A fine-grained sandboxing tool for agentic AI that can run 100% locally. No "open core" here, no cloud services except those you configure.
Combines in an opinionated way:
- OpenCode as agent framework
- Podman as container isolation
- Devcontainers as a specification mechanism
- service-gator as fine-grained MCP server for Github/Gitlab/Forgejo/etc
To be clear: this tool is primarily designed by @cgwalters who would "un-invent" large language models if he could because he believes the long term negatives for society are likely to outweigh the gains. But since that's not possible, this project is about maximizing the positive aspects of LLMs with a focus on software production. We need to use LLMs safely and responsibly, with efficient human-in-the-loop controls and auditability.
However, @cgwalters uses LLMs every day. If you use LLMs or want to, but have heard of e.g. prompt injection attacks and share similar concerns from un-sandboxed agent use, then devaipod can help you, as it does the author.
Full documentation including quick start is available at cgwalters.github.io/devaipod
See the full comparison in the docs. Key projects in this space include OpenHands, SWE-agent, Ambient Code, Scion, Auto-Claude, Continue, and Goose.
See CONTRIBUTING.md and AGENTS.md for contribution guidelines.
Apache-2.0 OR MIT