Docker SBX v0.25.0: Proxy Support & CPU Allocation

TL;DR

• Upstream proxy support for corporate network routing
• New --cpus flag to control sandbox CPU allocation
• PID file-based daemon recovery when socket fails
• Linux package manager update prompts (apt/dnf)

New

• Upstream proxy support — Route sandbox traffic through corporate proxies for restricted network environments.
• --cpus flag — Control CPU allocation on create and run commands for better resource management.
• PID file daemon recovery — sbx daemon stop now works even when the daemon socket is unresponsive, with platform-specific identity verification.
• Linux package manager prompts — apt and dnf now prompt for updates on Linux installations.
• OAuth secret expansion — Enhanced ls/rm handling for Anthropic secrets.
• Agent command hints — Unknown agent commands now hint users to use sbx run <agent>.
• Daemon OAuth reload — New endpoint for reloading OAuth tokens with hardened Codex token sync.
• Policy governance improvements — Show rule origin and status for policykit rules; skip mount policy eviction when defaults aren't set.

Fixed

• Daemon startup now fails if mount policy engine cannot be created, preventing silent failures.
• Analytics kit panic during shutdown is now recovered gracefully.
• Nil req.URL in OAuth URL matcher is now guarded against.
• Proxy goroutines now wait for exit during teardown to prevent resource leaks.
• Exit code handling — user prompt cancellations now return non-zero exit codes.

Update: brew upgrade docker-sbx or visit the release page for platform-specific downloads.

Source: Docker