npm - @kokorolx/ai-sandbox-wrapper - Versions diffs - 2.0.1 → 2.1.1 - Mend

@kokorolx/ai-sandbox-wrapper 2.0.1 → 2.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (39) hide show

package/README.md +80 -84
package/bin/ai-run +211 -144
package/bin/ai-run.bak +1212 -0
package/bin/cli.js +91 -2
package/dockerfiles/amp/Dockerfile +13 -6
package/dockerfiles/base/Dockerfile +28 -58
package/lib/install-aider.sh +2 -2
package/lib/install-amp.sh +15 -8
package/lib/install-auggie.sh +2 -2
package/lib/install-base.sh +54 -36
package/lib/install-claude.sh +2 -2
package/lib/install-codebuddy.sh +2 -2
package/lib/install-codeserver.sh +2 -2
package/lib/install-codex.sh +2 -2
package/lib/install-droid.sh +2 -2
package/lib/install-gemini.sh +2 -2
package/lib/install-jules.sh +2 -2
package/lib/install-kilo.sh +2 -2
package/lib/install-opencode.sh +2 -2
package/lib/install-qoder.sh +2 -2
package/lib/install-qwen.sh +2 -2
package/lib/install-shai.sh +2 -2
package/lib/install-tool.sh +2 -2
package/lib/install-vscode.sh +2 -2
package/package.json +1 -1
package/setup.sh +16 -40
package/dockerfiles/AGENTS.md +0 -92
package/dockerfiles/aider/Dockerfile +0 -5
package/dockerfiles/auggie/Dockerfile +0 -12
package/dockerfiles/claude/Dockerfile +0 -11
package/dockerfiles/codebuddy/Dockerfile +0 -12
package/dockerfiles/codex/Dockerfile +0 -9
package/dockerfiles/droid/Dockerfile +0 -8
package/dockerfiles/gemini/Dockerfile +0 -9
package/dockerfiles/jules/Dockerfile +0 -12
package/dockerfiles/kilo/Dockerfile +0 -25
package/dockerfiles/qoder/Dockerfile +0 -12
package/dockerfiles/qwen/Dockerfile +0 -10
package/dockerfiles/shai/Dockerfile +0 -9

package/README.md CHANGED Viewed

@@ -8,46 +8,26 @@ AI coding tools like Claude, Gemini, and Aider have full access to your filesyst
 **What you get:** Peace of mind using AI coding tools without risking your personal and system data.
-*Last updated: Wednesday, January 29, 2026*
+*Last updated: Tuesday, February 3, 2026*
-## ⚠️ Breaking Change: v2.0.0 - Config Directory Reorganization
+## ✨ New in v2.1.0: Stability & Native Persistence
-**Version 2.0.0** reorganizes the directory structure to a tool-centric layout and introduces a unified `config.json`.
+The **v2.1.0 release** focuses on architectural stability and a more intuitive persistence model.
-### New Structure (v2)
-```
-~/.ai-sandbox/
-├── config.json         # Unified config (workspaces, git, networks)
-├── tools/              # Tool-centric organization
-│   ├── claude/
-│   │   ├── home/       # Tool config (was: ~/.ai-sandbox/home/claude/)
-│   │   └── cache/      # Tool cache (was: ~/.ai-sandbox/cache/claude/)
-│   ├── gemini/
-│   │   ├── home/
-│   │   └── cache/
-│   └── ... (other tools)
-└── shared/
-    └── git/            # Shared git config
-        ├── ssh/        # SSH keys and config
-        └── keys/       # Per-workspace key selections
-```
-### Automatic Migration
-When you run any AI tool, the wrapper automatically migrates:
-| Old Location | New Location |
-|--------------|-------------|
-| `~/.ai-sandbox/home/<tool>/` | `~/.ai-sandbox/tools/<tool>/home/` |
-| `~/.ai-sandbox/cache/<tool>/` | `~/.ai-sandbox/tools/<tool>/cache/` |
-| `~/.ai-sandbox/cache/git/` | `~/.ai-sandbox/shared/git/` |
-| `~/.ai-sandbox/git-keys/` | `~/.ai-sandbox/shared/git/keys/` |
-| `~/.ai-sandbox/workspaces` (file) | `config.json.workspaces` |
-| `~/.ai-sandbox/git-allowed` (file) | `config.json.git.allowedWorkspaces` |
-**No action required** - migration happens automatically on first run.
-**Legacy file compatibility**: Old files (`workspaces`, `git-allowed`) are still read as fallback.
+-   ✅ **Stable Node 22 LTS**: Switched to a robust Node 22 base image for maximum compatibility and performance.
+-   ✅ **Direct Mount Persistence**: Changes made *inside* the container (logins, settings, sessions) now save directly to your host's native folders.
+-   ✅ **Cache Isolation**: Heavy caches (`node_modules`, `.npm`, `.cache`) are isolated using anonymous volumes to prevent "cache poisoning" and runtime conflicts.
+### Native Config Mapping
+Your tool configurations are now directly linked from your Mac/PC:
+- Host: `~/.config/opencode` ↔ Container: `/home/agent/.config/opencode`
+- Host: `~/.local/share/opencode` ↔ Container: `/home/agent/.local/share/opencode`
+---
+## ⚠️ Breaking Change: v2.0.0 - Config Directory Reorganization
+**Version 2.0.0** reorganized the directory structure to a tool-centric layout and introduced a unified `config.json`.
 ## 🛡️ Why Use This?
@@ -100,7 +80,7 @@ npx @kokorolx/ai-sandbox-wrapper setup --no-cache
 ```
 ### Step 3: Follow the Interactive Prompts
-1. **Whitelist workspaces** - Enter the directories where you want AI tools to access (e.g., `~/projects,~/code`)
+1. **Whitelist workspaces (Optional)** - Enter directories AI tools can access, or just hit **Enter** to whitelist on-demand later.
 2. **Select tools** - Use arrow keys to move, space to select, Enter to confirm
 3. **Choose image source** - Select registry (faster) or build locally
@@ -182,7 +162,7 @@ docker pull registry.gitlab.com/kokorolee/ai-sandbox-wrapper/ai-aider:latest
 ```
 **Available pre-built images:**
-- `ai-base:latest` - Base image with Bun runtime
+- `ai-base:latest` - Base image with Node.js 22 LTS runtime
 - `ai-amp:latest` - Sourcegraph Amp
 - `ai-claude:latest` - Claude Code CLI
 - `ai-droid:latest` - Factory CLI
@@ -211,22 +191,34 @@ docker pull registry.gitlab.com/kokorolee/ai-sandbox-wrapper/ai-aider:latest
 |------|--------|--------------|-------------|
 | **claude** | ✅ | Native binary | Anthropic Claude Code |
 | **opencode** | ✅ | Native Go | Open-source AI coding |
-| **gemini** | ✅ | npm/Bun | Google Gemini CLI (free tier) |
+| **gemini** | ✅ | npm/Node | Google Gemini CLI (free tier) |
 | **aider** | ✅ | Python | AI pair programmer (Git-native) |
-| **kilo** | ✅ | npm/Bun | Kilo Code (500+ models) |
-| **codex** | ✅ | npm/Bun | OpenAI Codex agent |
-| **amp** | ✅ | npm/Bun | Sourcegraph Amp |
-| **qwen** | ✅ | npm/Bun | Alibaba Qwen CLI (1M context) |
+| **kilo** | ✅ | npm/Node | Kilo Code (500+ models) |
+| **codex** | ✅ | npm/Node | OpenAI Codex agent |
+| **amp** | ✅ | npm/Node | Sourcegraph Amp |
+| **qwen** | ✅ | npm/Node | Alibaba Qwen CLI (1M context) |
 | **droid** | ✅ | Custom | Factory CLI |
-### GUI Tools (IDE/Editor)
+> **Note:** GUI tools (VSCode, codeserver) have been removed in v2.0.1. Use your native IDE with AI tools running in the sandbox.
+## ⚠️ Known Issues
+### Native Tool Config Compatibility
+In v2.1.0+, tool configurations are **directly bind-mounted** from your host. This ensures 100% compatibility with your native tool settings and authentications.
-| Tool | Status | Description |
-|------|--------|-------------|
-| **codeserver** | ✅ | VSCode in browser (localhost:8080) |
-| **vscode** | ⚠️ Experimental | VSCode Desktop via X11 |
-| **cursor** | 🔜 Planned | Cursor IDE sandbox |
-| **antigravity** | 🔜 Planned | Antigravity IDE sandbox |
+1. **Host Config**: `~/.config/<tool>/` or `~/.<tool>/`
+2. **Container Mount**: `/home/agent/.config/<tool>` (Automatic)
+**Currently Supported for Direct Mount:**
+- ✅ `claude`
+- ✅ `opencode`
+- ✅ `amp`
+- ✅ `gemini`
+- ✅ `aider`
+- ... and all other supported tools.
+Please [open an issue](https://github.com/kokorolx/ai-sandbox-wrapper/issues) if you encounter problems with specific tools.
 ## 🖥️ Platform Support
@@ -252,26 +244,17 @@ AI Sandbox Wrapper creates and manages a single consolidated directory in your h
 ```
 ~/.ai-sandbox/
-├── cache/           # Tool-specific cache directories
-│   ├── claude/      # Claude Code cache
-│   ├── gemini/      # Gemini CLI cache
-│   ├── aider/       # Aider cache
-│   └── git/         # Git credentials cache (when enabled)
-│       └── ssh/     # SSH keys and config for allowed workspace
-├── home/            # Tool home directories with persistent configs
-│   ├── claude/      # .claude.json and settings
-│   ├── gemini/      # Gemini configuration
-│   ├── aider/       # Aider config and history
-│   └── .gitconfig   # Git configuration (when Git access enabled)
-├── config.json      # Network configuration
-├── workspaces       # List of whitelisted directories AI can access
-├── env              # API keys (format: KEY=value, one per line)
-├── git-allowed      # Workspaces with persistent Git access
-├── git-keys/        # Saved SSH key selections for each workspace
-│   └── {hash}       # MD5-hashed workspace path
-└── .migrated        # Migration marker (prevents re-migration)
+├── config.json      # Unified config (workspaces, git, networks)
+├── tools/           # Isolated sandbox environments
+│   └── <tool>/
+│       └── home/    # Sandbox home directory (excludes native configs)
+├── shared/          # Shared assets
+│   └── git/         # Shared git config and keys
+└── env              # API keys (format: KEY=value)
 ```
+**Note:** Tools also bind-mount your **native** `~/.config/<tool>` directories for persistence.
 ### Key Files
 | File | Purpose |
@@ -283,6 +266,18 @@ AI Sandbox Wrapper creates and manages a single consolidated directory in your h
 ## ⚙️ Configuration
+### Tool-Specific Configuration
+Each tool has its own persistent home directory inside `~/.ai-sandbox/tools/<tool>/home/`.
+```bash
+# View configuration paths for a specific tool (Recommended)
+npx @kokorolx/ai-sandbox-wrapper config tool claude
+# View configuration content
+npx @kokorolx/ai-sandbox-wrapper config tool claude --show
+```
 ### API Keys
 ```bash
 # Edit environment file
@@ -466,21 +461,19 @@ GOOGLE_API_KEY=AIza...
 ### Per-Project Config
-Each tool supports project-specific config files that override global settings:
+Each tool supports project-specific config files that override global settings. These files are located in your workspace and are accessible to the tool:
-| Tool | Project Config | Global Config Location |
-|------|----------------|------------------------|
-| Claude | `.claude.json` | `~/.ai-sandbox/home/claude/.claude/` |
-| Gemini | `.gemini.json` | `~/.ai-sandbox/home/gemini/.config/gemini/` |
-| Aider | `.aider.conf` | `~/.ai-sandbox/home/aider/.config/aider/` |
-| Opencode | `.opencode.json` | `~/.ai-sandbox/home/opencode/.config/opencode/` |
-| Kilo | `.kilo.json` | `~/.ai-sandbox/home/kilo/.config/kilo/` |
-| Codex | `.codex.json` | `~/.ai-sandbox/home/codex/.config/codex/` |
-| Amp | `.amp.json` | `~/.ai-sandbox/home/amp/.config/amp/` |
+| Tool | Project Config | Native Global Config |
+|------|----------------|----------------------|
+| Claude | `.claude.json` | `~/.config/claude/` |
+| Gemini | `.gemini.json` | `~/.config/gemini/` |
+| Aider | `.aider.conf` | `~/.config/aider/` |
+| Opencode | `.opencode.json` | `~/.config/opencode/` |
+| Amp | `.amp.json` | `~/.config/amp/` |
-**Priority:** Project config > Global config > Container defaults
+**Persistence:** Since v2.1.0, changes to global settings *inside* the container are automatically saved back to your **Native Global Config** on the host.
-**Note:** Existing configs from `~/.config/{tool}/` or `~/.claude/` are automatically migrated to the new location on first run.
+**Priority:** Project config > Native Global config > Container defaults
 ```bash
 # Example: Project-specific Claude config
@@ -640,9 +633,12 @@ nano ~/.ai-sandbox/git-allowed  # Delete the line
 - Reload your shell: `source ~/.zshrc`
 - Verify setup completed: check if `~/bin/ai-run` exists
-**"Workspaces not configured"**
-- Run setup again: `./setup.sh`
-- Make sure you entered workspace directories during setup
+**"Workspaces not configured"** (Legacy)
+- Note: This error is resolved in v2.1.0+.
+- Run setup again: `./setup.sh` or simply run an AI tool in your project folder to trigger interactive whitelisting.
+**"BunInstallFailedError"** (Resolved in v2.1.0)
+- This was caused by stale caches. We now use **Cache Isolation** via anonymous volumes. If you still see this, run `./setup.sh --no-cache` to force a clean build.
 **Tool doesn't start**
 - Check if you selected the tool during setup