Summary and Next Steps
What you builtโ
In this track you went from running agents directly to packaging sandbox environments as declarative, shareable kits.
| What you did | How |
|---|---|
| Shipped a Claude Code skill into the sandbox | Mixin kit with files/workspace/ injection |
| Understood proxy-managed credential injection | credentials.sources + serviceAuth |
Forked the built-in claude agent | Agent kit with custom entrypoint |
| Stacked two kits on one sandbox | --kit --kit |
| Pulled a kit from the community repo | git+https://github.com/docker/sbx-kits-contrib.git#dir=โฆ |
The files you createdโ
kits/
โโโ docker-review/
โ โโโ spec.yaml
โ โโโ files/
โ โโโ workspace/
โ โโโ .claude/skills/docker-review/SKILL.md
โโโ claude-safe/
โโโ spec.yaml
These are real, working kits. Commit them to this repo and anyone can use them with a single --kit flag.
What kits give you that shell scripts don'tโ
- Credentials never enter the VM - the proxy reads them from the host and injects per-request
- Composable egress rules - stack kits without mutating a shared allowlist file
- Shareable via Git URL or OCI registry - no clone, no setup doc, no config dance
- Validated before run -
sbx kit validatecatches spec errors before they waste a sandbox creation - TCK-testable - write a Go test file using
tck.NewSuiteFromDirand CI validates your kit against a real container
Next stepsโ
- Browse the community kits: github.com/docker/sbx-kits-contrib
- Read the full spec reference: docs.docker.com/ai/sandboxes/customize/kits
- Build an agent kit from scratch: docs.docker.com/ai/sandboxes/customize/build-an-agent
- Contribute a kit to the community repo - the CONTRIBUTING.md explains the process