Run AI code safely, fast, untrusted
A self-hostable code execution sandbox platform built with Firecracker microVMs. Sub-200ms startup times with snapshot-based warm pooling.
Concave provides secure, isolated code execution environments for running untrusted code. Built with Firecracker microVMs, gRPC orchestration, and modern infrastructure tools.
- Fast VM provisioning with golden snapshots
- gRPC control plane for VM lifecycle management
- Streaming data plane for file transfers and real-time output
- HTTP API gateway with authentication
- Python SDK for easy integration
- Dashboard and documentation site
See SETUP.md for complete deployment instructions.
- Set up GCP project and domain
- Configure Terraform and Ansible
- Deploy infrastructure
- Install Python SDK:
pip install concave-sandbox
Contributions are welcome! See CONTRIBUTING.md for guidelines.
If you discover a security vulnerability, please create an issue. All security issues will be promptly addressed.
This project is licensed under the MIT license.