 = session.run("print('hello world')", clear_plots=True)
            print(f"Second run: {len(result2.plots)} plots")

            # Manual plot clearing
            session.clear_plots()
            result3 = session.run(plot_code)
            print(f"Third run: {len(result3.plots)} plots")
        ```

    """
    # Check if plotting is enabled and language supports it
    if self.enable_plotting and not self._session.language_handler.is_support_plot_detection:
        raise LanguageNotSupportPlotError(self._session.language_handler.name)

    # Clear plots if requested
    if clear_plots and self.enable_plotting:
        self._clear_plots_in_container()

    # Use config default timeout if not specified
    if timeout is not None:
        effective_timeout = timeout
    else:
        config_timeout = self._session.config.get_execution_timeout()
        effective_timeout = config_timeout if config_timeout is not None else 60

    # Delegate to language handler for language-specific artifact extraction
    result, plots = self._session.language_handler.run_with_artifacts(
        container=self._session,  # type: ignore[arg-type]
        code=code,
        libraries=libraries,
        enable_plotting=self.enable_plotting,
        output_dir="/tmp/sandbox_plots",
        timeout=int(effective_timeout),
    )

    return ExecutionResult(
        exit_code=result.exit_code,
        stdout=result.stdout,
        stderr=result.stderr,
        plots=plots,
    )

Plot Management¶

The ArtifactSandboxSession class provides built-in support for capturing and managing plots generated by your code. This section covers the plot management features:

Supported Languages: Python, R

Supported Libraries:

Python: matplotlib, seaborn, plotly, bokeh
R: base R graphics, ggplot2, plotly, lattice

Key Features:

Automatic Plot Capture: Plots are automatically captured and returned in the execution result
Plot Accumulation: By default, plots accumulate across multiple runs within the same session
Manual Clearing: Use session.clear_plots() to manually clear all plots
Automatic Clearing: Use session.run(code, clear_plots=True) to clear plots before execution
Persistent Counter: Plot numbering persists across runs for proper ordering

Methods:

run(code, libraries=None, timeout=None, clear_plots=False): Execute code and capture artifacts
clear_plots(): Manually clear all plots and reset the plot counter

Example - Plot Accumulation:

with ArtifactSandboxSession(lang="python", enable_plotting=True) as session:
    # Run 1: Generate 2 plots
    result1 = session.run("""
import matplotlib.pyplot as plt
plt.plot([1, 2, 3])
plt.show()
plt.plot([4, 5, 6])
plt.show()
    """)
    print(len(result1.plots))  # Output: 2

    # Run 2: Generate 1 more plot (accumulates)
    result2 = session.run("""
import matplotlib.pyplot as plt
plt.plot([7, 8, 9])
plt.show()
    """)
    print(len(result2.plots))  # Output: 3 (accumulated)

Example - Manual Clearing:

with ArtifactSandboxSession(lang="python", enable_plotting=True) as session:
    result1 = session.run("import matplotlib.pyplot as plt; plt.plot([1,2,3]); plt.show()")
    print(len(result1.plots))  # Output: 1

    # Manually clear plots
    session.clear_plots()

    result2 = session.run("import matplotlib.pyplot as plt; plt.plot([4,5,6]); plt.show()")
    print(len(result2.plots))  # Output: 1 (reset after clear)

Example - Automatic Clearing:

with ArtifactSandboxSession(lang="r", enable_plotting=True) as session:
    result1 = session.run("plot(1:10)")
    print(len(result1.plots))  # Output: 1

    # Clear automatically before running
    result2 = session.run("hist(rnorm(100))", clear_plots=True)
    print(len(result2.plots))  # Output: 1 (automatically cleared)

InteractiveSandboxSession¶

InteractiveSandboxSession ¶

InteractiveSandboxSession(
    *,
    backend: SandboxBackend = SandboxBackend.DOCKER,
    lang: str | SupportedLanguage = SupportedLanguage.PYTHON,
    kernel_type: KernelType | str = KernelType.IPYTHON,
    max_memory: str | None = "1GB",
    history_size: int = 1000,
    timeout: float | None = 300.0,
    runtime_configs: dict[str, Any] | None = None,
    **kwargs: Any,
)

Bases: BaseSession

Interactive sandbox session that preserves interpreter state across runs.

This class provides a persistent Python execution environment using an IPython kernel that maintains state across multiple code executions. It supports Docker, Podman, and Kubernetes backends, allowing you to choose the backend that best fits your infrastructure.

Unlike standard SandboxSession which creates a fresh execution context for each run(), InteractiveSandboxSession maintains a persistent interpreter, making it ideal for notebook-style workflows, AI agent interactions, and multi-step data analysis.

Initialize the interactive session.

PARAMETER	DESCRIPTION
`backend`	The sandbox backend to use (docker, podman, or kubernetes) TYPE: `SandboxBackend` DEFAULT: `DOCKER`
`lang`	Programming language (currently only Python is supported for interactive sessions) TYPE: `str \| SupportedLanguage` DEFAULT: `PYTHON`
`kernel_type`	Kernel backend used for execution (default: ipython) TYPE: `KernelType \| str` DEFAULT: `IPYTHON`
`max_memory`	Optional memory limit TYPE: `str \| None` DEFAULT: `'1GB'`
`history_size`	Number of cached execution entries retained in the kernel TYPE: `int` DEFAULT: `1000`
`timeout`	Default per-cell timeout in seconds TYPE: `float \| None` DEFAULT: `300.0`
`runtime_configs`	Backend-specific runtime configurations TYPE: `dict[str, Any] \| None` DEFAULT: `None`
`**kwargs`	Additional keyword arguments to pass to the backend session TYPE: `Any` DEFAULT: `{}`

RAISES	DESCRIPTION
`LanguageNotSupportedError`	If language other than Python is specified
`UnsupportedBackendError`	If the backend is not supported

Source code in llm_sandbox/interactive.py

def __init__(
    self,
    *,
    backend: SandboxBackend = SandboxBackend.DOCKER,
    lang: str | SupportedLanguage = SupportedLanguage.PYTHON,
    kernel_type: KernelType | str = KernelType.IPYTHON,
    max_memory: str | None = "1GB",
    history_size: int = 1000,
    timeout: float | None = 300.0,
    runtime_configs: dict[str, Any] | None = None,
    **kwargs: Any,
) -> None:
    """Initialize the interactive session.

    Args:
        backend: The sandbox backend to use (docker, podman, or kubernetes)
        lang: Programming language (currently only Python is supported for interactive sessions)
        kernel_type: Kernel backend used for execution (default: ipython)
        max_memory: Optional memory limit
        history_size: Number of cached execution entries retained in the kernel
        timeout: Default per-cell timeout in seconds
        runtime_configs: Backend-specific runtime configurations
        **kwargs: Additional keyword arguments to pass to the backend session

    Raises:
        LanguageNotSupportedError: If language other than Python is specified
        UnsupportedBackendError: If the backend is not supported

    """
    lang_value = str(lang)
    if lang_value.lower() != SupportedLanguage.PYTHON:
        raise LanguageNotSupportedError(lang_value)

    kernel_enum = KernelType(kernel_type)
    runtime_configs = runtime_configs.copy() if runtime_configs else {}
    if max_memory:
        runtime_configs.setdefault("mem_limit", max_memory)

    if timeout is not None and "execution_timeout" not in kwargs:
        kwargs["execution_timeout"] = timeout

    kwargs.setdefault("lang", SupportedLanguage.PYTHON)

    # Create the backend session using composition
    self._backend_session = _create_backend_session(
        backend=backend,
        runtime_configs=runtime_configs,
        **kwargs,
    )

    # Initialize BaseSession with the same config as backend session
    super().__init__(config=self._backend_session.config)

    self.settings = InteractiveSettings(
        kernel_type=kernel_enum,
        max_memory=max_memory,
        history_size=history_size,
        timeout=timeout,
    )

    workdir = self.config.workdir.rstrip("/")
    self._channel_dir = f"{workdir}/.interactive"
    self._commands_dir = f"{self._channel_dir}/commands"
    self._results_dir = f"{self._channel_dir}/results"
    self._runner_script_path = f"{self._channel_dir}/runner.py"
    self._ready_file = f"{self._channel_dir}/ready"
    self._pid_file = f"{self._channel_dir}/runner.pid"
    self._log_file = f"{self._channel_dir}/runner.log"
    self._runner_ready = False
    self._python_exec_path = self._backend_session.python_executable_path
    self._pip_exec_path = self._backend_session.pip_executable_path
    self._pip_cache_dir = self._backend_session.pip_cache_dir_path

Functions¶

close ¶

close() -> None

Close the interactive session.

Source code in llm_sandbox/interactive.py

def close(self) -> None:
    """Close the interactive session."""
    self._stop_runner_process()
    if self._backend_session:
        self._backend_session.close()
    # Manually set is_open to False without calling super().close()
    # The backend session manages the timer cleanup, so we don't need to stop a duplicate timer
    self.is_open = False

copy_from_runtime ¶

copy_from_runtime(src: str, dest: str) -> None

Copy a file from the backend container.

PARAMETER	DESCRIPTION
`src`	Source path in the container TYPE: `str`
`dest`	Destination path on the host TYPE: `str`

Source code in llm_sandbox/interactive.py

def copy_from_runtime(self, src: str, dest: str) -> None:
    """Copy a file from the backend container.

    Args:
        src: Source path in the container
        dest: Destination path on the host

    """
    return self._backend_session.copy_from_runtime(src, dest)

copy_to_runtime ¶

copy_to_runtime(src: str, dest: str) -> None

Copy a file to the backend container.

PARAMETER	DESCRIPTION
`src`	Source path on the host TYPE: `str`
`dest`	Destination path in the container TYPE: `str`

Source code in llm_sandbox/interactive.py

def copy_to_runtime(self, src: str, dest: str) -> None:
    """Copy a file to the backend container.

    Args:
        src: Source path on the host
        dest: Destination path in the container

    """
    return self._backend_session.copy_to_runtime(src, dest)

execute_command ¶

execute_command(command: str, workdir: str | None = None) -> ConsoleOutput

Execute a command in the backend container.

PARAMETER	DESCRIPTION
`command`	The command to execute TYPE: `str`
`workdir`	Optional working directory TYPE: `str \| None` DEFAULT: `None`

RETURNS	DESCRIPTION
`ConsoleOutput`	The command output TYPE: `ConsoleOutput`

Source code in llm_sandbox/interactive.py

def execute_command(self, command: str, workdir: str | None = None) -> ConsoleOutput:
    """Execute a command in the backend container.

    Args:
        command: The command to execute
        workdir: Optional working directory

    Returns:
        ConsoleOutput: The command output

    """
    return self._backend_session.execute_command(command, workdir=workdir)

execute_commands ¶

execute_commands(
    commands: list[str | tuple[str, str | None]], workdir: str | None = None
) -> ConsoleOutput

Execute multiple commands in the backend container.

PARAMETER	DESCRIPTION
`commands`	List of commands to execute TYPE: `list[str \| tuple[str, str \| None]]`
`workdir`	Optional working directory TYPE: `str \| None` DEFAULT: `None`

RETURNS	DESCRIPTION
`ConsoleOutput`	The output of the last command TYPE: `ConsoleOutput`

Source code in llm_sandbox/interactive.py

def execute_commands(
    self, commands: list[str | tuple[str, str | None]], workdir: str | None = None
) -> ConsoleOutput:
    """Execute multiple commands in the backend container.

    Args:
        commands: List of commands to execute
        workdir: Optional working directory

    Returns:
        ConsoleOutput: The output of the last command

    """
    return self._backend_session.execute_commands(commands, workdir=workdir)

open ¶

open() -> None

Open interactive session and prepare runtime assets.

RAISES	DESCRIPTION
`ContainerError`	If runtime dependencies cannot be installed or runner fails to start

Source code in llm_sandbox/interactive.py

def open(self) -> None:
    """Open interactive session and prepare runtime assets.

    Raises:
        ContainerError: If runtime dependencies cannot be installed or runner fails to start

    """
    # Open backend session first (this will start the session timer)
    self._backend_session.open()
    # Sync session state from backend session without starting a duplicate timer
    # The backend session manages the timer, so we don't call super().open()
    self.is_open = True
    # Sync session start time from backend session for timeout checking
    # Access private attribute to sync timer state (backend session manages the actual timer)
    self._session_start_time = getattr(self._backend_session, "_session_start_time", None)
    # Copy container reference from backend session
    self.container = self._backend_session.container
    self.container_api = self._backend_session.container_api
    try:
        self._bootstrap_runtime()
    except Exception:
        self.close()
        raise

run ¶

run(code: str, libraries: list[str] | None = None, timeout: float | None = None) -> ConsoleOutput

Execute code in the persistent interpreter context.

PARAMETER	DESCRIPTION
`code`	The Python code to execute TYPE: `str`
`libraries`	Optional list of libraries to install before execution TYPE: `list[str] \| None` DEFAULT: `None`
`timeout`	Maximum execution time in seconds TYPE: `float \| None` DEFAULT: `None`

RETURNS	DESCRIPTION
`ConsoleOutput`	ConsoleOutput containing stdout, stderr, and exit code

RAISES	DESCRIPTION
`NotOpenSessionError`	If the session is not open
`ContainerError`	If the interactive runtime is not ready
`SandboxTimeoutError`	If execution exceeds timeout

Source code in llm_sandbox/interactive.py

def run(self, code: str, libraries: list[str] | None = None, timeout: float | None = None) -> ConsoleOutput:
    """Execute code in the persistent interpreter context.

    Args:
        code: The Python code to execute
        libraries: Optional list of libraries to install before execution
        timeout: Maximum execution time in seconds

    Returns:
        ConsoleOutput containing stdout, stderr, and exit code

    Raises:
        NotOpenSessionError: If the session is not open
        ContainerError: If the interactive runtime is not ready
        SandboxTimeoutError: If execution exceeds timeout

    """
    if not self.container or not self.is_open:
        raise NotOpenSessionError

    if not self._runner_ready:
        msg = "Interactive runtime is not ready"
        raise ContainerError(msg)

    self._check_session_timeout()
    actual_timeout = timeout or self.settings.timeout or self.config.get_execution_timeout()
    self.install(libraries)

    request_id = uuid.uuid4().hex
    command_path = f"{self._commands_dir}/command-{request_id}.json"
    result_path = f"{self._results_dir}/result-{request_id}.json"

    self._write_remote_command(command_path, request_id, code)

    if not self._wait_for_remote_file(result_path, actual_timeout):
        self._interrupt_runner()
        msg = f"Interactive execution timed out after {actual_timeout} seconds"
        raise SandboxTimeoutError(msg, timeout_duration=actual_timeout)

    payload = self._read_remote_result(result_path)
    self.execute_command(f"rm -f {result_path}")
    exit_code = 0 if payload.get("success") else 1
    stdout = payload.get("stdout", "")
    stderr = payload.get("stderr", "")
    return ConsoleOutput(exit_code=exit_code, stdout=stdout, stderr=stderr)

The InteractiveSandboxSession class provides a persistent Python execution environment where state is maintained across multiple run() calls. This is ideal for notebook-style workflows, AI agent interactions, and multi-step data analysis.

Key Features:

State Persistence: Variables, functions, and imports persist across runs
IPython Support: Full IPython kernel with magic commands
Configurable Execution: Customizable timeout, memory limits, and history size
File-based Communication: Uses a command/result queue system for reliability

Usage Example:

from llm_sandbox import InteractiveSandboxSession

with InteractiveSandboxSession(lang="python") as session:
    # Define a variable
    session.run("x = 42")

    # Use the variable in next execution
    result = session.run("print(f'The answer is {x}')")
    print(result.stdout)  # Output: The answer is 42

IPython Magic Commands:

with InteractiveSandboxSession(lang="python") as session:
    # List variables
    result = session.run("%who")

    # Execute shell commands
    result = session.run("!ls -la")

    # Time code execution
    result = session.run("%%timeit\nsum(range(1000))")

Limitations: - Python language only - IPython kernel only

For detailed usage examples, see the Interactive Sessions Guide.

InteractiveSettings¶

InteractiveSettings `dataclass` ¶

InteractiveSettings(
    kernel_type: KernelType = KernelType.IPYTHON,
    max_memory: str | None = None,
    history_size: int = 1000,
    timeout: float | None = 300.0,
    poll_interval: float = 0.1,
)

Configuration for interactive execution.

ATTRIBUTE	DESCRIPTION
`kernel_type`	Kernel backend used for execution (default: `KernelType.IPYTHON`). TYPE: `KernelType`
`max_memory`	Optional memory limit passed to the runtime backend. TYPE: `str \| None`
`history_size`	Number of cached execution entries retained in the kernel (default: 1000). TYPE: `int`
`timeout`	Default per-cell timeout in seconds; `None` means no timeout (default: 300). TYPE: `float \| None`
`poll_interval`	Interval in seconds for polling runner status files (default: 0.1). TYPE: `float`

Functions¶

__post_init__ ¶

__post_init__() -> None

Validate configuration values.

Source code in llm_sandbox/interactive.py

def __post_init__(self) -> None:
    """Validate configuration values."""
    if self.history_size < 0:
        msg = "history_size must be non-negative"
        raise ValueError(msg)
    if self.poll_interval <= 0:
        msg = "poll_interval must be positive"
        raise ValueError(msg)

Configuration class for interactive session behavior.

Parameters:

Parameter	Type	Default	Description
`kernel_type`	`KernelType`	`IPYTHON`	Type of kernel to use
`max_memory`	`str`	`"1GB"`	Memory limit for the session
`history_size`	`int`	`1000`	Number of execution results to cache
`timeout`	`int`	`300`	Per-cell timeout in seconds
`poll_interval`	`float`	`0.1`	Polling interval for results (seconds)

Usage Example:

from llm_sandbox import InteractiveSandboxSession, InteractiveSettings, KernelType

settings = InteractiveSettings(
    kernel_type=KernelType.IPYTHON,
    max_memory="2GB",
    history_size=500,
    timeout=600,
    poll_interval=0.1
)

with InteractiveSandboxSession(
    lang="python",
    interactive_settings=settings
) as session:
    result = session.run("print('Hello with custom settings!')")

KernelType¶

KernelType ¶

Bases: StrEnum

Supported kernel types for interactive sessions.

Enumeration of supported kernel types for interactive sessions.

Values:

IPYTHON: IPython kernel (currently the only supported option)

Data Classes¶

ConsoleOutput¶

ConsoleOutput `dataclass` ¶

ConsoleOutput(exit_code: int = 0, stderr: str = '', stdout: str = '')

Represents the standard output and standard error from code execution or a command.

ATTRIBUTE	DESCRIPTION
`exit_code`	The exit code of the executed code or command. 0 typically indicates success. TYPE: `int`
`stderr`	The content written to the standard error stream. TYPE: `str`
`stdout`	The content written to the standard output stream. TYPE: `str`

Functions¶

success ¶

success() -> bool

Check if the execution was successful (exit code is 0).

RETURNS	DESCRIPTION
`bool`	True if `exit_code` is 0, False otherwise. TYPE: `bool`

Source code in llm_sandbox/data.py

def success(self) -> bool:
    r"""Check if the execution was successful (exit code is 0).

    Returns:
        bool: True if `exit_code` is 0, False otherwise.

    """
    return not self.exit_code

text ¶

text() -> str

Get the text representation of the console output (stdout).

.. deprecated:: 0.1.0 The text property is deprecated and will be removed in a future version. Use the stdout attribute directly instead.

RETURNS	DESCRIPTION
`str`	The content of the standard output stream. TYPE: `str`

Source code in llm_sandbox/data.py

def text(self) -> str:
    r"""Get the text representation of the console output (stdout).

    .. deprecated:: 0.1.0
        The `text` property is deprecated and will be removed in a future version.
        Use the `stdout` attribute directly instead.

    Returns:
        str: The content of the standard output stream.

    """
    warnings.warn(
        "The 'text' property is deprecated and will be removed in a future version. "
        "Use 'stdout' attribute directly instead.",
        DeprecationWarning,
        stacklevel=2,
    )
    return self.stdout

to_json ¶

to_json(include_plots: bool = False) -> str

Get the JSON representation of the execution result.

PARAMETER	DESCRIPTION
`include_plots`	Whether to include the plots in the JSON representation. TYPE: `bool` DEFAULT: `False`

RETURNS	DESCRIPTION
`str`	The JSON representation of the execution result. TYPE: `str`

Source code in llm_sandbox/data.py

def to_json(self, include_plots: bool = False) -> str:
    r"""Get the JSON representation of the execution result.

    Args:
        include_plots (bool): Whether to include the plots in the JSON representation.

    Returns:
        str: The JSON representation of the execution result.

    """
    result = self.__dict__.copy()
    if not include_plots and "plots" in result:
        result.pop("plots", None)

    return json.dumps(result, indent=2)

ExecutionResult¶

ExecutionResult `dataclass` ¶

ExecutionResult(
    exit_code: int = 0, stderr: str = "", stdout: str = "", plots: list[PlotOutput] = list()
)

Bases: ConsoleOutput

Represents the comprehensive result of code execution within a sandbox session.

This class extends ConsoleOutput to include any plots or other file artifacts that were generated and captured during the execution.

ATTRIBUTE	DESCRIPTION
`plots`	A list of `PlotOutput` objects, each representing a captured plot or visual artifact. Defaults to an empty list. TYPE: `list[PlotOutput]`

PlotOutput¶

PlotOutput `dataclass` ¶

PlotOutput(
    format: FileType,
    content_base64: str,
    width: int | None = None,
    height: int | None = None,
    dpi: int | None = None,
)

Represents a plot, chart, or other visual artifact output from code execution.

ATTRIBUTE	DESCRIPTION
`format`	The format of the plot (e.g., PNG, SVG, PDF). TYPE: `FileType`
`content_base64`	The raw content of the plot, base64 encoded. TYPE: `str`
`width`	The width of the plot in pixels. Defaults to None. TYPE: `int \| None`
`height`	The height of the plot in pixels. Defaults to None. TYPE: `int \| None`
`dpi`	The dots per inch (resolution) of the plot. Defaults to None. TYPE: `int \| None`

Security Classes¶

SecurityPolicy¶

SecurityPolicy ¶

Bases: BaseModel

A security policy.

Functions¶

add_pattern ¶

add_pattern(pattern: SecurityPattern) -> None

Add a security pattern to the policy.

Source code in llm_sandbox/security.py

def add_pattern(self, pattern: SecurityPattern) -> None:
    """Add a security pattern to the policy."""
    if self.patterns is None:
        self.patterns = []
    self.patterns.append(pattern)

add_restricted_module ¶

add_restricted_module(module: RestrictedModule) -> None

Add a restricted module to the policy.

Source code in llm_sandbox/security.py

def add_restricted_module(self, module: RestrictedModule) -> None:
    """Add a restricted module to the policy."""
    if self.restricted_modules is None:
        self.restricted_modules = []
    self.restricted_modules.append(module)

SecurityPattern¶

SecurityPattern ¶

Bases: BaseModel

A security pattern.

Functions¶

validate_pattern `classmethod` ¶

validate_pattern(v: str) -> str

Validate that the pattern is a valid regex pattern.

Source code in llm_sandbox/security.py

@field_validator("pattern")
@classmethod
def validate_pattern(cls, v: str) -> str:
    """Validate that the pattern is a valid regex pattern."""
    try:
        re.compile(v)
    except re.error as e:
        raise InvalidRegexPatternError(v) from e
    return v

RestrictedModule¶

RestrictedModule ¶

Bases: BaseModel

A dangerous module.

SecurityIssueSeverity¶

SecurityIssueSeverity ¶

Bases: IntEnum

Severity of a security issue.

Enumerations¶

SandboxBackend¶

SandboxBackend ¶

Bases: StrEnum

Enumeration of supported sandbox backend technologies.

Each value represents a different containerization or virtualization technology that can be used to isolate code execution.

SupportedLanguage¶

SupportedLanguage ¶

Bases: StrEnum

Dataclass defining constants for supported programming languages.

Each attribute represents a language identifier string used by the sandbox to select appropriate language handlers and container images.

FileType¶

FileType ¶

Bases: Enum

Enumeration of file types supported by artifact extractors.

This enum lists common file formats that can be generated by code running in the sandbox and subsequently extracted, such as images, data files, and documents.

Functions¶

create_session¶

create_session ¶

create_session(
    backend: SandboxBackend = SandboxBackend.DOCKER, *args: Any, **kwargs: Any
) -> BaseSession

Create a new sandbox session for executing code in an isolated environment.

This function creates a sandbox session that supports multiple programming languages and provides features like package installation, file operations, and secure code execution. For backward compatibility, we also keep a SandboxSession alias for this function.

PARAMETER	DESCRIPTION
`backend`	Container backend to use. Options: - SandboxBackend.DOCKER (default) - SandboxBackend.KUBERNETES - SandboxBackend.PODMAN - SandboxBackend.MICROMAMBA TYPE: `SandboxBackend` DEFAULT: `DOCKER`
`*args`	Additional positional arguments passed to the session constructor TYPE: `Any` DEFAULT: `()`
`**kwargs`	Additional keyword arguments passed to the session constructor. Common options include: - lang (str): Programming language ("python", "java", "javascript", "cpp", "go") - verbose (bool): Enable verbose logging - keep_template (bool): Keep the container template - image (str): Custom container image to use - container_id (str): ID of existing container/pod to connect to TYPE: `Any` DEFAULT: `{}`

RETURNS	DESCRIPTION
`Session`	A sandbox session instance for the specified backend TYPE: `BaseSession`

RAISES	DESCRIPTION
`MissingDependencyError`	If the required dependency for the chosen backend is not installed
`UnsupportedBackendError`	If the chosen backend is not supported

Examples:

Connect to existing Docker container:

# Assumes you have a running container with ID 'abc123...'
with SandboxSession(container_id='abc123def456', lang="python") as session:
    result = session.run("print('Hello from existing container!')")
    print(result.stdout)

    # Install libraries in existing container
    session.install(["numpy"])
    result = session.run("import numpy as np; print(np.random.rand())")

    # Execute commands
    result = session.execute_command("ls -la")

    # Copy files
    session.copy_to_runtime("local_file.py", "/container/path/file.py")

Connect to existing Kubernetes pod:

# Assumes you have a running pod with name 'my-pod-abc123'
with SandboxSession(
    backend=SandboxBackend.KUBERNETES,
    container_id='my-pod-abc123',  # pod name
    lang="python"
) as session:
    result = session.run("print('Hello from existing pod!')")

Connect to existing Podman container:

from podman import PodmanClient

client = PodmanClient()
with SandboxSession(
    backend=SandboxBackend.PODMAN,
    client=client,
    container_id='podman-container-id',
    lang="python"
) as session:
    result = session.run("print('Hello from existing Podman container!')")

Python session with package installation:

with SandboxSession(lang="python", keep_template=True, verbose=True) as session:
    # Basic code execution
    result = session.run("print('Hello, World!')")
    print(result.stdout)  # Output: Hello, World!

    # Install and use packages
    result = session.run(
        "import numpy as np\nprint(np.random.rand())",
        libraries=["numpy"]
    )

    # Install additional packages during session
    session.install(["pandas"])
    result = session.run("import pandas as pd\nprint(pd.__version__)")

    # Copy files to runtime
    session.copy_to_runtime("README.md", "/sandbox/data.csv")

Java session:

with SandboxSession(lang="java", keep_template=True, verbose=True) as session:
    result = session.run(\"\"\"
        public class Main {
            public static void main(String[] args) {
                System.out.println("Hello, World!");
            }
        }
    \"\"\")

JavaScript session with npm packages:

with SandboxSession(lang="javascript", keep_template=True, verbose=True) as session:
    # Basic code execution
    result = session.run("console.log('Hello, World!')")

    # Using npm packages
    result = session.run(\"\"\"
        const axios = require('axios');
        axios.get('https://jsonplaceholder.typicode.com/posts/1')
            .then(response => console.log(response.data));
    \"\"\", libraries=["axios"])

C++ session:

with SandboxSession(lang="cpp", keep_template=True, verbose=True) as session:
    result = session.run(\"\"\"
        #include <iostream>
        #include <vector>
        #include <algorithm>
        int main() {
            std::vector<int> v = {1, 2, 3, 4, 5};
            std::reverse(v.begin(), v.end());
            for (int i : v) {
                std::cout << i << " ";
            }
            std::cout << std::endl;
            return 0;
        }
    \"\"\", libraries=["libstdc++"])

Go session with external packages:

with SandboxSession(lang="go", keep_template=True, verbose=True) as session:
    result = session.run(\"\"\"
        package main
        import (
            "fmt"
            "github.com/spyzhov/ajson"
        )
        func main() {
            json := []byte(`{"price": 100}`)
            root, _ := ajson.Unmarshal(json)
            nodes, _ := root.JSONPath("$..price")
            for _, node := range nodes {
                node.SetNumeric(node.MustNumeric() * 1.25)
            }
            result, _ := ajson.Marshal(root)
            fmt.Printf("%s", result)
        }
    \"\"\", libraries=["github.com/spyzhov/ajson"])

Source code in llm_sandbox/session.py

def create_session(
    backend: SandboxBackend = SandboxBackend.DOCKER,
    *args: Any,
    **kwargs: Any,
) -> BaseSession:
    r"""Create a new sandbox session for executing code in an isolated environment.

    This function creates a sandbox session that supports multiple programming languages
    and provides features like package installation, file operations, and secure code execution.
    For backward compatibility, we also keep a `SandboxSession` alias for this function.

    Args:
        backend (SandboxBackend): Container backend to use. Options:
            - SandboxBackend.DOCKER (default)
            - SandboxBackend.KUBERNETES
            - SandboxBackend.PODMAN
            - SandboxBackend.MICROMAMBA
        *args: Additional positional arguments passed to the session constructor
        **kwargs: Additional keyword arguments passed to the session constructor.
                Common options include:
                    - lang (str): Programming language ("python", "java", "javascript", "cpp", "go")
                    - verbose (bool): Enable verbose logging
                    - keep_template (bool): Keep the container template
                    - image (str): Custom container image to use
                    - container_id (str): ID of existing container/pod to connect to

    Returns:
        Session: A sandbox session instance for the specified backend

    Raises:
        MissingDependencyError: If the required dependency for the chosen backend is not installed
        UnsupportedBackendError: If the chosen backend is not supported

    Examples:
        Connect to existing Docker container:
        ```python
        # Assumes you have a running container with ID 'abc123...'
        with SandboxSession(container_id='abc123def456', lang="python") as session:
            result = session.run("print('Hello from existing container!')")
            print(result.stdout)

            # Install libraries in existing container
            session.install(["numpy"])
            result = session.run("import numpy as np; print(np.random.rand())")

            # Execute commands
            result = session.execute_command("ls -la")

            # Copy files
            session.copy_to_runtime("local_file.py", "/container/path/file.py")
        ```

        Connect to existing Kubernetes pod:
        ```python
        # Assumes you have a running pod with name 'my-pod-abc123'
        with SandboxSession(
            backend=SandboxBackend.KUBERNETES,
            container_id='my-pod-abc123',  # pod name
            lang="python"
        ) as session:
            result = session.run("print('Hello from existing pod!')")
        ```

        Connect to existing Podman container:
        ```python
        from podman import PodmanClient

        client = PodmanClient()
        with SandboxSession(
            backend=SandboxBackend.PODMAN,
            client=client,
            container_id='podman-container-id',
            lang="python"
        ) as session:
            result = session.run("print('Hello from existing Podman container!')")
        ```

        Python session with package installation:
        ```python
        with SandboxSession(lang="python", keep_template=True, verbose=True) as session:
            # Basic code execution
            result = session.run("print('Hello, World!')")
            print(result.stdout)  # Output: Hello, World!

            # Install and use packages
            result = session.run(
                "import numpy as np\nprint(np.random.rand())",
                libraries=["numpy"]
            )

            # Install additional packages during session
            session.install(["pandas"])
            result = session.run("import pandas as pd\nprint(pd.__version__)")

            # Copy files to runtime
            session.copy_to_runtime("README.md", "/sandbox/data.csv")
        ```

        Java session:
        ```python
        with SandboxSession(lang="java", keep_template=True, verbose=True) as session:
            result = session.run(\"\"\"
                public class Main {
                    public static void main(String[] args) {
                        System.out.println("Hello, World!");
                    }
                }
            \"\"\")
        ```

        JavaScript session with npm packages:
        ```python
        with SandboxSession(lang="javascript", keep_template=True, verbose=True) as session:
            # Basic code execution
            result = session.run("console.log('Hello, World!')")

            # Using npm packages
            result = session.run(\"\"\"
                const axios = require('axios');
                axios.get('https://jsonplaceholder.typicode.com/posts/1')
                    .then(response => console.log(response.data));
            \"\"\", libraries=["axios"])
        ```

        C++ session:
        ```python
        with SandboxSession(lang="cpp", keep_template=True, verbose=True) as session:
            result = session.run(\"\"\"
                #include <iostream>
                #include <vector>
                #include <algorithm>
                int main() {
                    std::vector<int> v = {1, 2, 3, 4, 5};
                    std::reverse(v.begin(), v.end());
                    for (int i : v) {
                        std::cout << i << " ";
                    }
                    std::cout << std::endl;
                    return 0;
                }
            \"\"\", libraries=["libstdc++"])
        ```

        Go session with external packages:
        ```python
        with SandboxSession(lang="go", keep_template=True, verbose=True) as session:
            result = session.run(\"\"\"
                package main
                import (
                    "fmt"
                    "github.com/spyzhov/ajson"
                )
                func main() {
                    json := []byte(`{"price": 100}`)
                    root, _ := ajson.Unmarshal(json)
                    nodes, _ := root.JSONPath("$..price")
                    for _, node := range nodes {
                        node.SetNumeric(node.MustNumeric() * 1.25)
                    }
                    result, _ := ajson.Marshal(root)
                    fmt.Printf("%s", result)
                }
            \"\"\", libraries=["github.com/spyzhov/ajson"])
        ```

    """
    # Check if required dependency is installed
    _check_dependency(backend)

    # Create the appropriate session based on backend
    match backend:
        case SandboxBackend.DOCKER:
            from .docker import SandboxDockerSession

            return SandboxDockerSession(*args, **kwargs)
        case SandboxBackend.KUBERNETES:
            from .kubernetes import SandboxKubernetesSession

            return SandboxKubernetesSession(*args, **kwargs)
        case SandboxBackend.PODMAN:
            from .podman import SandboxPodmanSession

            return SandboxPodmanSession(*args, **kwargs)
        case SandboxBackend.MICROMAMBA:
            from .micromamba import MicromambaSession

            return MicromambaSession(*args, **kwargs)
        case _:
            raise UnsupportedBackendError(backend=backend)

Exceptions¶

The library defines a base exception llm_sandbox.exceptions.SandboxError and various specific exceptions that inherit from it. Please refer to the llm_sandbox.exceptions module for a complete list.

SandboxTimeoutError¶

SandboxTimeoutError ¶

SandboxTimeoutError(message: str, timeout_duration: float | None = None)

Bases: SandboxError

Raised when an operation times out.

Initialize the TimeoutError.

Source code in llm_sandbox/exceptions.py

def __init__(self, message: str, timeout_duration: float | None = None) -> None:
    """Initialize the TimeoutError."""
    super().__init__(message)
    self.timeout_duration = timeout_duration

Functions¶

Common exceptions include: - ContainerError - SecurityError - ResourceError - ValidationError - LanguageNotSupportedError - ImageNotFoundError - SandboxTimeoutError - Raised when operations exceed configured timeout limits

Language Handlers¶

AbstractLanguageHandler¶

AbstractLanguageHandler ¶

AbstractLanguageHandler(logger: Logger | None = None)

Bases: ABC

Abstract base class for language-specific handlers.

Initialize the language handler.

Source code in llm_sandbox/language_handlers/base.py

def __init__(self, logger: logging.Logger | None = None) -> None:
    """Initialize the language handler."""
    self.config: LanguageConfig
    self.logger: logging.Logger = logger or logging.getLogger(__name__)

Attributes¶

file_extension `property` ¶

file_extension: str

Get file extension for language.

is_support_library_installation `property` ¶

is_support_library_installation: bool

Get if the language supports library installation.

is_support_plot_detection `property` ¶

is_support_plot_detection: bool

Get if the language supports plot detection.

name `property` ¶

name: str

Get name of the language.

supported_plot_libraries `property` ¶

supported_plot_libraries: list[PlotLibrary]

Get supported plotting libraries.

Functions¶

extract_plots ¶

extract_plots(container: ContainerProtocol, output_dir: str) -> list[PlotOutput]

Extract plots from the code.

Base implementation that searches for plot files and extracts them. Languages can override this method to provide custom plot extraction logic.

PARAMETER	DESCRIPTION
`container`	The container protocol instance to run code in TYPE: `ContainerProtocol`
`output_dir`	Directory where plots should be saved TYPE: `str`

RETURNS	DESCRIPTION
`list[PlotOutput]`	list[PlotOutput]: List of plot outputs

Source code in llm_sandbox/language_handlers/base.py

def extract_plots(self, container: "ContainerProtocol", output_dir: str) -> list[PlotOutput]:
    """Extract plots from the code.

    Base implementation that searches for plot files and extracts them.
    Languages can override this method to provide custom plot extraction logic.

    Args:
        container: The container protocol instance to run code in
        output_dir: Directory where plots should be saved

    Returns:
        list[PlotOutput]: List of plot outputs

    """
    plots: list[PlotOutput] = []

    try:
        result = container.execute_command(f"test -d {output_dir}")
        if result.exit_code:
            return plots

        result = container.execute_command(
            f"find {output_dir} -name '*.png' -o -name '*.svg' -o -name '*.pdf' -o -name '*.html'"
        )
        if result.exit_code:
            return plots

        file_paths = result.stdout.strip().split("\n")
        file_paths = [path.strip() for path in file_paths if path.strip()]

        for file_path in sorted(file_paths):
            try:
                plot_output = self._extract_single_plot(container, file_path)
                if plot_output:
                    plots.append(plot_output)
            except (OSError, tarfile.TarError, ValueError):
                self.logger.exception("Error extracting plot %s", file_path)

    except (OSError, RuntimeError):
        self.logger.exception("Error extracting %s plots", self.config.name)

    return plots

filter_comments ¶

filter_comments(code: str) -> str

Filter out comments from code in a language-specific way.

PARAMETER	DESCRIPTION
`code`	The code to filter comments from. TYPE: `str`

RETURNS	DESCRIPTION
`str`	The code with comments removed. TYPE: `str`

Source code in llm_sandbox/language_handlers/base.py

def filter_comments(self, code: str) -> str:
    """Filter out comments from code in a language-specific way.

    Args:
        code (str): The code to filter comments from.

    Returns:
        str: The code with comments removed.

    """
    # First remove multi-line comments
    code = re.sub(self.get_multiline_comment_patterns(), "", code)

    # Then handle single-line comments
    filtered_lines = []
    for line in code.split("\n"):
        # Remove inline comments
        clean_line = re.sub(self.get_inline_comment_patterns(), "", line)
        # Keep the line if it has non-whitespace content
        if clean_line.strip():
            filtered_lines.append(clean_line)
        else:
            # Preserve empty lines for readability
            filtered_lines.append("")
    return "\n".join(filtered_lines)

get_execution_commands ¶

get_execution_commands(code_file: str) -> list[str]

Get commands to execute code file.

Source code in llm_sandbox/language_handlers/base.py

def get_execution_commands(self, code_file: str) -> list[str]:
    """Get commands to execute code file."""
    if not self.config.execution_commands:
        raise CommandFailedError(self.config.name, 1, "No execution commands found")
    return [command.format(file=code_file) for command in self.config.execution_commands]

get_import_patterns `abstractmethod` ¶

get_import_patterns(module: str) -> str

Get the regex patterns for import statements.

Source code in llm_sandbox/language_handlers/base.py

@abstractmethod
def get_import_patterns(self, module: str) -> str:
    """Get the regex patterns for import statements."""

get_inline_comment_patterns `abstractmethod` `staticmethod` ¶

get_inline_comment_patterns() -> str

Get the regex for inline comment patterns.

Source code in llm_sandbox/language_handlers/base.py

@staticmethod
@abstractmethod
def get_inline_comment_patterns() -> str:
    """Get the regex for inline comment patterns."""

get_library_installation_command ¶

get_library_installation_command(library: str) -> str

Get command to install library.

Source code in llm_sandbox/language_handlers/base.py

def get_library_installation_command(self, library: str) -> str:
    """Get command to install library."""
    if not self.config.package_manager:
        raise PackageManagerError(self.config.name)
    return f"{self.config.package_manager} {library}"

get_multiline_comment_patterns `abstractmethod` `staticmethod` ¶

get_multiline_comment_patterns() -> str

Get the regex patterns for multiline comment.

Source code in llm_sandbox/language_handlers/base.py

@staticmethod
@abstractmethod
def get_multiline_comment_patterns() -> str:
    """Get the regex patterns for multiline comment."""

inject_plot_detection_code ¶

inject_plot_detection_code(code: str) -> str

Inject code to detect and capture plots.

Subclasses should override this method to provide custom plot detection code.

PARAMETER	DESCRIPTION
`code`	The code to inject plot detection code into. TYPE: `str`

RETURNS	DESCRIPTION
`str`	The code with plot detection code injected.

Source code in llm_sandbox/language_handlers/base.py

def inject_plot_detection_code(self, code: str) -> str:
    """Inject code to detect and capture plots.

    Subclasses should override this method to provide custom plot detection code.

    Args:
        code: The code to inject plot detection code into.

    Returns:
        The code with plot detection code injected.

    """
    return code

run_with_artifacts ¶

run_with_artifacts(
    container: ContainerProtocol,
    code: str,
    libraries: list | None = None,
    enable_plotting: bool = True,
    output_dir: str = "/tmp/sandbox_plots",
    timeout: int = 30,
) -> tuple[Any, list[PlotOutput]]

Run code and extract artifacts (plots) in a language-specific manner.

This method provides a language-specific implementation for running code with artifact extraction. Languages that support plot detection can override this method to provide custom artifact extraction logic.

PARAMETER	DESCRIPTION
`container`	The container protocol instance to run code in TYPE: `ContainerProtocol`
`code`	The code to execute TYPE: `str`
`libraries`	Optional list of libraries to install before running TYPE: `list \| None` DEFAULT: `None`
`enable_plotting`	Whether to enable plot detection and extraction TYPE: `bool` DEFAULT: `True`
`output_dir`	Directory where plots should be saved TYPE: `str` DEFAULT: `'/tmp/sandbox_plots'`
`timeout`	Timeout for the code execution TYPE: `int` DEFAULT: `30`

RETURNS	DESCRIPTION
`tuple`	(execution_result, list_of_plots) TYPE: `tuple[Any, list[PlotOutput]]`

Source code in llm_sandbox/language_handlers/base.py

def run_with_artifacts(
    self,
    container: "ContainerProtocol",
    code: str,
    libraries: list | None = None,
    enable_plotting: bool = True,
    output_dir: str = "/tmp/sandbox_plots",
    timeout: int = 30,
) -> tuple[Any, list[PlotOutput]]:
    """Run code and extract artifacts (plots) in a language-specific manner.

    This method provides a language-specific implementation for running code
    with artifact extraction. Languages that support plot detection can override
    this method to provide custom artifact extraction logic.

    Args:
        container: The container protocol instance to run code in
        code: The code to execute
        libraries: Optional list of libraries to install before running
        enable_plotting: Whether to enable plot detection and extraction
        output_dir: Directory where plots should be saved
        timeout: Timeout for the code execution

    Returns:
        tuple: (execution_result, list_of_plots)

    """
    # Default implementation for languages without plot support
    if enable_plotting and self.is_support_plot_detection:
        # Inject plot detection code
        injected_code = self.inject_plot_detection_code(code)

        # Run the code with plot detection
        result = container.run(injected_code, libraries, timeout)

        # Extract plots
        plots = self.extract_plots(container, output_dir)

        return result, plots

    # Run code without plot detection
    result = container.run(code, libraries, timeout)
    return result, []

LanguageConfig¶

LanguageConfig `dataclass` ¶

LanguageConfig(
    name: str,
    file_extension: str,
    execution_commands: list[str],
    package_manager: str | None,
    is_support_library_installation: bool = True,
    plot_detection: PlotDetectionConfig | None = None,
)

Language-specific configuration.

Backend-Specific APIs¶

Docker Backend¶

SandboxDockerSession ¶

SandboxDockerSession(
    client: DockerClient | None = None,
    image: str | None = None,
    dockerfile: str | None = None,
    lang: str = SupportedLanguage.PYTHON,
    keep_template: bool = False,
    commit_container: bool = False,
    verbose: bool = False,
    stream: bool = False,
    runtime_configs: dict | None = None,
    workdir: str = "/sandbox",
    security_policy: SecurityPolicy | None = None,
    default_timeout: float | None = None,
    execution_timeout: float | None = None,
    session_timeout: float | None = None,
    container_id: str | None = None,
    skip_environment_setup: bool = False,
    **kwargs: Any,
)

Bases: BaseSession

Sandbox session implemented using Docker containers.

This class provides a sandboxed environment for code execution by leveraging Docker. It handles Docker image management (pulling, building from Dockerfile), container creation and lifecycle, code execution, library installation, and file operations within the Docker container.

Initialize Docker session.

PARAMETER	DESCRIPTION
`client`	The Docker client to use. TYPE: `DockerClient \| None` DEFAULT: `None`
`image`	The image to use. TYPE: `str \| None` DEFAULT: `None`
`dockerfile`	The Dockerfile to use. TYPE: `str \| None` DEFAULT: `None`
`lang`	The language to use. TYPE: `str` DEFAULT: `PYTHON`
`keep_template`	Whether to keep the template image. TYPE: `bool` DEFAULT: `False`
`commit_container`	Whether to commit the container to a new image. TYPE: `bool` DEFAULT: `False`
`verbose`	Whether to enable verbose output. TYPE: `bool` DEFAULT: `False`
`stream`	Whether to stream the output. TYPE: `bool` DEFAULT: `False`
`runtime_configs`	The runtime configurations to use. TYPE: `dict \| None` DEFAULT: `None`
`workdir`	The working directory to use. TYPE: `str` DEFAULT: `'/sandbox'`
`security_policy`	The security policy to use. TYPE: `SecurityPolicy \| None` DEFAULT: `None`
`default_timeout`	The default timeout to use. TYPE: `float \| None` DEFAULT: `None`
`execution_timeout`	The execution timeout to use. TYPE: `float \| None` DEFAULT: `None`
`session_timeout`	The session timeout to use. TYPE: `float \| None` DEFAULT: `None`
`container_id`	ID of existing container to connect to. TYPE: `str \| None` DEFAULT: `None`
`skip_environment_setup`	Skip language-specific environment setup. TYPE: `bool` DEFAULT: `False`
`**kwargs`	Additional keyword arguments. TYPE: `Any` DEFAULT: `{}`

RETURNS	DESCRIPTION
`None`	None

Source code in llm_sandbox/docker.py

def __init__(
    self,  # NOSONAR
    client: docker.DockerClient | None = None,
    image: str | None = None,
    dockerfile: str | None = None,
    lang: str = SupportedLanguage.PYTHON,
    keep_template: bool = False,
    commit_container: bool = False,
    verbose: bool = False,
    stream: bool = False,
    runtime_configs: dict | None = None,
    workdir: str = "/sandbox",
    security_policy: SecurityPolicy | None = None,
    default_timeout: float | None = None,
    execution_timeout: float | None = None,
    session_timeout: float | None = None,
    container_id: str | None = None,
    skip_environment_setup: bool = False,
    **kwargs: Any,
) -> None:
    r"""Initialize Docker session.

    Args:
        client (docker.DockerClient | None): The Docker client to use.
        image (str | None): The image to use.
        dockerfile (str | None): The Dockerfile to use.
        lang (str): The language to use.
        keep_template (bool): Whether to keep the template image.
        commit_container (bool): Whether to commit the container to a new image.
        verbose (bool): Whether to enable verbose output.
        stream (bool): Whether to stream the output.
        runtime_configs (dict | None): The runtime configurations to use.
        workdir (str): The working directory to use.
        security_policy (SecurityPolicy | None): The security policy to use.
        default_timeout (float | None): The default timeout to use.
        execution_timeout (float | None): The execution timeout to use.
        session_timeout (float | None): The session timeout to use.
        container_id (str | None): ID of existing container to connect to.
        skip_environment_setup (bool): Skip language-specific environment setup.
        **kwargs: Additional keyword arguments.

    Returns:
        None

    """
    config = SessionConfig(
        image=image,
        dockerfile=dockerfile,
        lang=SupportedLanguage(lang.upper()),
        verbose=verbose,
        workdir=workdir,
        runtime_configs=runtime_configs or {},
        security_policy=security_policy,
        default_timeout=default_timeout,
        execution_timeout=execution_timeout,
        session_timeout=session_timeout,
        container_id=container_id,
        skip_environment_setup=skip_environment_setup,
    )

    super().__init__(config=config, **kwargs)

    self.client: docker.DockerClient

    if not client:
        self._log("Using local Docker context since client is not provided.")
        self.client = docker.from_env()
    else:
        self.client = client

    self.container_api = DockerContainerAPI(self.client, stream)

    self.docker_image: Image
    self.keep_template: bool = keep_template
    self.commit_container: bool = commit_container
    self.is_create_template: bool = False
    self.stream: bool = stream

    if mounts := kwargs.get("mounts"):
        warnings.warn(
            "The 'mounts' parameter is deprecated and will be removed in a future version. "
            "Put the mounts in 'runtime_configs' instead.",
            DeprecationWarning,
            stacklevel=2,
        )
        existing_mounts = self.config.runtime_configs.setdefault("mounts", [])
        if isinstance(mounts, list):
            existing_mounts.extend(mounts)
        else:
            existing_mounts.append(mounts)

Functions¶

close ¶

close() -> None

Close the Docker sandbox session.

This method cleans up Docker resources by: 1. Committing the container to a new image if commit_container is True. 2. Stopping and removing the running Docker container (only if we created it). 3. Removing the Docker image if is_create_template is True (image was built or pulled during this session), keep_template is False, and the image is not in use by other containers.

Note: When using existing containers, we only disconnect but don't stop/remove the container.

RAISES	DESCRIPTION
`ImageNotFoundError`	If the image to be removed is not found (should not typically occur).

Source code in llm_sandbox/docker.py

def close(self) -> None:
    r"""Close the Docker sandbox session.

    This method cleans up Docker resources by:
    1. Committing the container to a new image if `commit_container` is True.
    2. Stopping and removing the running Docker container (only if we created it).
    3. Removing the Docker image if `is_create_template` is True (image was built or pulled
        during this session), `keep_template` is False, and the image is not in use by
        other containers.

    Note: When using existing containers, we only disconnect but don't stop/remove the container.

    Raises:
        ImageNotFoundError: If the image to be removed is not found (should not typically occur).

    """
    super().close()

    if self.container:
        if self.commit_container and self.docker_image:
            self._commit_container()

        # Only stop/remove container if we created it (not existing container)
        if not self.using_existing_container:
            try:
                self.container.stop()
                self.container.wait()
                self.container.remove(force=True)
                self._log("Stopped and removed container")
            except Exception:  # noqa: BLE001
                self._log("Error cleaning up container")
        else:
            self._log("Disconnected from existing container")

        self.container = None

    if self.is_create_template and not self.keep_template and self.docker_image:
        self._cleanup_image()

get_archive ¶

get_archive(path: str) -> tuple[bytes, dict]

Get archive from container.

Source code in llm_sandbox/docker.py

def get_archive(self, path: str) -> tuple[bytes, dict]:
    """Get archive from container."""
    if not self.container:
        raise NotOpenSessionError

    data, stat = self.container.get_archive(path)
    return b"".join(data), stat

open ¶

open() -> None

Open Docker session.

This method prepares the Docker environment for code execution by: - Building or pulling the Docker image (if not using existing container) - Creating a container or connecting to existing one - Setting up the environment (if not using existing container)

RAISES	DESCRIPTION
`ImagePullError`	If the image cannot be pulled.
`ImageNotFoundError`	If the image cannot be found.
`ContainerError`	If existing container cannot be found or accessed.

Source code in llm_sandbox/docker.py

def open(self) -> None:
    r"""Open Docker session.

    This method prepares the Docker environment for code execution by:
    - Building or pulling the Docker image (if not using existing container)
    - Creating a container or connecting to existing one
    - Setting up the environment (if not using existing container)

    Raises:
        ImagePullError: If the image cannot be pulled.
        ImageNotFoundError: If the image cannot be found.
        ContainerError: If existing container cannot be found or accessed.

    """
    super().open()

    if self.using_existing_container and self.config.container_id:
        # Connect to existing container
        self._connect_to_existing_container(self.config.container_id)
    else:
        # Create new container
        self._prepare_image()

        container_config = {"image": self.docker_image, "detach": True, "tty": True, "user": "root"}
        container_config.update(self.config.runtime_configs)

        self.container = self.container_api.create_container(container_config)
        self.container_api.start_container(self.container)

    # Setup environment (skipped for existing containers)
    self.environment_setup()

Kubernetes Backend¶

SandboxKubernetesSession ¶

SandboxKubernetesSession(
    client: CoreV1Api | None = None,
    image: str | None = None,
    lang: str = SupportedLanguage.PYTHON,
    verbose: bool = False,
    kube_namespace: str = "default",
    env_vars: dict[str, str] | None = None,
    pod_manifest: dict | None = None,
    workdir: str = "/sandbox",
    security_policy: SecurityPolicy | None = None,
    default_timeout: float | None = None,
    execution_timeout: float | None = None,
    session_timeout: float | None = None,
    container_id: str | None = None,
    skip_environment_setup: bool = False,
    **kwargs: Any,
)

Bases: BaseSession

Sandbox session implemented using Kubernetes Pods.

This class provides a sandboxed environment for code execution by leveraging Kubernetes. It handles Pod creation and lifecycle based on a provided or default manifest, code execution, library installation, and file operations within the Kubernetes Pod.

Initialize Kubernetes session.

PARAMETER	DESCRIPTION
`client`	The Kubernetes client to use. TYPE: `CoreV1Api \| None` DEFAULT: `None`
`image`	The image to use. TYPE: `str \| None` DEFAULT: `None`
`lang`	The language to use. TYPE: `str` DEFAULT: `PYTHON`
`verbose`	Whether to enable verbose output. TYPE: `bool` DEFAULT: `False`
`kube_namespace`	The Kubernetes namespace to use. TYPE: `str` DEFAULT: `'default'`
`env_vars`	The environment variables to use. TYPE: `dict[str, str] \| None` DEFAULT: `None`
`pod_manifest`	The Kubernetes pod manifest to use. TYPE: `dict \| None` DEFAULT: `None`
`workdir`	The working directory to use. TYPE: `str` DEFAULT: `'/sandbox'`
`security_policy`	The security policy to use. TYPE: `SecurityPolicy \| None` DEFAULT: `None`
`default_timeout`	The default timeout to use. TYPE: `float \| None` DEFAULT: `None`
`execution_timeout`	The execution timeout to use. TYPE: `float \| None` DEFAULT: `None`
`session_timeout`	The session timeout to use. TYPE: `float \| None` DEFAULT: `None`
`container_id`	ID of existing pod to connect to. TYPE: `str \| None` DEFAULT: `None`
`skip_environment_setup`	Skip language-specific environment setup. TYPE: `bool` DEFAULT: `False`
`**kwargs`	Additional keyword arguments. TYPE: `Any` DEFAULT: `{}`

RETURNS	DESCRIPTION
`None`	None

Source code in llm_sandbox/kubernetes.py

def __init__(
    self,  # NOSONAR (too many arguments)
    client: CoreV1Api | None = None,
    image: str | None = None,
    lang: str = SupportedLanguage.PYTHON,
    verbose: bool = False,
    kube_namespace: str = "default",
    env_vars: dict[str, str] | None = None,
    pod_manifest: dict | None = None,
    workdir: str = "/sandbox",
    security_policy: SecurityPolicy | None = None,
    default_timeout: float | None = None,
    execution_timeout: float | None = None,
    session_timeout: float | None = None,
    container_id: str | None = None,  # This will be pod_id for Kubernetes
    skip_environment_setup: bool = False,
    **kwargs: Any,
) -> None:
    r"""Initialize Kubernetes session.

    Args:
        client (CoreV1Api | None): The Kubernetes client to use.
        image (str | None): The image to use.
        lang (str): The language to use.
        verbose (bool): Whether to enable verbose output.
        kube_namespace (str): The Kubernetes namespace to use.
        env_vars (dict[str, str] | None): The environment variables to use.
        pod_manifest (dict | None): The Kubernetes pod manifest to use.
        workdir (str): The working directory to use.
        security_policy (SecurityPolicy | None): The security policy to use.
        default_timeout (float | None): The default timeout to use.
        execution_timeout (float | None): The execution timeout to use.
        session_timeout (float | None): The session timeout to use.
        container_id (str | None): ID of existing pod to connect to.
        skip_environment_setup (bool): Skip language-specific environment setup.
        **kwargs: Additional keyword arguments.

    Returns:
        None

    """
    config = SessionConfig(
        image=image,
        lang=SupportedLanguage(lang.upper()),
        verbose=verbose,
        workdir=workdir,
        security_policy=security_policy,
        default_timeout=default_timeout,
        execution_timeout=execution_timeout,
        session_timeout=session_timeout,
        container_id=container_id,
        skip_environment_setup=skip_environment_setup,
    )

    super().__init__(config=config, **kwargs)

    if not client:
        self._log("Using local Kubernetes context since client is not provided.")
        from kubernetes import config as k8s_config

        k8s_config.load_kube_config()
        self.client = CoreV1Api()
    else:
        self.client = client

    self.kube_namespace = kube_namespace
    self.container_api = KubernetesContainerAPI(self.client, kube_namespace)

    # Generate unique pod name (only if not using existing pod)
    if not self.using_existing_container:
        short_uuid = uuid.uuid4().hex[:8]
        self.pod_name = f"sandbox-{lang.lower()}-{short_uuid}"
        self.env_vars = env_vars
        self.pod_manifest = pod_manifest or self._default_pod_manifest()
        self._reconfigure_with_pod_manifest()

        # Extract container name from pod manifest for command execution
        containers = self.pod_manifest.get("spec", {}).get("containers", [])
        if containers:
            self.container_name = containers[0]["name"]
        else:
            self.container_name = "sandbox-container"  # fallback
    elif container_id:
        self.pod_name = container_id
        # For existing containers, we'll need to query the pod to get container name
        self.container_name = None  # Will be set when connecting

    # For compatibility with base class
    self.stream = False

Functions¶

close ¶

close() -> None

Close Kubernetes session.

Source code in llm_sandbox/kubernetes.py

def close(self) -> None:
    """Close Kubernetes session."""
    super().close()

    if self.container:
        # Only delete pod if we created it (not existing pod)
        if not self.using_existing_container:
            try:
                self.container_api.stop_container(self.container)
                self._log("Deleted pod")
            except Exception as e:  # noqa: BLE001
                self._log(f"Error cleaning up pod: {e}", "error")
        else:
            self._log("Disconnected from existing pod")

        self.container = None

copy_from_runtime ¶

copy_from_runtime(src: str, dest: str) -> None

Override to pass container name for Kubernetes.

Source code in llm_sandbox/kubernetes.py

def copy_from_runtime(self, src: str, dest: str) -> None:
    """Override to pass container name for Kubernetes."""
    if not self.container:
        raise NotOpenSessionError

    if self.verbose:
        self.logger.info("Copying %s to %s", src, dest)

    bits, stat = self.container_api.copy_from_container(self.container, src, container_name=self.container_name)
    if stat.get("size", 0) == 0:
        msg = f"File {src} not found in container"
        raise FileNotFoundError(msg)

    self._extract_archive_safely(bits, dest)

copy_to_runtime ¶

copy_to_runtime(src: str, dest: str) -> None

Override to pass container name for Kubernetes.

Source code in llm_sandbox/kubernetes.py

def copy_to_runtime(self, src: str, dest: str) -> None:
    """Override to pass container name for Kubernetes."""
    if not self.container:
        raise NotOpenSessionError

    # Validate source path exists and is accessible (same as mixin)
    src_path = Path(src)
    if not (src_path.exists() and (src_path.is_file() or src_path.is_dir())):
        msg = f"Source path {src} does not exist or is not accessible"
        raise FileNotFoundError(msg)

    if self.verbose:
        self.logger.info("Copying %s to %s", src, dest)

    dest_dir = str(Path(dest).parent)
    if dest_dir:
        self._ensure_directory_exists(dest_dir)

    self.container_api.copy_to_container(self.container, src, dest, container_name=self.container_name)
    self._ensure_ownership([dest])

execute_command ¶

execute_command(command: str, workdir: str | None = None) -> ConsoleOutput

Override to pass container name for Kubernetes.

Source code in llm_sandbox/kubernetes.py

def execute_command(self, command: str, workdir: str | None = None) -> ConsoleOutput:
    """Override to pass container name for Kubernetes."""
    if not command:
        raise CommandEmptyError

    if not self.container:
        raise NotOpenSessionError

    if self.verbose:
        self.logger.info("Executing command: %s", command)

    exit_code, output = self.container_api.execute_command(
        self.container, command, workdir=workdir, stream=self.stream, container_name=self.container_name
    )

    stdout, stderr = self._process_output(output)

    if self.verbose:
        if stdout:
            self.logger.info("STDOUT: %s", stdout)
        if stderr:
            self.logger.error("STDERR: %s", stderr)

    return ConsoleOutput(exit_code=exit_code or 0, stdout=stdout, stderr=stderr)

get_archive ¶

get_archive(path: str) -> tuple[bytes, dict]

Get archive from Kubernetes pod.

Source code in llm_sandbox/kubernetes.py

def get_archive(self, path: str) -> tuple[bytes, dict]:
    """Get archive from Kubernetes pod."""
    if not self.container:
        raise NotOpenSessionError

    return self.container_api.copy_from_container(self.container, path, container_name=self.container_name)

open ¶

open() -> None

Open Kubernetes session.

Source code in llm_sandbox/kubernetes.py

def open(self) -> None:
    """Open Kubernetes session."""
    super().open()

    if self.using_existing_container and self.config.container_id:
        # Connect to existing pod
        self._connect_to_existing_container(self.config.container_id)
    else:
        # Create new pod
        container_config = {"pod_manifest": self.pod_manifest}
        self.container = self.container_api.create_container(container_config)

    # Setup environment only for newly-created pods
    if not self.using_existing_container:
        self.environment_setup()

Podman Backend¶

SandboxPodmanSession ¶

SandboxPodmanSession(
    client: PodmanClient | None = None,
    image: str | None = None,
    dockerfile: str | None = None,
    lang: str = SupportedLanguage.PYTHON,
    keep_template: bool = False,
    commit_container: bool = False,
    verbose: bool = False,
    mounts: list | None = None,
    stream: bool = False,
    runtime_configs: dict | None = None,
    workdir: str | None = "/sandbox",
    security_policy: SecurityPolicy | None = None,
    default_timeout: float | None = None,
    execution_timeout: float | None = None,
    session_timeout: float | None = None,
    container_id: str | None = None,
    skip_environment_setup: bool = False,
    **kwargs: dict[str, Any],
)

Bases: SandboxDockerSession

Sandbox session implemented using Podman containers.

This class provides a sandboxed environment for code execution by leveraging Podman. It inherits from SandboxDockerSession since Podman is designed to be Docker-compatible, only overriding the differences in client initialization and API behavior.

Initialize Podman session.

PARAMETER	DESCRIPTION
`client`	The Podman client to use. TYPE: `PodmanClient \| None` DEFAULT: `None`
`image`	The image to use. TYPE: `str \| None` DEFAULT: `None`
`dockerfile`	The Dockerfile to use. TYPE: `str \| None` DEFAULT: `None`
`lang`	The language to use. TYPE: `str` DEFAULT: `PYTHON`
`keep_template`	Whether to keep the template image. TYPE: `bool` DEFAULT: `False`
`commit_container`	Whether to commit the container to a new image. TYPE: `bool` DEFAULT: `False`
`verbose`	Whether to enable verbose output. TYPE: `bool` DEFAULT: `False`
`mounts`	The mounts to use. TYPE: `list \| None` DEFAULT: `None`
`stream`	Whether to stream the output. TYPE: `bool` DEFAULT: `False`
`runtime_configs`	The runtime configurations to use. TYPE: `dict \| None` DEFAULT: `None`
`workdir`	The working directory to use. TYPE: `str \| None` DEFAULT: `'/sandbox'`
`security_policy`	The security policy to use. TYPE: `SecurityPolicy \| None` DEFAULT: `None`
`default_timeout`	The default timeout to use. TYPE: `float \| None` DEFAULT: `None`
`execution_timeout`	The execution timeout to use. TYPE: `float \| None` DEFAULT: `None`
`session_timeout`	The session timeout to use. TYPE: `float \| None` DEFAULT: `None`
`container_id`	ID of existing container to connect to. TYPE: `str \| None` DEFAULT: `None`
`skip_environment_setup`	Skip language-specific environment setup. TYPE: `bool` DEFAULT: `False`
`**kwargs`	Additional keyword arguments. TYPE: `dict[str, Any]` DEFAULT: `{}`

RETURNS	DESCRIPTION
`None`	None

Source code in llm_sandbox/podman.py

def __init__(
    self,  # NOSONAR
    client: PodmanClient | None = None,
    image: str | None = None,
    dockerfile: str | None = None,
    lang: str = SupportedLanguage.PYTHON,
    keep_template: bool = False,
    commit_container: bool = False,
    verbose: bool = False,
    mounts: list | None = None,
    stream: bool = False,
    runtime_configs: dict | None = None,
    workdir: str | None = "/sandbox",
    security_policy: SecurityPolicy | None = None,
    default_timeout: float | None = None,
    execution_timeout: float | None = None,
    session_timeout: float | None = None,
    container_id: str | None = None,
    skip_environment_setup: bool = False,
    **kwargs: dict[str, Any],
) -> None:
    r"""Initialize Podman session.

    Args:
        client (PodmanClient | None): The Podman client to use.
        image (str | None): The image to use.
        dockerfile (str | None): The Dockerfile to use.
        lang (str): The language to use.
        keep_template (bool): Whether to keep the template image.
        commit_container (bool): Whether to commit the container to a new image.
        verbose (bool): Whether to enable verbose output.
        mounts (list | None): The mounts to use.
        stream (bool): Whether to stream the output.
        runtime_configs (dict | None): The runtime configurations to use.
        workdir (str | None): The working directory to use.
        security_policy (SecurityPolicy | None): The security policy to use.
        default_timeout (float | None): The default timeout to use.
        execution_timeout (float | None): The execution timeout to use.
        session_timeout (float | None): The session timeout to use.
        container_id (str | None): ID of existing container to connect to.
        skip_environment_setup (bool): Skip language-specific environment setup.
        **kwargs: Additional keyword arguments.

    Returns:
        None

    """
    config = SessionConfig(
        image=image,
        dockerfile=dockerfile,
        lang=SupportedLanguage(lang.upper()),
        verbose=verbose,
        workdir=workdir or "/sandbox",
        runtime_configs=runtime_configs or {},
        security_policy=security_policy,
        default_timeout=default_timeout,
        execution_timeout=execution_timeout,
        session_timeout=session_timeout,
        container_id=container_id,
        skip_environment_setup=skip_environment_setup,
    )

    # Initialize BaseSession (skip Docker's __init__)
    from llm_sandbox.core.session_base import BaseSession

    BaseSession.__init__(self, config=config, **kwargs)

    if not client:
        self._log("Using local Podman context since client is not provided.")
        self.client = PodmanClient.from_env()
    else:
        self.client = client

    self.container_api = PodmanContainerAPI(self.client, stream)

    # Set other attributes
    self.docker_image: Image
    self.keep_template: bool = keep_template
    self.commit_container: bool = commit_container
    self.is_create_template: bool = False
    self.stream: bool = stream

    if mounts:
        import warnings

        warnings.warn(
            "The 'mounts' parameter is deprecated and will be removed in a future version. "
            "Put the mounts in 'runtime_configs' instead.",
            DeprecationWarning,
            stacklevel=2,
        )
        self.config.runtime_configs.setdefault("mounts", []).append(mounts)

Functions¶

open ¶

open() -> None

Open the Podman session with normalized runtime configs.

This method overrides the Docker implementation to normalize runtime configurations for Podman compatibility before opening.

Source code in llm_sandbox/podman.py

def open(self) -> None:
    """Open the Podman session with normalized runtime configs.

    This method overrides the Docker implementation to normalize
    runtime configurations for Podman compatibility before opening.

    """
    # Normalize runtime configs before opening
    if self.config.runtime_configs:
        self.config.runtime_configs = self._normalize_runtime_configs_for_podman(self.config.runtime_configs)

    # Call parent's open method
    super().open()

Micromamba Backend¶

MicromambaSession ¶

MicromambaSession(
    client: DockerClient | None = None,
    image: str = "mambaorg/micromamba:latest",
    dockerfile: str | None = None,
    lang: str = SupportedLanguage.PYTHON,
    keep_template: bool = False,
    verbose: bool = False,
    mounts: list[Mount] | None = None,
    environment: str = "base",
    commit_container: bool = False,
    stream: bool = True,
    runtime_configs: dict | None = None,
    workdir: str = "/sandbox",
    security_policy: SecurityPolicy | None = None,
    default_timeout: float | None = None,
    execution_timeout: float | None = None,
    session_timeout: float | None = None,
    container_id: str | None = None,
    skip_environment_setup: bool = False,
    **kwargs: Any,
)

Bases: SandboxDockerSession

Extends BaseSession to execute commands within a Micromamba environment.

This session leverages a Docker container (typically one with Micromamba pre-installed, like "mambaorg/micromamba:latest") and wraps executed commands with micromamba run to ensure they operate within a specified Micromamba environment.

Reference: https://github.com/vndee/llm-sandbox/pull/3

Initialize a new Micromamba-enabled sandbox session.

PARAMETER	DESCRIPTION
`client`	An existing Docker client instance. If None, a new client is created from the local Docker environment. Defaults to None. TYPE: `DockerClient \| None` DEFAULT: `None`
`image`	The Docker image to use, which should have Micromamba installed. Defaults to "mambaorg/micromamba:latest". TYPE: `str` DEFAULT: `'mambaorg/micromamba:latest'`
`dockerfile`	Path to a Dockerfile to build a custom image. The resulting image should have Micromamba. Defaults to None. TYPE: `str \| None` DEFAULT: `None`
`lang`	The primary programming language. This mainly influences default file extensions for code execution. Defaults to SupportedLanguage.PYTHON. TYPE: `str` DEFAULT: `PYTHON`
`keep_template`	If True, the Docker image will not be removed after the session ends. Defaults to False. TYPE: `bool` DEFAULT: `False`
`verbose`	If True, print detailed log messages. Defaults to False. TYPE: `bool` DEFAULT: `False`
`mounts`	A list of Docker `Mount` objects to be mounted into the container. Defaults to None. TYPE: `list[Mount] \| None` DEFAULT: `None`
`environment`	The name of the Micromamba environment to activate and run commands within (e.g., "base", "my_env"). Defaults to "base". TYPE: `str` DEFAULT: `'base'`
`commit_container`	If True, the Docker container's state will be committed to a new image after the session ends. Defaults to False. TYPE: `bool` DEFAULT: `False`
`stream`	If True, the output from `execute_command` will be streamed. Defaults to True. TYPE: `bool` DEFAULT: `True`
`runtime_configs`	Additional configurations for the container runtime. Defaults to None. TYPE: `dict \| None` DEFAULT: `None`
`workdir`	The working directory inside the container. Defaults to "/sandbox". TYPE: `str` DEFAULT: `'/sandbox'`
`security_policy`	The security policy to use for the session. Defaults to None. TYPE: `SecurityPolicy \| None` DEFAULT: `None`
`default_timeout`	The default timeout for the session. Defaults to None. TYPE: `float \| None` DEFAULT: `None`
`execution_timeout`	The execution timeout for the session. Defaults to None. TYPE: `float \| None` DEFAULT: `None`
`session_timeout`	The session timeout for the session. Defaults to None. TYPE: `float \| None` DEFAULT: `None`
`container_id`	ID of existing container to connect to. Defaults to None. TYPE: `str \| None` DEFAULT: `None`
`skip_environment_setup`	Skip language-specific environment setup. Defaults to False. TYPE: `bool` DEFAULT: `False`
`**kwargs`	Additional keyword arguments. TYPE: `Any` DEFAULT: `{}`

Source code in llm_sandbox/micromamba.py

def __init__(
    self,  # NOSONAR
    client: docker.DockerClient | None = None,
    image: str = "mambaorg/micromamba:latest",
    dockerfile: str | None = None,
    lang: str = SupportedLanguage.PYTHON,
    keep_template: bool = False,
    verbose: bool = False,
    mounts: list[Mount] | None = None,
    environment: str = "base",
    commit_container: bool = False,
    stream: bool = True,
    runtime_configs: dict | None = None,
    workdir: str = "/sandbox",
    security_policy: SecurityPolicy | None = None,
    default_timeout: float | None = None,
    execution_timeout: float | None = None,
    session_timeout: float | None = None,
    container_id: str | None = None,
    skip_environment_setup: bool = False,
    **kwargs: Any,
) -> None:
    r"""Initialize a new Micromamba-enabled sandbox session.

    Args:
        client (docker.DockerClient | None, optional): An existing Docker client instance.
            If None, a new client is created from the local Docker environment. Defaults to None.
        image (str, optional): The Docker image to use, which should have Micromamba installed.
            Defaults to "mambaorg/micromamba:latest".
        dockerfile (str | None, optional): Path to a Dockerfile to build a custom image.
            The resulting image should have Micromamba. Defaults to None.
        lang (str, optional): The primary programming language. This mainly influences default file
            extensions for code execution. Defaults to SupportedLanguage.PYTHON.
        keep_template (bool, optional): If True, the Docker image will not be removed after the
            session ends. Defaults to False.
        verbose (bool, optional): If True, print detailed log messages. Defaults to False.
        mounts (list[Mount] | None, optional): A list of Docker `Mount` objects to be mounted
            into the container. Defaults to None.
        environment (str, optional): The name of the Micromamba environment to activate and run
            commands within (e.g., "base", "my_env"). Defaults to "base".
        commit_container (bool, optional): If True, the Docker container's state will be committed
            to a new image after the session ends. Defaults to False.
        stream (bool, optional): If True, the output from `execute_command` will be streamed.
            Defaults to True.
        runtime_configs (dict | None, optional): Additional configurations for the container runtime.
            Defaults to None.
        workdir (str, optional): The working directory inside the container.
            Defaults to "/sandbox".
        security_policy (SecurityPolicy | None, optional): The security policy to use for the session.
            Defaults to None.
        default_timeout (float | None, optional): The default timeout for the session.
            Defaults to None.
        execution_timeout (float | None, optional): The execution timeout for the session.
            Defaults to None.
        session_timeout (float | None, optional): The session timeout for the session.
            Defaults to None.
        container_id (str | None, optional): ID of existing container to connect to.
            Defaults to None.
        skip_environment_setup (bool, optional): Skip language-specific environment setup.
            Defaults to False.
        **kwargs: Additional keyword arguments.

    """
    super().__init__(
        client=client,
        image=image,
        dockerfile=dockerfile,
        lang=lang,
        keep_template=keep_template,
        verbose=verbose,
        mounts=mounts,
        commit_container=commit_container,
        stream=stream,
        runtime_configs=runtime_configs or {},
        workdir=workdir,
        security_policy=security_policy,
        default_timeout=default_timeout,
        execution_timeout=execution_timeout,
        session_timeout=session_timeout,
        container_id=container_id,
        skip_environment_setup=skip_environment_setup,
        **kwargs,
    )

    self.environment = environment

    self.container_api = MicromambaContainerAPI(self.client, environment, stream)

Functions¶

Type Hints¶

Protocol Types¶

class ContainerProtocol(Protocol):
    """Protocol for container objects"""

    def execute_command(self, command: str, workdir: str | None = None) -> Any:
        ...

    def get_archive(self, path: str) -> tuple:
        ...

    def run(self, code: str, libraries: list | None = None) -> Any:
        ...

Complete Example¶

from llm_sandbox import (
    SandboxSession,
    SandboxBackend,
    ArtifactSandboxSession,
    get_security_policy,
    SecurityPolicy,
    SecurityPattern,
    SecurityIssueSeverity
)
from llm_sandbox.exceptions import SandboxTimeoutError
import base64

# Basic usage
with SandboxSession(lang="python") as session:
    result = session.run("print('Hello, World!')")
    print(result.stdout)

# With timeout configuration
with SandboxSession(
    lang="python",
    execution_timeout=30.0,  # 30 seconds for code execution
    session_timeout=300.0,   # 5 minutes session lifetime
    default_timeout=10.0     # Default timeout for operations
) as session:
    try:
        # This will use the execution_timeout (30s)
        result = session.run("print('Normal execution')")

        # Override timeout for specific execution
        result = session.run("""
import time
time.sleep(5)
print('Long operation completed')
        """, timeout=15.0)  # Override with 15 seconds

    except SandboxTimeoutError as e:
        print(f"Operation timed out: {e}")

# With security policy
policy = get_security_policy("production")
policy.add_pattern(SecurityPattern(
    pattern=r"requests\.get\(.*internal\.company",
    description="Internal network access",
    severity=SecurityIssueSeverity.HIGH
))

with SandboxSession(
    lang="python",
    security_policy=policy,
    runtime_configs={
        "cpu_count": 2,
        "mem_limit": "512m",
        "timeout": 30
    }
) as session:
    # Check code safety
    code = "import requests; requests.get('https://api.example.com')"
    is_safe, violations = session.is_safe(code)

    if is_safe:
        result = session.run(code, libraries=["requests"])
        print(result.stdout)
    else:
        print("Code failed security check")

# With artifact extraction
with ArtifactSandboxSession(
    lang="python",
    backend=SandboxBackend.DOCKER
) as session:
    result = session.run("""
import matplotlib.pyplot as plt
import numpy as np

x = np.linspace(0, 10, 100)
y = np.sin(x)
plt.plot(x, y)
plt.title('Sine Wave')
plt.show()
    """, libraries=["matplotlib", "numpy"])

    # Save plots
    for i, plot in enumerate(result.plots):
        with open(f"plot_{i}.{plot.format.value}", "wb") as f:
            f.write(base64.b64decode(plot.content_base64))

# Kubernetes backend
with SandboxSession(
    backend=SandboxBackend.KUBERNETES,
    lang="python",
    kube_namespace="default",
    pod_manifest={
        "spec": {
            "containers": [{
                "resources": {
                    "limits": {
                        "memory": "512Mi",
                        "cpu": "1"
                    }
                }
            }]
        }
    }
) as session:
    result = session.run("print('Running in Kubernetes!')")
    print(result.stdout)

API Reference¶

Core Classes¶

SandboxSession¶

SandboxSession module-attribute ¶

ArtifactSandboxSession¶

ArtifactSandboxSession ¶

Functions¶

__enter__ ¶

__exit__ ¶

__getattr__ ¶

clear_plots ¶

run ¶

Plot Management¶

InteractiveSandboxSession¶

InteractiveSandboxSession ¶

Functions¶

close ¶

copy_from_runtime ¶

copy_to_runtime ¶

execute_command ¶

execute_commands ¶

open ¶

run ¶

InteractiveSettings¶

InteractiveSettings dataclass ¶

Functions¶

__post_init__ ¶

KernelType¶

KernelType ¶

Data Classes¶

ConsoleOutput¶

ConsoleOutput dataclass ¶

Functions¶

success ¶

text ¶

to_json ¶

ExecutionResult¶

ExecutionResult dataclass ¶

PlotOutput¶

PlotOutput dataclass ¶

Security Classes¶

SecurityPolicy¶

SecurityPolicy ¶

Functions¶

add_pattern ¶

add_restricted_module ¶

SecurityPattern¶

SecurityPattern ¶

Functions¶

validate_pattern classmethod ¶

RestrictedModule¶

RestrictedModule ¶

SecurityIssueSeverity¶

SecurityIssueSeverity ¶

Enumerations¶

SandboxBackend¶

SandboxBackend ¶

SupportedLanguage¶

SupportedLanguage ¶

FileType¶

FileType ¶

Functions¶

create_session¶

create_session ¶

Exceptions¶

SandboxTimeoutError¶

SandboxTimeoutError ¶

Functions¶

Language Handlers¶

AbstractLanguageHandler¶

AbstractLanguageHandler ¶

Attributes¶

file_extension property ¶

is_support_library_installation property ¶

is_support_plot_detection property ¶

name property ¶

supported_plot_libraries property ¶

Functions¶

extract_plots ¶

filter_comments ¶

SandboxSession `module-attribute` ¶

enter ¶

exit ¶

getattr ¶

InteractiveSettings `dataclass` ¶

ConsoleOutput `dataclass` ¶

ExecutionResult `dataclass` ¶

PlotOutput `dataclass` ¶

validate_pattern `classmethod` ¶

file_extension `property` ¶

is_support_library_installation `property` ¶

is_support_plot_detection `property` ¶

name `property` ¶

supported_plot_libraries `property` ¶

get_import_patterns `abstractmethod` ¶

get_inline_comment_patterns `abstractmethod` `staticmethod` ¶

get_multiline_comment_patterns `abstractmethod` `staticmethod` ¶

LanguageConfig `dataclass` ¶