@kokorolx/ai-sandbox-wrapper 2.6.0 → 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (31) hide show
  1. package/README.md +42 -12
  2. package/bin/ai-run +353 -90
  3. package/bin/cli.js +140 -20
  4. package/dockerfiles/base/Dockerfile +13 -28
  5. package/dockerfiles/base/skills/rtk/SKILL.md +103 -0
  6. package/dockerfiles/base/skills/rtk-setup/SKILL.md +118 -0
  7. package/dockerfiles/sandbox/Dockerfile +114 -0
  8. package/dockerfiles/sandbox/skills/rtk/SKILL.md +103 -0
  9. package/dockerfiles/sandbox/skills/rtk-setup/SKILL.md +118 -0
  10. package/lib/build-sandbox.sh +89 -0
  11. package/lib/install-aider.sh +11 -1
  12. package/lib/install-amp.sh +20 -12
  13. package/lib/install-auggie.sh +16 -1
  14. package/lib/install-base.sh +38 -1
  15. package/lib/install-claude.sh +37 -3
  16. package/lib/install-codebuddy.sh +16 -1
  17. package/lib/install-codex.sh +16 -1
  18. package/lib/install-droid.sh +15 -0
  19. package/lib/install-gemini.sh +16 -1
  20. package/lib/install-jules.sh +16 -1
  21. package/lib/install-kilo.sh +12 -2
  22. package/lib/install-openclaw.sh +48 -0
  23. package/lib/install-opencode.sh +17 -4
  24. package/lib/install-qoder.sh +16 -1
  25. package/lib/install-qwen.sh +16 -1
  26. package/lib/install-shai.sh +13 -1
  27. package/package.json +2 -1
  28. package/setup.sh +68 -55
  29. package/skills/rtk/SKILL.md +103 -0
  30. package/skills/rtk-setup/SKILL.md +118 -0
  31. package/dockerfiles/amp/Dockerfile +0 -17
package/README.md CHANGED
@@ -4,7 +4,7 @@
4
4
 
5
5
  Protect your SSH keys, API tokens, and system files while using AI tools that need filesystem access.
6
6
 
7
- *Last updated: February 9, 2026*
7
+ *Last updated: February 25, 2026*
8
8
 
9
9
  ---
10
10
 
@@ -33,21 +33,24 @@ Protect your SSH keys, API tokens, and system files while using AI tools that ne
33
33
 
34
34
  ## ✨ What's New
35
35
 
36
- ### v2.3.0-beta: Web Mode & Port Exposure
36
+ ### v2.7.0: Git Fetch-Only Mode & Bundled Skills
37
37
 
38
- - **Web Auto-Detection**: `opencode web` automatically exposes port 4096 and injects `--hostname 0.0.0.0`
39
- - **`--expose` Flag**: New way to expose ports (replaces deprecated `PORT` env var)
40
- - **Port Conflict Detection**: Fails fast if port is already in use
38
+ - **Git Fetch-Only**: Allow git fetch/pull but block push perfect for AI agents that should read but not write
39
+ - **Bundled Skills**: RTK token optimizer skills auto-installed for OpenCode users
40
+ - **SSH Config Fix**: Resolved crash during git credential setup
41
41
 
42
42
  ```bash
43
- # Web mode - automatic port exposure
44
- opencode web
43
+ # Fetch-only mode (no push allowed)
44
+ opencode --git-fetch
45
45
 
46
- # Custom port
47
- opencode web --port 8080
46
+ # Or select from interactive menu:
47
+ # 4) Fetch only - allow once (no push, this session)
48
+ # 5) Fetch only - always for this workspace (no push)
48
49
 
49
- # Expose additional ports
50
- opencode --expose 3000,5555 web
50
+ # Manage via CLI
51
+ npx @kokorolx/ai-sandbox-wrapper git fetch-only ~/projects/myrepo
52
+ npx @kokorolx/ai-sandbox-wrapper git full ~/projects/myrepo
53
+ npx @kokorolx/ai-sandbox-wrapper git status
51
54
  ```
52
55
 
53
56
  ---
@@ -172,8 +175,21 @@ Git credentials are **not** shared by default. When you run a tool, you'll be pr
172
175
  ```
173
176
  🔐 Git Access Control
174
177
  1) Yes, allow once
175
- 2) Yes, always allow for this workspace
178
+ 2) Yes, always allow for this workspace
176
179
  3) No, keep Git disabled (secure default)
180
+ 4) Fetch only - allow once (no push, this session)
181
+ 5) Fetch only - always for this workspace (no push)
182
+ ```
183
+
184
+ **Fetch-only mode** allows `git fetch`, `git pull`, `git clone` but blocks `git push`. Uses git's `pushInsteadOf` config — no network restrictions needed.
185
+
186
+ ```bash
187
+ # Force fetch-only via flag
188
+ opencode --git-fetch
189
+
190
+ # Manage via CLI
191
+ npx @kokorolx/ai-sandbox-wrapper git fetch-only ~/projects/myrepo
192
+ npx @kokorolx/ai-sandbox-wrapper git full ~/projects/myrepo
177
193
  ```
178
194
 
179
195
  ### Clipboard
@@ -233,6 +249,17 @@ After installation, configure your MCP client (e.g., OpenCode) to use them:
233
249
 
234
250
  > **Note:** The `--no-sandbox` flags are required when running in Docker containers. This is safe because the container itself provides isolation.
235
251
 
252
+ ### Bundled Skills (OpenCode)
253
+
254
+ OpenCode containers auto-install these skills on first run (existing skills are never overwritten):
255
+
256
+ | Skill | Description |
257
+ |-------|-------------|
258
+ | `rtk` | Command reference for RTK token optimizer (60-90% token savings) |
259
+ | `rtk-setup` | Persistent RTK enforcement — updates AGENTS.md and propagates to subagents |
260
+
261
+ Skills are copied to `~/.config/opencode/skills/` and available immediately.
262
+
236
263
  ---
237
264
 
238
265
  ## 📁 Directory Structure
@@ -290,6 +317,9 @@ opencode -e 3000,4000 # Multiple ports
290
317
  # Network
291
318
  opencode -n mynetwork # Join Docker network
292
319
 
320
+ # Git fetch-only
321
+ opencode --git-fetch # Fetch only (no push)
322
+
293
323
  # Management
294
324
  npx @kokorolx/ai-sandbox-wrapper workspace list
295
325
  npx @kokorolx/ai-sandbox-wrapper clean