Fly's Sprites.dev addresses dev environment sandboxes and API sandboxes together

https://simonwillison.net/2026/Jan/9/sprites-dev/

18•simonw•9h ago

Comments

simonw•9h ago

Here's the announcement on the Fly blog: https://fly.io/blog/code-and-let-live/ - and the Hacker News thread for that post: https://news.ycombinator.com/item?id=46557825

I wrote about this because it hits two of my current obsessions at once - developer environment sandboxes (for safely running Claude Code etc in YOLO mode) and APIs for executing untrusted code.

indigodaddy•6h ago

>> In a smart piece of design, Sprites uses pre-installed skills to teach Claude how Sprites itself works. This means you can ask Claude on the machine how to do things like open up ports and it will talk you through the process.

^^ So is Claude Code baked into a default sprite? If so, how/who/what API key is paying for CC? (I'm assuming this gets configured some way? Perhaps in just the normal CC CLI way?)

simonw•6h ago

Yes it's baked in. You as the user pay for a separate Anthropic account and login with that when you first use a sprite.

vivzkestrel•5h ago

as a guy who is not in loop with all these sandbox developments, I apologize for this extremely stupid question. Why do we need any of these sandboxes? Why cant we use docker? I thought it was a solved problem 10 yrs ago?

shitcoder•4h ago

I think one difference is that it also provides the service of being a production environment you can serve from at the same time as development. There's more information about this thought in the fly io blog post.

avsm•3h ago

I just use Docker devcontainers using Anthropic's own Dockerfile as a base, and it gives me a persistent sandbox that have ports opened and work in any container environment (be it remote or local), and work in any IDE that supports devcontainers...

https://anil.recoil.org/notes/ocaml-claude-dev

HumanOstrich•2h ago

So what if Claude Code makes a mistake and tears up the sandbox? What happens to all the persisted state (aside from the container image)?

The linked fly.io article discusses why containers aren't a good fit for sandboxes that need persistent state and how sprites.dev addresses the challenges.

igor47•2h ago

I read the linked fly article and didn't see where it's mentioned why containers aren't a good fit for sandboxes that need persistent state. You can definitely do all the same snapshoting directly on your local docker volumes, although granted you'd need zfs or lvm backed volumes (which is probably what sprites do under the hood).

I think there are tradeoffs here. Maybe your one person vibe coded app doesn't need any change management, IaC, any of that. No docker file, start with whatever docker file fly wrote for you, beat it with an agent until it works enough. And it's pretty cool that you can then just serve it directly. Is it dev or prod? Yes.

On the other hand, I really don't think editing php files over ftp in prod was ahead of it's time -- I was there, man, and it sucked. I just know I'll be really confused about why something doesn't work eventually and wish I had some tracking of what changed over time. I want my IDE. I want VCS!

igor47•2h ago

Maybe it's concerns about docker chroot escape? I'm not sure what the current consensus is on how "secure" docker is, but in the past I've heard you shouldn't assume an app in a container is fully isolated from the "host" system.

An adequate left-associated binary numeral system in the lambda calculus

Musk says X outcry is 'excuse for censorship'

Show HN: Miito- Added TikTok like videos to Google Meet to fix my attention span

Greenland bans all oil exploration (2021)

DeepSeek to Release Next Flagship AI Model with Strong Coding Ability

EU Parliament eyes freezing US trade deal over Trump's Greenland threats

Why Do Galaxies Refuse to Obey Gravity? Universe Is Accelerating and Science

Ask HN: Constantly updated publicly accessible HN dataset?

How to Ralph Wiggum

Quality Week – December 2025 – Zed's Blog

Template Parameter Deduction: Eliminating Hidden Copies in Generic Code

Hongdown: An opinionated Markdown formatter in Rust

Org Mode Syntax Is One of the Most Reasonable Markup Languages to Use for Text

Week 5 in Data Science: Image recognition neural network with 90% accuracy

Show HN: A daily cryptic clue puzzle with a twist

Opus 4.5 is now free in Amp, up to $10 in credits per day, ad-supported

Gleam's Design and Compiler

Docker Socket Myths

Doctorow: Trump may be the beginning of end of 'enshittification'

You guys are doing this to us

Bolt Graphics

Homeworld – The Digital Antiquarian

iFixit names worst products of CES 2026 by handing out "Worst in Show" awards

Self-Evolving Cellular Automata

Google: Don't make "bite-sized" content for LLMs if you care about search rank

Signs of Accepted Prayers

Laws of Software

Debian goes retro with a spatial desktop that time forgot

Annote – writing Java using only annotations

Lord of War, Meet Lord of Tokens