Over the past few months, as we scaled our internal AI Agents, we hit a dead end: Running LLM-generated arbitrary code in Docker is basically running naked on security due to container escape risks. But using full traditional VMs takes minutes to boot and eats too much memory to support high-density concurrency. We loved the developer experience of SaaS sandboxes on the market, but they are closed-source, expensive, and have too high a barrier to entry for self-hosting.

So, our team decided to build our own. After months of grinding, using RustVMM and KVM, we built a blazing-fast, ultra-lightweight secure sandbox service from the ground up: CubeSandbox. Today, we are officially open-sourcing it.

To balance security and performance, we stripped the underlying OS to the absolute extreme. Here’s what it can do right now:

1. <60ms blazing-fast cold start: End-to-end latency is under 60ms, making it 2.5x to 50x faster than traditional secure sandbox solutions.

2. <5MB extreme memory footprint: Memory per instance is kept under 5MB. A single 96-vCPU physical machine can easily run 2,000+ sandboxes concurrently, reducing storage consumption by 90%.

3. Massive concurrency scheduling: Capable of spinning up hundreds of thousands of instances in minutes.

4. True kernel-level isolation: Every Agent gets its own dedicated Guest OS kernel.

5. Native E2B SDK compatibility: Just swap a single URL environment variable. Zero code changes required for smooth migration and hosting.

Also, a millisecond-level “snapshot rollback” feature is coming soon…

Before opening the repo today, CubeSandbox has been running silently behind the scenes in Tencent Cloud, serving massive real-world AI Agent workloads in production. As we open-source it today, it is no longer a prototype, but battle-tested, production-ready infrastructure.

Today, we hand it over to the community. Because we believe that high-performance agent infrastructure shouldn’t be exclusive to a few—it belongs to every developer worldwide who demands ultimate security and freedom.

The project is still in its very early open-source stages, and we are really looking forward to your hardest critiques and architectural roasts. I’ll be hanging out here all day to answer your questions. The source code and deployment guides are all in the README. Come play with it! https://github.com/TencentCloud/CubeSandbox

If a bird flu pandemic starts, we may have an mRNA vaccine ready

Millions of renters hit by unlawful data collection

Building the Google Photos Web UI (2018)

1-Bit Hokusai's "The Great Wave"

Show HN: CSS-Only 3D/2D 1D Chess

Enterprise-D Interiors

Kitaru: Agent Loop Management

Mathematicians found out why waiting for the elevator takes forever

Show HN: Tmuxx – simpler tmux, fewer keystrokes, no duplicate groups

Nearly half of US children are breathing dangerous levels of air pollution

Software Engineering Handbook for Modern Teams

Time-series forecasting MCP for Claude Desktop

Advanced DNS Protection: mitigating sophisticated DNS DDoS attacks

Ask HN: Realtime Gcloud Spend Cap?

Qwen/Qwen3.6-27B · Hugging Face

Show HN: We built a <60ms, open-source alternative to E2B using RustVMM and KVM

Show HN: BigBlueBam, MIT-licensed Work OS where agents are first-class coworkers

As a non-eng agency owner, here are things that have changed how we work

Who Knew? 1 in 5 Americans Are Convinced They're Psychic

Esp-Claw: Chat Coding Edge AI Agent Framework for IoT

AI Agents Are Selfish and Biology Solved It

I ran a Hormuz Crisis emergent SIM: AIs started lying to hide a stalemate

Artemis 2's Heat Shield Performed as Expected: First Results Are In

Gemini Enterprise Agent Platform, powering the next wave of agents

I refuse to play the imitation game

We discovered the speed limit of arithmetic – and broke it

Kazam – my answer to static sites in the age of Claude being my main author

GPT Image 2 is here in Samsar T2V agent

Is Claude Code going to cost $100/month? Probably not–it's all confusing

Scaling Sameness

Show HN: Raw Binary Program Analysis Tool