sandboxbox 2.3.6 → 2.3.8

package/cli.js

@@ -34,7 +34,8 @@ function main() {
         console.log(color('yellow', 'Usage: npx sandboxbox run <project-dir> [command]'));
         process.exit(1);
       }
-      const projectDir = resolve(commandArgs[0]);
+      // For NPX usage, resolve relative to current working directory, not script location
+      const projectDir = resolve(process.cwd(), commandArgs[0]);
       const cmd = commandArgs[1] || 'bash';
       if (!runCommand(projectDir, cmd)) process.exit(1);
       break;
@@ -45,7 +46,7 @@ function main() {
         console.log(color('yellow', 'Usage: npx sandboxbox shell <project-dir>'));
         process.exit(1);
       }
-      const shellProjectDir = resolve(commandArgs[0]);
+      const shellProjectDir = resolve(process.cwd(), commandArgs[0]);
       if (!shellCommand(shellProjectDir)) process.exit(1);
       break;
 
@@ -55,7 +56,7 @@ function main() {
         console.log(color('yellow', 'Usage: npx sandboxbox claude <project-dir>'));
         process.exit(1);
       }
-      const claudeProjectDir = resolve(commandArgs[0]);
+      const claudeProjectDir = resolve(process.cwd(), commandArgs[0]);
       const claudeCmd = commandArgs.slice(1).join(' ') || 'claude';
       if (!claudeCommand(claudeProjectDir, claudeCmd)) process.exit(1);
       break;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "sandboxbox",
-  "version": "2.3.6",
+  "version": "2.3.8",
   "description": "Portable container runner with Podman - Claude Code & Playwright support. Works on Windows, macOS, and Linux.",
   "type": "module",
   "main": "cli.js",

package/scripts/podman-extract.js

@@ -10,7 +10,9 @@ export async function extractZip(zipPath, extractTo) {
 
       execSync(`powershell -Command "${psCommand}"`, {
         stdio: 'pipe',
-        shell: true
+        shell: true,
+        windowsHide: true,
+        timeout: 120000 // ZIP extraction can take time
       });
 
       resolve();
@@ -33,14 +35,18 @@ export async function extractTarGz(tarPath, extractTo, stripComponents = 0) {
       try {
         execSync(`tar -xf "${tarWithoutGz}" -C "${extractTo}"${stripComponents ? ` --strip-components=${stripComponents}` : ''}`, {
           stdio: 'pipe',
-          shell: process.platform === 'win32'
+          shell: process.platform === 'win32',
+          windowsHide: process.platform === 'win32',
+          timeout: 120000
         });
       } catch (tarError) {
         if (process.platform === 'win32') {
           try {
             execSync(`bsdtar -xf "${tarWithoutGz}" -C "${extractTo}"${stripComponents ? ` --strip-components=${stripComponents}` : ''}`, {
               stdio: 'pipe',
-              shell: true
+              shell: true,
+              windowsHide: true,
+              timeout: 120000
             });
           } catch (bsdtarError) {
             throw new Error(`Failed to extract tar archive. Please install tar or bsdtar: ${tarError.message}`);

package/test-npx-run/my-project/test.js

@@ -0,0 +1 @@
+console.log('Hello from test project');

package/utils/commands/claude.js

@@ -44,23 +44,39 @@ export function claudeCommand(projectDir, command = 'claude') {
   if (!buildPodman) return false;
   if (!setupBackendNonBlocking(buildPodman)) return false;
 
-  try {
-    const { tempProjectDir, cleanup } = createIsolatedEnvironment(projectDir);
-    setupCleanupHandlers(cleanup);
-    const mounts = buildContainerMounts(tempProjectDir, projectDir);
-    const containerCommand = buildClaudeContainerCommand(tempProjectDir, buildPodman, command, mounts);
+  // Retry container operation with backend readiness check
+  let retries = 0;
+  const maxRetries = process.platform === 'linux' ? 3 : 12; // More retries for Windows/macOS
 
-    execSync(containerCommand, {
-      stdio: 'inherit',
-      shell: process.platform === 'win32'
-    });
+  while (retries < maxRetries) {
+    try {
+      const { tempProjectDir, cleanup } = createIsolatedEnvironment(projectDir);
+      setupCleanupHandlers(cleanup);
+      const mounts = buildContainerMounts(tempProjectDir, projectDir);
+      const containerCommand = buildClaudeContainerCommand(tempProjectDir, buildPodman, command, mounts);
 
-    cleanup();
-    console.log(color('green', '\n✅ Claude Code session completed! (Isolated - no host changes)'));
-    return true;
-  } catch (error) {
-    console.log(color('red', `\n❌ Claude Code failed: ${error.message}`));
-    return false;
+      execSync(containerCommand, {
+        stdio: 'inherit',
+        shell: process.platform === 'win32',
+        timeout: 30000 // 30 second timeout
+      });
+
+      cleanup();
+      console.log(color('green', '\n✅ Claude Code session completed! (Isolated - no host changes)'));
+      return true;
+    } catch (error) {
+      retries++;
+      if (retries < maxRetries && error.message.includes('Cannot connect to Podman')) {
+        console.log(color('yellow', `   Backend not ready yet (${retries}/${maxRetries}), waiting 15 seconds...`));
+        const start = Date.now();
+        while (Date.now() - start < 15000) {
+          // Wait 15 seconds
+        }
+        continue;
+      }
+      console.log(color('red', `\n❌ Claude Code failed: ${error.message}`));
+      return false;
+    }
   }
 }
 

package/utils/commands/container.js

@@ -73,22 +73,38 @@ export function runCommand(projectDir, cmd = 'bash') {
     return false; // Only block on Linux for rootless service
   }
 
-  try {
-    const { tempProjectDir, cleanup } = createIsolatedEnvironment(projectDir);
-    setupCleanupHandlers(cleanup);
-    const mounts = buildContainerMounts(tempProjectDir, projectDir);
-
-    execSync(`"${podmanPath}" run --rm -it ${mounts.join(' ')} -w /workspace sandboxbox:latest ${cmd}`, {
-      stdio: 'inherit',
-      shell: process.platform === 'win32'
-    });
-
-    cleanup();
-    console.log(color('green', '\n✅ Container execution completed! (Isolated - no host changes)'));
-    return true;
-  } catch (error) {
-    console.log(color('red', `\n❌ Run failed: ${error.message}`));
-    return false;
+  // Retry container operation with backend readiness check
+  let retries = 0;
+  const maxRetries = process.platform === 'linux' ? 3 : 12; // More retries for Windows/macOS
+
+  while (retries < maxRetries) {
+    try {
+      const { tempProjectDir, cleanup } = createIsolatedEnvironment(projectDir);
+      setupCleanupHandlers(cleanup);
+      const mounts = buildContainerMounts(tempProjectDir, projectDir);
+
+      execSync(`"${podmanPath}" run --rm -it ${mounts.join(' ')} -w /workspace sandboxbox:latest ${cmd}`, {
+        stdio: 'inherit',
+        shell: process.platform === 'win32',
+        timeout: 30000 // 30 second timeout
+      });
+
+      cleanup();
+      console.log(color('green', '\n✅ Container execution completed! (Isolated - no host changes)'));
+      return true;
+    } catch (error) {
+      retries++;
+      if (retries < maxRetries && error.message.includes('Cannot connect to Podman')) {
+        console.log(color('yellow', `   Backend not ready yet (${retries}/${maxRetries}), waiting 15 seconds...`));
+        const start = Date.now();
+        while (Date.now() - start < 15000) {
+          // Wait 15 seconds
+        }
+        continue;
+      }
+      console.log(color('red', `\n❌ Run failed: ${error.message}`));
+      return false;
+    }
   }
 }
 
@@ -111,20 +127,36 @@ export function shellCommand(projectDir) {
     return false; // Only block on Linux for rootless service
   }
 
-  try {
-    const { tempProjectDir, cleanup } = createIsolatedEnvironment(projectDir);
-    setupCleanupHandlers(cleanup);
-    const mounts = buildContainerMounts(tempProjectDir, projectDir);
+  // Retry container operation with backend readiness check
+  let retries = 0;
+  const maxRetries = process.platform === 'linux' ? 3 : 12; // More retries for Windows/macOS
 
-    execSync(`"${podmanPath}" run --rm -it ${mounts.join(' ')} -w /workspace sandboxbox:latest /bin/bash`, {
-      stdio: 'inherit',
-      shell: process.platform === 'win32'
-    });
+  while (retries < maxRetries) {
+    try {
+      const { tempProjectDir, cleanup } = createIsolatedEnvironment(projectDir);
+      setupCleanupHandlers(cleanup);
+      const mounts = buildContainerMounts(tempProjectDir, projectDir);
 
-    cleanup();
-    return true;
-  } catch (error) {
-    console.log(color('red', `\n❌ Shell failed: ${error.message}`));
-    return false;
+      execSync(`"${podmanPath}" run --rm -it ${mounts.join(' ')} -w /workspace sandboxbox:latest /bin/bash`, {
+        stdio: 'inherit',
+        shell: process.platform === 'win32',
+        timeout: 30000 // 30 second timeout
+      });
+
+      cleanup();
+      return true;
+    } catch (error) {
+      retries++;
+      if (retries < maxRetries && error.message.includes('Cannot connect to Podman')) {
+        console.log(color('yellow', `   Backend not ready yet (${retries}/${maxRetries}), waiting 15 seconds...`));
+        const start = Date.now();
+        while (Date.now() - start < 15000) {
+          // Wait 15 seconds
+        }
+        continue;
+      }
+      console.log(color('red', `\n❌ Shell failed: ${error.message}`));
+      return false;
+    }
   }
 }

package/utils/isolation.js

@@ -44,12 +44,15 @@ export function createIsolatedEnvironment(projectDir) {
   if (process.platform === 'win32') {
     execSync(`powershell -Command "New-Item -ItemType Directory -Path '${tempProjectDir}' -Force"`, {
       stdio: 'pipe',
-      shell: true
+      shell: true,
+      windowsHide: true,
+      timeout: 30000
     });
   } else {
     execSync(`mkdir -p "${tempProjectDir}"`, {
       stdio: 'pipe',
-      shell: true
+      shell: true,
+      timeout: 30000
     });
   }
 
@@ -57,27 +60,53 @@ export function createIsolatedEnvironment(projectDir) {
     // Windows approach - include hidden files like .git
     execSync(`powershell -Command "Copy-Item -Path '${projectDir}\\*' -Destination '${tempProjectDir}' -Recurse -Force -Exclude 'node_modules'"`, {
       stdio: 'pipe',
-      shell: true
+      shell: true,
+      windowsHide: true,
+      timeout: 60000 // Copy operations can take longer
     });
     // Also copy hidden files separately
     execSync(`powershell -Command "Get-ChildItem -Path '${projectDir}' -Force -Name | Where-Object { $_ -like '.*' } | ForEach-Object { Copy-Item -Path (Join-Path '${projectDir}' $_) -Destination '${tempProjectDir}' -Recurse -Force }"`, {
       stdio: 'pipe',
-      shell: true
+      shell: true,
+      windowsHide: true,
+      timeout: 60000
     });
   } else {
     // Unix approach - include hidden files
     execSync(`cp -r "${projectDir}"/.* "${tempProjectDir}/" 2>/dev/null || true`, {
       stdio: 'pipe',
-      shell: true
+      shell: true,
+      timeout: 60000
     });
     execSync(`cp -r "${projectDir}"/* "${tempProjectDir}/"`, {
       stdio: 'pipe',
-      shell: true
+      shell: true,
+      timeout: 60000
     });
   }
 
-  // Configure git remote to point to mounted host repository
+  // Configure git remote to point to mounted host repository (only if git repo)
   try {
+    // Check if the project directory is a git repository
+    const gitDirPath = process.platform === 'win32'
+      ? `${projectDir}\\.git`
+      : `${projectDir}/.git`;
+
+    if (!existsSync(gitDirPath)) {
+      // Not a git repository, skip git setup
+      return { tempDir, tempProjectDir, cleanup };
+    }
+
+    // Also check if the temp directory has .git after copy
+    const tempGitDirPath = process.platform === 'win32'
+      ? `${tempProjectDir}\\.git`
+      : `${tempProjectDir}/.git`;
+
+    if (!existsSync(tempGitDirPath)) {
+      // Copy didn't preserve git, skip git setup
+      return { tempDir, tempProjectDir, cleanup };
+    }
+
     // Normalize paths for cross-platform compatibility
     const normalizedTempDir = tempProjectDir.replace(/\\/g, '/');
     const normalizedOriginalDir = projectDir.replace(/\\/g, '/');
@@ -85,7 +114,9 @@ export function createIsolatedEnvironment(projectDir) {
     // Configure git to allow operations in mounted directories
     execSync(`git config --global --add safe.directory /workspace`, {
       stdio: 'pipe',
-      shell: true
+      shell: true,
+      windowsHide: process.platform === 'win32',
+      timeout: 10000
     });
 
     // Configure host repository to accept pushes to checked-out branch
@@ -93,7 +124,9 @@ export function createIsolatedEnvironment(projectDir) {
       try {
         execSync(`cd "${normalizedOriginalDir}" && git config receive.denyCurrentBranch ignore`, {
           stdio: 'pipe',
-          shell: true
+          shell: true,
+          windowsHide: true,
+          timeout: 10000
         });
       } catch (e) {
         // Ignore if git config fails
@@ -101,7 +134,8 @@ export function createIsolatedEnvironment(projectDir) {
     } else {
       execSync(`cd "${normalizedOriginalDir}" && git config receive.denyCurrentBranch ignore`, {
         stdio: 'pipe',
-        shell: true
+        shell: true,
+        timeout: 10000
       });
     }
 
@@ -110,7 +144,9 @@ export function createIsolatedEnvironment(projectDir) {
       try {
         execSync(`cd "${normalizedTempDir}" && git remote remove origin`, {
           stdio: 'pipe',
-          shell: true
+          shell: true,
+          windowsHide: true,
+          timeout: 10000
         });
       } catch (e) {
         // Ignore if origin doesn't exist
@@ -118,20 +154,25 @@ export function createIsolatedEnvironment(projectDir) {
     } else {
       execSync(`cd "${normalizedTempDir}" && git remote remove origin 2>/dev/null || true`, {
         stdio: 'pipe',
-        shell: true
+        shell: true,
+        timeout: 10000
       });
     }
 
     // Add origin pointing to mounted host repository (accessible from container)
     execSync(`cd "${normalizedTempDir}" && git remote add origin /host-repo`, {
       stdio: 'pipe',
-      shell: true
+      shell: true,
+      windowsHide: process.platform === 'win32',
+      timeout: 10000
     });
 
     // Set up upstream tracking for current branch (use push -u to set upstream)
     const currentBranch = execSync(`cd "${normalizedTempDir}" && git branch --show-current`, {
       encoding: 'utf8',
-      stdio: 'pipe'
+      stdio: 'pipe',
+      windowsHide: process.platform === 'win32',
+      timeout: 10000
     }).trim();
 
     // Note: Upstream will be set automatically on first push with -u flag

package/utils/podman.js

@@ -94,21 +94,26 @@ function setupMachineBackground(podmanPath) {
     ? `"${podmanPath}" machine init --rootful=false`
     : `"${podmanPath}" machine init`;
 
-  const initProcess = spawn(initCmd, {
-    stdio: ['pipe', 'pipe', 'pipe'],
+  // Windows-specific: Use completely hidden process execution
+  const spawnOptions = process.platform === 'win32' ? {
+    stdio: ['ignore', 'ignore', 'ignore'],
+    shell: true,
+    detached: true,
+    windowsHide: true, // Hide the console window on Windows
+    cwd: process.cwd() // Ensure working directory is set
+  } : {
+    stdio: ['ignore', 'ignore', 'ignore'],
     shell: true,
     detached: true
-  });
+  };
 
+  const initProcess = spawn(initCmd, spawnOptions);
   initProcess.unref();
 
   // Start machine after init completes (with delay)
   setTimeout(() => {
-    const startProcess = spawn(`"${podmanPath}" machine start`, {
-      stdio: ['pipe', 'pipe', 'pipe'],
-      shell: true,
-      detached: true
-    });
+    const startCmd = `"${podmanPath}" machine start`;
+    const startProcess = spawn(startCmd, spawnOptions);
     startProcess.unref();
   }, 30000); // Wait 30 seconds for init to complete