@kokorolx/ai-sandbox-wrapper 1.0.0

package/dockerfiles/kilo/Dockerfile

@@ -0,0 +1,25 @@
+FROM node:22-slim
+
+# Install dependencies
+RUN apt-get update && apt-get install -y --no-install-recommends \
+    git \
+    curl \
+    ssh \
+    ca-certificates \
+    && rm -rf /var/lib/apt/lists/*
+
+# Install Kilo Code CLI as root
+RUN npm install -g @kilocode/cli
+
+# Create workspace
+WORKDIR /workspace
+
+# Create worker user
+RUN useradd -m -u 1001 -d /home/agent agent && \
+    chown -R agent:agent /workspace
+
+USER agent
+ENV HOME=/home/agent
+
+# Kilo uses 'kilocode' as entrypoint
+ENTRYPOINT ["kilocode"]

package/dockerfiles/opencode/Dockerfile

@@ -0,0 +1,10 @@
+FROM ai-base:latest
+
+USER root
+# Install OpenCode using official native installer
+RUN curl -fsSL https://opencode.ai/install | bash && \
+    mv /home/agent/.opencode/bin/opencode /usr/local/bin/opencode && \
+    rm -rf /home/agent/.opencode
+
+USER agent
+ENTRYPOINT ["opencode"]

package/dockerfiles/qoder/Dockerfile

@@ -0,0 +1,12 @@
+FROM ai-base:latest
+USER root
+
+# Install Qoder CLI to a non-shadowed path
+RUN mkdir -p /usr/local/lib/qoder && \
+    cd /usr/local/lib/qoder && \
+    bun init -y && \
+    bun add @qoder-ai/qodercli && \
+    ln -s /usr/local/lib/qoder/node_modules/.bin/qodercli /usr/local/bin/qoder
+
+USER agent
+ENTRYPOINT ["qoder"]

package/dockerfiles/qwen/Dockerfile

@@ -0,0 +1,10 @@
+FROM ai-base:latest
+USER root
+# Install qwen-code in a dedicated directory and symlink to /usr/local/bin
+RUN mkdir -p /usr/local/lib/qwen && \
+    cd /usr/local/lib/qwen && \
+    bun init -y && \
+    bun add @qwen-code/qwen-code@latest tiktoken && \
+    ln -s /usr/local/lib/qwen/node_modules/.bin/qwen /usr/local/bin/qwen
+USER agent
+ENTRYPOINT ["qwen"]

package/dockerfiles/shai/Dockerfile

@@ -0,0 +1,9 @@
+FROM ai-base:latest
+USER root
+
+# Install SHAI native binary and relocate to /usr/local/bin
+RUN curl -fsSL https://raw.githubusercontent.com/ovh/shai/main/install.sh | bash && \
+    mv /home/agent/.local/bin/shai /usr/local/bin/shai
+
+USER agent
+ENTRYPOINT ["shai"]

package/lib/AGENTS.md

@@ -0,0 +1,58 @@
+# Lib/ - Tool Installation Scripts
+
+**Purpose:** Installation and configuration scripts for 15+ AI coding tools
+
+## Overview
+
+Bash scripts that install and configure each supported AI tool inside Docker containers. Each script handles tool-specific setup, environment variables, and Docker image requirements.
+
+## Structure
+
+```
+lib/
+├── install-base.sh      # Bun runtime base image
+├── install-{tool}.sh    # 14 tool-specific installers
+├── generate-ai-run.sh   # Generates ai-run wrapper script
+├── install-tool.sh      # Template for new tools
+├── ssh-key-selector.sh  # Interactive SSH key chooser
+├── install-codeserver.sh # VSCode Server setup
+└── install-vscode.sh    # Desktop VSCode (X11)
+```
+
+## Where to Look
+
+| Task | Script | Notes |
+|------|--------|-------|
+| Add new tool | `install-tool.sh` | Copy template, customize |
+| Modify tool install | `install-{tool}.sh` | Update Docker image, env vars |
+| SSH handling | `ssh-key-selector.sh` | User prompts for key selection |
+| Wrapper generation | `generate-ai-run.sh` | Creates bin/ai-run |
+
+## Tool Inventory
+
+| Tool | Script | Type |
+|------|--------|------|
+| Claude | `install-claude.sh` | CLI binary |
+| Gemini | `install-gemini.sh` | npm/Bun |
+| Aider | `install-aider.sh` | Python |
+| Opencode | `install-opencode.sh` | Go binary |
+| Kilo | `install-kilo.sh` | npm/Bun |
+| Codex | `install-codex.sh` | npm/Bun |
+| Amp | `install-amp.sh` | npm/Bun |
+| Qwen | `install-qwen.sh` | npm/Bun |
+| Droid | `install-droid.sh` | Custom |
+| Jules | `install-jules.sh` | npm/Bun |
+| Qoder | `install-qoder.sh` | npm/Bun |
+| Auggie | `install-auggie.sh` | npm/Bun |
+| CodeBuddy | `install-codebuddy.sh` | npm/Bun |
+| SHAI | `install-shai.sh` | npm/Bun |
+| CodeServer | `install-codeserver.sh` | VSCode browser |
+| VSCode | `install-vscode.sh` | Desktop X11 |
+
+## Conventions
+
+- Scripts use `set -e` for fail-fast
+- Environment variables use `AI_` prefix
+- Tool configs mounted to `/home/agent/` in container
+- API keys read from `~/.ai-env`
+- Docker images named `ai-{tool}:latest`

package/lib/generate-ai-run.sh

@@ -0,0 +1,19 @@
+#!/usr/bin/env bash
+set -e
+
+# Get the project root directory
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+PROJECT_ROOT="$(cd "$SCRIPT_DIR/.." && pwd)"
+PROJECT_BIN="$PROJECT_ROOT/bin"
+
+# The ai-run script already exists in bin/ai-run (version controlled)
+# We just need to ensure it's executable and symlinked
+
+chmod +x "$PROJECT_BIN/ai-run"
+
+# Create symlink in user's bin directory
+mkdir -p "$HOME/bin"
+ln -sf "$PROJECT_BIN/ai-run" "$HOME/bin/ai-run"
+
+echo "✅ ai-run script at $PROJECT_BIN/ai-run"
+echo "✅ Symlinked to $HOME/bin/ai-run"

package/lib/install-aider.sh

@@ -0,0 +1,30 @@
+#!/usr/bin/env bash
+set -e
+
+# Aider installer: Python-based AI coding assistant
+TOOL="aider"
+
+echo "Installing $TOOL (Python-based AI pair programmer)..."
+
+# Create directories
+mkdir -p "dockerfiles/$TOOL"
+mkdir -p "$HOME/.ai-cache/$TOOL"
+mkdir -p "$HOME/.ai-home/$TOOL"
+
+# Create Dockerfile (extends base image which has Python)
+cat <<'EOF' > "dockerfiles/$TOOL/Dockerfile"
+FROM ai-base:latest
+USER agent
+# Install aider via aider-install
+RUN python3 -m pip install --break-system-packages aider-install && aider-install
+ENTRYPOINT ["aider"]
+EOF
+
+# Build image
+echo "Building Docker image for $TOOL..."
+docker build -t "ai-$TOOL:latest" "dockerfiles/$TOOL"
+
+echo "✅ $TOOL installed"
+echo ""
+echo "Usage: ai-run aider [options]"
+echo "Example: ai-run aider --model gpt-4"

package/lib/install-amp.sh

@@ -0,0 +1,39 @@
+#!/usr/bin/env bash
+set -e
+
+# Amp installer: Sourcegraph's AI coding assistant
+TOOL="amp"
+
+echo "Installing $TOOL (Sourcegraph Amp)..."
+
+# Create directories
+mkdir -p "dockerfiles/$TOOL"
+mkdir -p "$HOME/.ai-cache/$TOOL"
+mkdir -p "$HOME/.ai-home/$TOOL"
+
+# Create Dockerfile (extends base image for faster builds)
+cat <<'EOF' > "dockerfiles/$TOOL/Dockerfile"
+FROM ai-base:latest
+USER root
+# Install Amp globally into a persistent directory (not shadowed by home)
+RUN mkdir -p /usr/local/lib/amp && \
+    cd /usr/local/lib/amp && \
+    bun init -y && \
+    bun add @sourcegraph/amp && \
+    ln -s /usr/local/lib/amp/node_modules/.bin/amp /usr/local/bin/amp
+USER agent
+ENTRYPOINT ["amp"]
+EOF
+
+# Build image
+echo "Building Docker image for $TOOL..."
+docker build -t "ai-$TOOL:latest" "dockerfiles/$TOOL"
+
+echo "✅ $TOOL installed"
+echo ""
+echo "Features:"
+echo "  ✓ Sourcegraph AI coding assistant"
+echo "  ✓ Code understanding and generation"
+echo "  ✓ Multi-file editing"
+echo ""
+echo "Usage: ai-run amp"

package/lib/install-auggie.sh

@@ -0,0 +1,36 @@
+#!/usr/bin/env bash
+set -e
+
+# Auggie CLI installer: Augment Code's AI assistant
+TOOL="auggie"
+
+echo "Installing $TOOL (Augment Auggie CLI)..."
+
+# Create directories
+mkdir -p "dockerfiles/$TOOL"
+mkdir -p "$HOME/.ai-cache/$TOOL"
+mkdir -p "$HOME/.ai-home/$TOOL"
+
+# Create Dockerfile
+cat <<'EOF' > "dockerfiles/$TOOL/Dockerfile"
+FROM ai-base:latest
+USER root
+
+# Install Auggie CLI to a non-shadowed path
+RUN mkdir -p /usr/local/lib/auggie && \
+    cd /usr/local/lib/auggie && \
+    bun init -y && \
+    bun add @augmentcode/auggie && \
+    ln -s /usr/local/lib/auggie/node_modules/.bin/auggie /usr/local/bin/auggie
+
+USER agent
+ENTRYPOINT ["auggie"]
+EOF
+
+# Build image
+echo "Building Docker image for $TOOL..."
+docker build -t "ai-$TOOL:latest" "dockerfiles/$TOOL"
+
+echo "✅ $TOOL installed"
+echo ""
+echo "Usage: ai-run auggie"

package/lib/install-base.sh

@@ -0,0 +1,139 @@
+#!/usr/bin/env bash
+set -e
+
+# Build base Docker image with Bun runtime (2x faster than Node.js)
+mkdir -p "dockerfiles/base"
+
+ADDITIONAL_TOOLS_INSTALL=""
+
+if [[ "${INSTALL_SPEC_KIT:-0}" -eq 1 ]]; then
+  echo "📦 spec-kit will be installed in base image"
+  ADDITIONAL_TOOLS_INSTALL+='RUN pipx install specify-cli --pip-args="git+https://github.com/github/spec-kit.git"
+'
+fi
+
+if [[ "${INSTALL_UX_UI_PROMAX:-0}" -eq 1 ]]; then
+  echo "📦 ux-ui-promax will be installed in base image"
+  ADDITIONAL_TOOLS_INSTALL+='RUN bun install -g uipro-cli
+'
+fi
+
+if [[ "${INSTALL_OPENSPEC:-0}" -eq 1 ]]; then
+  echo "📦 OpenSpec will be installed in base image"
+  ADDITIONAL_TOOLS_INSTALL+='RUN mkdir -p /usr/local/lib/openspec && \
+    cd /usr/local/lib/openspec && \
+    bun init -y && \
+    bun add @fission-ai/openspec && \
+    ln -sf /usr/local/lib/openspec/node_modules/.bin/openspec /usr/local/bin/openspec
+'
+fi
+
+if [[ "${INSTALL_PLAYWRIGHT:-0}" -eq 1 ]]; then
+  echo "📦 Playwright will be installed in base image"
+  ADDITIONAL_TOOLS_INSTALL+='# Install Playwright system dependencies
+RUN apt-get update && apt-get install -y --no-install-recommends \
+    libglib2.0-0 \
+    libnspr4 \
+    libnss3 \
+    libdbus-1-3 \
+    libatk1.0-0 \
+    libatk-bridge2.0-0 \
+    libcups2 \
+    libxcb1 \
+    libxkbcommon0 \
+    libatspi2.0-0 \
+    libx11-6 \
+    libxcomposite1 \
+    libxdamage1 \
+    libxext6 \
+    libxfixes3 \
+    libxrandr2 \
+    libgbm1 \
+    libcairo2 \
+    libpango-1.0-0 \
+    libasound2 \
+    && rm -rf /var/lib/apt/lists/*
+# Install Playwright and browsers via npm (avoids pnpm global bin issues)
+RUN npm install -g playwright && npx playwright install
+'
+fi
+
+if [[ "${INSTALL_RUBY:-0}" -eq 1 ]]; then
+  echo "📦 Ruby 3.3.0 + Rails 8.0.2 will be installed in base image"
+  ADDITIONAL_TOOLS_INSTALL+='# Install Ruby build dependencies
+RUN apt-get update && apt-get install -y --no-install-recommends \
+    libssl-dev \
+    libreadline-dev \
+    zlib1g-dev \
+    libyaml-dev \
+    libffi-dev \
+    libgdbm-dev \
+    libncurses5-dev \
+    && rm -rf /var/lib/apt/lists/*
+
+# Install rbenv and ruby-build
+RUN git clone https://github.com/rbenv/rbenv.git /usr/local/rbenv && \
+    git clone https://github.com/rbenv/ruby-build.git /usr/local/rbenv/plugins/ruby-build
+
+ENV RBENV_ROOT=/usr/local/rbenv
+ENV PATH=$RBENV_ROOT/bin:$RBENV_ROOT/shims:$PATH
+
+# Install Ruby 3.3.0
+RUN rbenv install 3.3.0 && rbenv global 3.3.0 && rbenv rehash
+
+# Install Rails 8.0.2 and Bundler
+RUN gem install rails -v 8.0.2 && gem install bundler && rbenv rehash
+'
+fi
+
+cat > "dockerfiles/base/Dockerfile" <<EOF
+FROM oven/bun:latest
+
+# Install common dependencies (Bun + Node.js + Python for full package manager support)
+RUN apt-get update && apt-get install -y --no-install-recommends \\
+    git \\
+    curl \\
+    ssh \\
+    ca-certificates \\
+    python3 \\
+    python3-pip \\
+    python3-venv \\
+    python3-dev \\
+    python3-setuptools \\
+    build-essential \\
+    libopenblas-dev \\
+    pipx \\
+    && curl -LsSf https://astral.sh/uv/install.sh | UV_INSTALL_DIR=/usr/local/bin sh \\
+    && rm -rf /var/lib/apt/lists/* \\
+    && pipx ensurepath
+
+# Install Node.js LTS (includes npm) via NodeSource
+RUN curl -fsSL https://deb.nodesource.com/setup_lts.x | bash - \\
+    && apt-get install -y nodejs \\
+    && rm -rf /var/lib/apt/lists/*
+
+# Install pnpm globally via npm
+RUN npm install -g pnpm
+
+# Install TypeScript and LSP tools for AI coding assistants
+RUN npm install -g typescript typescript-language-server
+
+# Verify installations
+RUN node --version && npm --version && pnpm --version && bun --version && tsc --version
+
+# Install additional tools (if selected)
+${ADDITIONAL_TOOLS_INSTALL}
+# Create workspace
+WORKDIR /workspace
+
+# Non-root user for security
+RUN useradd -m -u 1001 -d /home/agent agent && \\
+    chown -R agent:agent /workspace
+USER agent
+ENV HOME=/home/agent
+EOF
+
+echo "Building base Docker image with Bun runtime..."
+docker build -t "ai-base:latest" "dockerfiles/base"
+echo "✅ Base image built (ai-base:latest)"
+

package/lib/install-claude.sh

@@ -0,0 +1,42 @@
+#!/usr/bin/env bash
+set -e
+
+# Claude Code installer: Anthropic's AI coding agent (Native Binary)
+TOOL="claude"
+
+echo "Installing $TOOL (Anthropic Claude Code - Native Binary)..."
+
+# Create directories
+mkdir -p "dockerfiles/$TOOL"
+mkdir -p "$HOME/.ai-cache/$TOOL"
+mkdir -p "$HOME/.ai-home/$TOOL"
+
+# Create Dockerfile using official native installer (no npm needed)
+cat <<'EOF' > "dockerfiles/$TOOL/Dockerfile"
+FROM ai-base:latest
+
+USER root
+# Install Claude Code using official native installer
+RUN curl -fsSL https://claude.ai/install.sh | bash && \
+    mkdir -p /usr/local/share && \
+    mv /home/agent/.local/share/claude /usr/local/share/claude && \
+    ln -sf /usr/local/share/claude/versions/$(ls /usr/local/share/claude/versions | head -1) /usr/local/bin/claude
+
+USER agent
+ENTRYPOINT ["claude"]
+EOF
+
+# Build image
+echo "Building Docker image for $TOOL (native binary)..."
+docker build -t "ai-$TOOL:latest" "dockerfiles/$TOOL"
+
+echo "✅ $TOOL installed (Native Binary)"
+echo ""
+echo "Features:"
+echo "  ✓ Official native binary (no Node.js)"
+echo "  ✓ Claude 3.5 Sonnet/Opus models"
+echo "  ✓ Agentic coding with file editing"
+echo "  ✓ Web search and fetch built-in"
+echo ""
+echo "Usage: ai-run claude"
+echo "Auth: Set ANTHROPIC_API_KEY environment variable"

package/lib/install-codebuddy.sh

@@ -0,0 +1,36 @@
+#!/usr/bin/env bash
+set -e
+
+# CodeBuddy CLI installer: Tencent's AI assistant
+TOOL="codebuddy"
+
+echo "Installing $TOOL (Tencent CodeBuddy CLI)..."
+
+# Create directories
+mkdir -p "dockerfiles/$TOOL"
+mkdir -p "$HOME/.ai-cache/$TOOL"
+mkdir -p "$HOME/.ai-home/$TOOL"
+
+# Create Dockerfile
+cat <<'EOF' > "dockerfiles/$TOOL/Dockerfile"
+FROM ai-base:latest
+USER root
+
+# Install CodeBuddy CLI to a non-shadowed path
+RUN mkdir -p /usr/local/lib/codebuddy && \
+    cd /usr/local/lib/codebuddy && \
+    bun init -y && \
+    bun add @tencent-ai/codebuddy-code && \
+    ln -s /usr/local/lib/codebuddy/node_modules/.bin/codebuddy /usr/local/bin/codebuddy
+
+USER agent
+ENTRYPOINT ["codebuddy"]
+EOF
+
+# Build image
+echo "Building Docker image for $TOOL..."
+docker build -t "ai-$TOOL:latest" "dockerfiles/$TOOL"
+
+echo "✅ $TOOL installed"
+echo ""
+echo "Usage: ai-run codebuddy"

package/lib/install-codeserver.sh

@@ -0,0 +1,171 @@
+#!/usr/bin/env bash
+set -e
+
+# Code-server installer: Browser-based VSCode (fast, no X11 needed)
+TOOL="codeserver"
+CODESERVER_PORT="${CODESERVER_PORT:-8080}"
+
+echo "Installing $TOOL (code-server - browser-based VSCode)..."
+
+# Create directories
+mkdir -p "dockerfiles/$TOOL"
+mkdir -p "$HOME/.ai-cache/$TOOL"
+mkdir -p "$HOME/.ai-home/$TOOL"
+
+WORKSPACES_FILE="$HOME/.ai-workspaces"
+
+# Create Dockerfile for code-server
+cat <<'EOF' > "dockerfiles/$TOOL/Dockerfile"
+FROM ubuntu:22.04
+
+ENV DEBIAN_FRONTEND=noninteractive
+
+# Install code-server dependencies
+RUN apt-get update && apt-get install -y --no-install-recommends \
+    wget \
+    ca-certificates \
+    curl \
+    git \
+    && rm -rf /var/lib/apt/lists/*
+
+# Download and install code-server (latest stable)
+RUN ARCH=$(dpkg --print-architecture) && \
+    if [ "$ARCH" = "amd64" ]; then CS_ARCH="amd64"; elif [ "$ARCH" = "arm64" ]; then CS_ARCH="arm64"; else CS_ARCH="amd64"; fi && \
+    echo "Downloading code-server for ${CS_ARCH}..." && \
+    curl -fsSL https://code-server.dev/install.sh | sh && \
+    echo "code-server installed successfully"
+
+# Create directories
+RUN mkdir -p /workspace /tmp /home/coder/.config/code-server /home/coder/.local/share/code-server
+WORKDIR /workspace
+
+# Non-root user (use UID 1001 to avoid conflicts)
+RUN useradd -m -u 1001 -d /home/coder coder && \
+    chown -R coder:coder /workspace /tmp /home/coder
+
+USER coder
+
+# Set home directory
+ENV HOME=/home/coder
+
+# Expose port
+EXPOSE 8080
+
+# Start code-server (no auth for local use, bind to all interfaces)
+ENTRYPOINT ["code-server", "--bind-addr", "0.0.0.0:8080", "--auth", "none", "--disable-telemetry"]
+CMD ["/workspace"]
+EOF
+
+# Build image
+echo "Building Docker image for $TOOL..."
+docker build -t "ai-$TOOL:latest" "dockerfiles/$TOOL"
+
+# Create wrapper script
+cat <<'EOF' > "$HOME/bin/codeserver-run"
+#!/usr/bin/env bash
+# Code-server launcher - opens VSCode in browser
+
+set -e
+
+WORKSPACES_FILE="$HOME/.ai-workspaces"
+CONTAINER_NAME="ai-codeserver-sandbox-$$"
+CODESERVER_PORT="${CODESERVER_PORT:-8080}"
+
+if [ ! -f "$WORKSPACES_FILE" ]; then
+    echo "Error: No workspaces configured. Run setup.sh first." >&2
+    exit 1
+fi
+
+# Build volume mounts from whitelisted workspaces
+VOLUME_MOUNTS=""
+WS_INDEX=0
+while IFS= read -r ws; do
+    if [ -n "$ws" ] && [ -d "$ws" ]; then
+        VOLUME_MOUNTS="$VOLUME_MOUNTS -v $ws:/workspace/workspace-$WS_INDEX"
+        WS_INDEX=$((WS_INDEX + 1))
+    fi
+done < "$WORKSPACES_FILE"
+
+if [ $WS_INDEX -eq 0 ]; then
+    echo "Error: No valid workspaces found in $WORKSPACES_FILE" >&2
+    exit 1
+fi
+
+echo "🔒 Starting code-server (browser-based VSCode sandbox)..."
+echo ""
+echo "Mounted workspaces:"
+WS_INDEX=0
+while IFS= read -r ws; do
+    if [ -n "$ws" ] && [ -d "$ws" ]; then
+        echo "  ✓ $ws → /workspace/workspace-$WS_INDEX"
+        WS_INDEX=$((WS_INDEX + 1))
+    fi
+done < "$WORKSPACES_FILE"
+echo ""
+
+# Open browser after a short delay
+(sleep 2 && open "http://localhost:$CODESERVER_PORT" 2>/dev/null || xdg-open "http://localhost:$CODESERVER_PORT" 2>/dev/null || echo "Open http://localhost:$CODESERVER_PORT in your browser") &
+
+echo "🚀 Starting code-server at http://localhost:$CODESERVER_PORT"
+echo "   Press Ctrl+C to stop"
+echo ""
+
+# STRICT SANDBOX SECURITY:
+# - No host environment variables
+# - No access to host files outside volumes
+# - Non-root user
+# - Only localhost can access the server
+
+docker run \
+    --rm \
+    --name "$CONTAINER_NAME" \
+    $VOLUME_MOUNTS \
+    --tmpfs /tmp:exec \
+    --tmpfs /run \
+    --tmpfs /home/coder/.config:uid=1001,gid=1001 \
+    --tmpfs /home/coder/.local:uid=1001,gid=1001 \
+    -p 127.0.0.1:$CODESERVER_PORT:8080 \
+    -e HOME=/home/coder \
+    -e PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin \
+    -u 1001:1001 \
+    -w /workspace \
+    "ai-codeserver:latest"
+
+echo ""
+echo "✅ code-server stopped"
+echo "🧹 Sandbox cleaned up"
+EOF
+
+chmod +x "$HOME/bin/codeserver-run"
+
+echo "✅ $TOOL installed (code-server - browser-based)"
+echo ""
+echo "Created files:"
+echo "  - Docker image: ai-$TOOL:latest"
+echo "  - Wrapper script: $HOME/bin/codeserver-run"
+echo ""
+echo "Features:"
+echo "  ✓ Runs in your native browser (fast, crisp)"
+echo "  ✓ No X11/XQuartz required"
+echo "  ✓ Same sandboxed environment"
+echo "  ✓ HiDPI/Retina support"
+echo ""
+echo "Security Features:"
+echo "  ✓ Only accessible from localhost"
+echo "  ✓ No host environment variables visible"
+echo "  ✓ No access to host filesystem outside volumes"
+echo "  ✓ Runs as non-root user"
+echo "  ✓ Terminal in VSCode is sandboxed"
+echo ""
+echo "Usage:"
+echo "  codeserver-run"
+echo "  # Opens VSCode in browser at http://localhost:$CODESERVER_PORT"
+echo ""
+echo "Whitelisted Workspaces:"
+if [ -f "$WORKSPACES_FILE" ]; then
+    while IFS= read -r ws; do
+        if [ -n "$ws" ] && [ -d "$ws" ]; then
+            echo "  - $ws"
+        fi
+    done < "$WORKSPACES_FILE"
+fi