@kokorolx/ai-sandbox-wrapper 3.4.3-beta.2 → 4.0.0

package/bin/ai-run

@@ -311,10 +311,11 @@ HLP
       --restart unless-stopped
       -v "$OD_VOLUME:/app/.od"
       --env-file "$OD_ENV_FILE"
+      -p "127.0.0.1:${host_port}:7456"
     )
 
     if [[ "$expose" == "true" ]]; then
-      run_args+=(-p "${host_port}:7456")
+      echo "ℹ️  Port ${host_port} already published by default (127.0.0.1:${host_port}:7456)"
     fi
 
     run_args+=("$OD_IMAGE")
@@ -322,11 +323,7 @@ HLP
     echo "🔄 Starting $OD_CONTAINER_NAME..."
     docker "${run_args[@]}" >/dev/null
     echo "✅ $OD_CONTAINER_NAME running on network '$OD_NETWORK'"
-    if [[ "$expose" == "true" ]]; then
-      echo "   Published to host: http://localhost:${host_port}"
-    else
-      echo "   Internal-only: reachable from sandbox containers as http://ai-open-design:7456"
-    fi
+    echo "   Published to host: http://localhost:${host_port}"
   }
 
   od_stop() {

package/dockerfiles/base/Dockerfile

@@ -0,0 +1,103 @@
+# Build RTK from source (multi-stage: only binary is kept, Rust toolchain discarded)
+FROM rust:bookworm AS rtk-builder
+RUN cargo install --git https://github.com/rtk-ai/rtk --locked
+
+FROM node:22-bookworm-slim
+
+ARG AGENT_UID=1001
+
+RUN apt-get update && apt-get install -y --no-install-recommends     git     curl     ssh     ca-certificates     jq     python3     python3-pip     python3-venv     python3-dev     python3-setuptools     build-essential     libopenblas-dev     pipx     unzip     xclip     wl-clipboard     ripgrep     tmux     vim-nox     fd-find     sqlite3     poppler-utils     qpdf     tesseract-ocr     && curl -LsSf https://astral.sh/uv/install.sh | UV_INSTALL_DIR=/usr/local/bin sh     && rm -rf /var/lib/apt/lists/*     && pipx ensurepath
+
+# Install Python PDF processing tools for PDF skill
+RUN pip3 install --no-cache-dir --break-system-packages pypdf pdfplumber reportlab pytesseract pdf2image
+
+RUN curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg | dd of=/usr/share/keyrings/githubcli-archive-keyring.gpg     && chmod go+r /usr/share/keyrings/githubcli-archive-keyring.gpg     && echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/githubcli-archive-keyring.gpg] https://cli.github.com/packages stable main" | tee /etc/apt/sources.list.d/github-cli.list > /dev/null     && apt-get update     && apt-get install -y gh     && rm -rf /var/lib/apt/lists/*
+
+# Install bun (used by most AI tool install scripts)
+RUN npm install -g bun
+
+# Install pnpm globally using npm (not bun, for stability)
+RUN npm install -g pnpm
+
+# Install TypeScript and LSP tools using npm
+RUN npm install -g typescript typescript-language-server pyright vscode-langservers-extracted
+
+# Verify installations
+RUN node --version && npm --version && pnpm --version && tsc --version
+
+# Install additional tools (if selected)
+RUN PIPX_HOME=/opt/pipx PIPX_BIN_DIR=/usr/local/bin pipx install specify-cli --pip-args="git+https://github.com/github/spec-kit.git" && \
+    chmod +x /usr/local/bin/specify && \
+    ln -sf /usr/local/bin/specify /usr/local/bin/specify-cli
+RUN mkdir -p /usr/local/lib/uipro-cli && \
+    cd /usr/local/lib/uipro-cli && \
+    npm init -y && \
+    npm install uipro-cli && \
+    ln -sf /usr/local/lib/uipro-cli/node_modules/.bin/uipro /usr/local/bin/uipro && \
+    ln -sf /usr/local/bin/uipro /usr/local/bin/uipro-cli && \
+    chmod -R 755 /usr/local/lib/uipro-cli && \
+    chmod +x /usr/local/bin/uipro
+RUN mkdir -p /usr/local/lib/openspec && \
+    cd /usr/local/lib/openspec && \
+    npm init -y && \
+    npm install @fission-ai/openspec && \
+    ln -sf /usr/local/lib/openspec/node_modules/.bin/openspec /usr/local/bin/openspec && \
+    chmod -R 755 /usr/local/lib/openspec && \
+    chmod +x /usr/local/bin/openspec
+# Install RTK - token optimizer for AI coding agents (built from source)
+COPY --from=rtk-builder /usr/local/cargo/bin/rtk /usr/local/bin/rtk
+# Install RTK OpenCode skills (auto-discovered by OpenCode agents)
+RUN mkdir -p /home/agent/.config/opencode/skills/rtk /home/agent/.config/opencode/skills/rtk-setup
+COPY skills/rtk/SKILL.md /home/agent/.config/opencode/skills/rtk/SKILL.md
+COPY skills/rtk-setup/SKILL.md /home/agent/.config/opencode/skills/rtk-setup/SKILL.md
+RUN apt-get update && apt-get install -y --no-install-recommends \
+    libglib2.0-0 \
+    libnspr4 \
+    libnss3 \
+    libdbus-1-3 \
+    libatk1.0-0 \
+    libatk-bridge2.0-0 \
+    libcups2 \
+    libxcb1 \
+    libxkbcommon0 \
+    libatspi2.0-0 \
+    libx11-6 \
+    libxcomposite1 \
+    libxdamage1 \
+    libxext6 \
+    libxfixes3 \
+    libxrandr2 \
+    libgbm1 \
+    libdrm2 \
+    libcairo2 \
+    libpango-1.0-0 \
+    libasound2 \
+    fonts-liberation \
+    libappindicator3-1 \
+    libu2f-udev \
+    libvulkan1 \
+    libxshmfence1 \
+    xdg-utils \
+    wget \
+    && rm -rf /var/lib/apt/lists/*
+ENV PLAYWRIGHT_BROWSERS_PATH=/opt/playwright-browsers
+RUN mkdir -p /opt/playwright-browsers && \
+    npm install -g @playwright/mcp@latest && \
+    npx playwright-core install --no-shell chromium && \
+    npx playwright-core install-deps chromium && \
+    chmod -R 777 /opt/playwright-browsers && \
+    ln -sf $(ls -d /opt/playwright-browsers/chromium-*/chrome-linux/chrome | sort -V | tail -1) /opt/chromium
+ENV CHROME_DEVTOOLS_MCP_NO_USAGE_STATISTICS=1
+RUN npm install -g chrome-devtools-mcp@latest && \
+    touch /opt/.mcp-chrome-devtools-installed
+
+# Create workspace
+WORKDIR /workspace
+
+# Non-root user for security (match host UID)
+RUN useradd -m -u ${AGENT_UID} -d /home/agent agent && \
+    mkdir -p /home/agent/.cache /home/agent/.npm /home/agent/.opencode /home/agent/.config && \
+    chown -R agent:agent /home/agent/.cache /home/agent/.npm /home/agent/.opencode /home/agent/.config /workspace && \
+    ([ -d /opt/playwright-browsers ] && chown -R agent:agent /opt/playwright-browsers || true)
+USER agent
+ENV HOME=/home/agent

package/dockerfiles/sandbox/Dockerfile

@@ -0,0 +1,119 @@
+# Build RTK from source (multi-stage: only binary is kept, Rust toolchain discarded)
+FROM rust:bookworm AS rtk-builder
+RUN cargo install --git https://github.com/rtk-ai/rtk --locked
+
+FROM node:22-bookworm-slim
+
+ARG AGENT_UID=1001
+
+RUN apt-get update && apt-get install -y --no-install-recommends     git     curl     ssh     ca-certificates     jq     python3     python3-pip     python3-venv     python3-dev     python3-setuptools     build-essential     libopenblas-dev     pipx     unzip     xclip     wl-clipboard     ripgrep     tmux     vim-nox     fd-find     sqlite3     poppler-utils     qpdf     tesseract-ocr     && curl -LsSf https://astral.sh/uv/install.sh | UV_INSTALL_DIR=/usr/local/bin sh     && rm -rf /var/lib/apt/lists/*     && pipx ensurepath
+
+# Install Python PDF processing tools for PDF skill
+RUN pip3 install --no-cache-dir --break-system-packages pypdf pdfplumber reportlab pytesseract pdf2image
+
+RUN curl -fsSL https://cli.github.com/packages/githubcli-archive-keyring.gpg | dd of=/usr/share/keyrings/githubcli-archive-keyring.gpg     && chmod go+r /usr/share/keyrings/githubcli-archive-keyring.gpg     && echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/githubcli-archive-keyring.gpg] https://cli.github.com/packages stable main" | tee /etc/apt/sources.list.d/github-cli.list > /dev/null     && apt-get update     && apt-get install -y gh     && rm -rf /var/lib/apt/lists/*
+
+# Install bun (used by most AI tool install scripts)
+RUN npm install -g bun
+
+# Install pnpm globally using npm (not bun, for stability)
+RUN npm install -g pnpm
+
+# Install TypeScript and LSP tools using npm
+RUN npm install -g typescript typescript-language-server pyright vscode-langservers-extracted
+
+# Verify installations
+RUN node --version && npm --version && pnpm --version && tsc --version
+
+# Install additional tools (if selected)
+RUN PIPX_HOME=/opt/pipx PIPX_BIN_DIR=/usr/local/bin pipx install specify-cli --pip-args="git+https://github.com/github/spec-kit.git" && \
+    chmod +x /usr/local/bin/specify && \
+    ln -sf /usr/local/bin/specify /usr/local/bin/specify-cli
+RUN mkdir -p /usr/local/lib/uipro-cli && \
+    cd /usr/local/lib/uipro-cli && \
+    npm init -y && \
+    npm install uipro-cli && \
+    ln -sf /usr/local/lib/uipro-cli/node_modules/.bin/uipro /usr/local/bin/uipro && \
+    ln -sf /usr/local/bin/uipro /usr/local/bin/uipro-cli && \
+    chmod -R 755 /usr/local/lib/uipro-cli && \
+    chmod +x /usr/local/bin/uipro
+RUN mkdir -p /usr/local/lib/openspec && \
+    cd /usr/local/lib/openspec && \
+    npm init -y && \
+    npm install @fission-ai/openspec && \
+    ln -sf /usr/local/lib/openspec/node_modules/.bin/openspec /usr/local/bin/openspec && \
+    chmod -R 755 /usr/local/lib/openspec && \
+    chmod +x /usr/local/bin/openspec
+# Install RTK - token optimizer for AI coding agents (built from source)
+COPY --from=rtk-builder /usr/local/cargo/bin/rtk /usr/local/bin/rtk
+# Install RTK OpenCode skills (auto-discovered by OpenCode agents)
+RUN mkdir -p /home/agent/.config/opencode/skills/rtk /home/agent/.config/opencode/skills/rtk-setup
+COPY skills/rtk/SKILL.md /home/agent/.config/opencode/skills/rtk/SKILL.md
+COPY skills/rtk-setup/SKILL.md /home/agent/.config/opencode/skills/rtk-setup/SKILL.md
+RUN apt-get update && apt-get install -y --no-install-recommends \
+    libglib2.0-0 \
+    libnspr4 \
+    libnss3 \
+    libdbus-1-3 \
+    libatk1.0-0 \
+    libatk-bridge2.0-0 \
+    libcups2 \
+    libxcb1 \
+    libxkbcommon0 \
+    libatspi2.0-0 \
+    libx11-6 \
+    libxcomposite1 \
+    libxdamage1 \
+    libxext6 \
+    libxfixes3 \
+    libxrandr2 \
+    libgbm1 \
+    libdrm2 \
+    libcairo2 \
+    libpango-1.0-0 \
+    libasound2 \
+    fonts-liberation \
+    libappindicator3-1 \
+    libu2f-udev \
+    libvulkan1 \
+    libxshmfence1 \
+    xdg-utils \
+    wget \
+    && rm -rf /var/lib/apt/lists/*
+ENV PLAYWRIGHT_BROWSERS_PATH=/opt/playwright-browsers
+RUN mkdir -p /opt/playwright-browsers && \
+    npm install -g @playwright/mcp@latest && \
+    npx playwright-core install --no-shell chromium && \
+    npx playwright-core install-deps chromium && \
+    chmod -R 777 /opt/playwright-browsers && \
+    ln -sf $(ls -d /opt/playwright-browsers/chromium-*/chrome-linux/chrome | sort -V | tail -1) /opt/chromium
+ENV CHROME_DEVTOOLS_MCP_NO_USAGE_STATISTICS=1
+RUN npm install -g chrome-devtools-mcp@latest && \
+    touch /opt/.mcp-chrome-devtools-installed
+
+# Create workspace
+WORKDIR /workspace
+
+# Non-root user for security (match host UID)
+RUN useradd -m -u ${AGENT_UID} -d /home/agent agent && \
+    mkdir -p /home/agent/.cache /home/agent/.npm /home/agent/.opencode /home/agent/.config && \
+    chown -R agent:agent /home/agent/.cache /home/agent/.npm /home/agent/.opencode /home/agent/.config /workspace && \
+    ([ -d /opt/playwright-browsers ] && chown -R agent:agent /opt/playwright-browsers || true)
+
+# === opencode ===
+USER root
+RUN curl -fsSL https://opencode.ai/install | bash && \
+    mv /root/.opencode/bin/opencode /usr/local/bin/opencode && \
+    rm -rf /root/.opencode
+
+# === claude ===
+USER root
+RUN export HOME=/root && curl -fsSL https://claude.ai/install.sh | bash && \
+    mkdir -p /usr/local/share && \
+    mv /root/.local/share/claude /usr/local/share/claude && \
+    ln -sf /usr/local/share/claude/versions/$(ls /usr/local/share/claude/versions | head -1) /usr/local/bin/claude
+USER agent
+
+USER agent
+ENV HOME=/home/agent
+CMD ["bash"]

package/lib/build-sandbox.sh

@@ -9,7 +9,7 @@ fi
 
 SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
 PROJECT_DIR="$(cd "$SCRIPT_DIR/.." && pwd)"
-cd "$PROJECT_DIR"
+cd "$PROJECT_DIR" || exit 1
 
 SANDBOX_DIR="dockerfiles/sandbox"
 mkdir -p "$SANDBOX_DIR"
@@ -53,6 +53,7 @@ BASE_PREAMBLE=$(echo "$BASE_CONTENT" | sed '/^USER agent$/,$d')
     fi
     
     echo "# === $tool ===" 
+    # shellcheck source=/dev/null
     SNIPPET_MODE=1 source "$INSTALL_SCRIPT"
     dockerfile_snippet
     echo ""

package/lib/install-aider.sh

@@ -3,8 +3,9 @@ set -e
 
 dockerfile_snippet() {
   cat <<'SNIPPET'
+USER root
+RUN UV_TOOL_BIN_DIR=/usr/local/bin uv tool install aider-chat
 USER agent
-RUN python3 -m pip install --break-system-packages aider-install && aider-install
 SNIPPET
 }
 
@@ -24,9 +25,9 @@ mkdir -p "$HOME/.ai-sandbox/tools/$TOOL/home"
 # Create Dockerfile (extends base image which has Python)
 cat <<'EOF' > "dockerfiles/$TOOL/Dockerfile"
 FROM ai-base:latest
+USER root
+RUN UV_TOOL_BIN_DIR=/usr/local/bin uv tool install aider-chat
 USER agent
-# Install aider via aider-install
-RUN python3 -m pip install --break-system-packages aider-install && aider-install
 ENTRYPOINT ["aider"]
 EOF
 

package/lib/install-base.sh

@@ -179,10 +179,7 @@ fi
 
 # MCP Tools for AI agent browser automation
 # Both tools share Playwright's Chromium (native ARM64/x86_64, avoids Puppeteer arch issues)
-MCP_BROWSER_INSTALLED=false
-
 if [[ "${INSTALL_CHROME_DEVTOOLS_MCP:-0}" -eq 1 ]] || [[ "${INSTALL_PLAYWRIGHT_MCP:-0}" -eq 1 ]]; then
-  MCP_BROWSER_INSTALLED=true
   echo "📦 Installing shared Chromium browser for MCP tools"
   ADDITIONAL_TOOLS_INSTALL+='RUN apt-get update && apt-get install -y --no-install-recommends \
     libglib2.0-0 \

package/lib/install-openclaw.sh

@@ -26,11 +26,11 @@ if [[ ! -d "$OPENCLAW_REPO_DIR/.git" ]]; then
   git clone https://github.com/openclaw/openclaw.git "$OPENCLAW_REPO_DIR"
 else
   echo "📦 OpenClaw repository already exists, pulling latest..."
-  cd "$OPENCLAW_REPO_DIR"
+  cd "$OPENCLAW_REPO_DIR" || exit 1
   git pull origin main || git pull origin master || true
 fi
 
-cd "$OPENCLAW_REPO_DIR"
+cd "$OPENCLAW_REPO_DIR" || exit 1
 
 # Build OpenClaw Docker image using their docker-compose
 echo "🔨 Building OpenClaw Docker image..."

package/lib/install-opencode.sh

@@ -4,9 +4,12 @@ set -e
 dockerfile_snippet() {
   cat <<'SNIPPET'
 USER root
-RUN curl -fsSL https://opencode.ai/install | bash && \
+ENV HOME=/root
+RUN curl -fsSL --retry 3 --retry-delay 5 https://opencode.ai/install | bash && \
     mv /root/.opencode/bin/opencode /usr/local/bin/opencode && \
     rm -rf /root/.opencode
+USER agent
+ENV HOME=/home/agent
 SNIPPET
 }
 
@@ -32,11 +35,13 @@ if [[ -n "$OPENCODE_VERSION" ]]; then
 FROM ai-base:latest
 
 USER root
-RUN curl -fsSL https://opencode.ai/install | bash -s -- --version $OPENCODE_VERSION && \\
+ENV HOME=/root
+RUN curl -fsSL --retry 3 --retry-delay 5 https://opencode.ai/install | bash -s -- --version $OPENCODE_VERSION && \\
     mv /root/.opencode/bin/opencode /usr/local/bin/opencode && \\
     rm -rf /root/.opencode
 
 USER agent
+ENV HOME=/home/agent
 ENTRYPOINT ["opencode"]
 EOF
 else
@@ -44,11 +49,13 @@ else
 FROM ai-base:latest
 
 USER root
-RUN curl -fsSL https://opencode.ai/install | bash && \
+ENV HOME=/root
+RUN curl -fsSL --retry 3 --retry-delay 5 https://opencode.ai/install | bash && \
     mv /root/.opencode/bin/opencode /usr/local/bin/opencode && \
     rm -rf /root/.opencode
 
 USER agent
+ENV HOME=/home/agent
 ENTRYPOINT ["opencode"]
 EOF
 fi

package/lib/playwright-mcp-config.sh

@@ -189,6 +189,7 @@ pmcp::with_lock() {
     sleep 0.1
     waited=$((waited + 1))
   done
+  # shellcheck disable=SC2064  # intentional: capture $mutex value at trap definition time
   trap "rmdir '$mutex' 2>/dev/null || true" EXIT
   "$@"
   local rc=$?

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@kokorolx/ai-sandbox-wrapper",
-  "version": "3.4.3-beta.2",
+  "version": "4.0.0",
   "description": "Docker-based security sandbox for AI coding agents. Isolate Claude, Gemini, Aider, and other AI tools from your host system.",
   "keywords": [
     "ai",