Sign in Subscribe
docker

Docker Sandbox v0.29.0-rc1: OpenAPI, Network Policies & UUIDs

Docker Sandbox v0.29.0-rc1 ships a new OpenAPI-driven sandboxd HTTP API, per-sandbox network policies with domain deny lists, daemon-assigned UUIDs, and agent auth improvements for Gemini, OpenAI, and Codex.

Docker Sandbox v0.29.0-rc1: OpenAPI, Network Policies & UUIDs

TL;DR

  • New sandboxd HTTP API with OpenAPI spec — CLI and TUI now use it as single source of truth
  • Per-sandbox network policies with explicit domain deny lists for fine-grained control
  • Daemon-assigned UUIDs for reliable sandbox identification across restarts
  • Agent improvements: Gemini SSO relay, OpenAI OAuth auto-opens browser, Codex auth hardening

New

  • OpenAPI spec and generated client code — CLI and TUI migrated to new sandboxd HTTP API, making the daemon the authoritative source for all sandbox operations
  • Daemon-assigned UUIDs — Sandboxes now carry stable identifiers for reliable tracking across restarts and telemetry
  • Per-sandbox network policies — Fine-grained control over domain access with explicit deniedDomains list support
  • Binary TCP protocol support — SSH and other binary protocols now work through domain allow rules
  • Gemini SSO browser relay — Streamlined authentication flow for Gemini agent
  • OpenAI OAuth auto-browser — Browser automatically opens during OAuth flow instead of requiring manual navigation
  • Codex auth robustness — Skips auth.json placeholder when no host credentials present; Claude guidance now exposed to Codex sandboxes
  • CLI confirmation for sbx rm — Prevents accidental sandbox deletion with required confirmation prompt
  • Unhidden kit command — Kit command now visible in help output

Fixed

  • gVisor sockets now route to persistent, sandboxd-owned location instead of transient paths
  • Stranded tracker cleanup after failed auto-stop with no active sessions
  • DinD volume cleanup even when container inspect fails
  • SANDBOXES_STORAGE_ROOT override now properly applied to storage config
  • diagnose command reports running binary instead of first sbx on PATH
  • OpenAI credential configuration guidance improved in no-creds warning
  • MCR layer-blob CDN now allowed in default-code-and-containers policy
  • sbx ls empty state now provides actionable guidance instead of blank output

Update: docker pull docker/sbx:v0.29.0-rc1 or visit the release page for installation details.

Source: Docker

Read next