Sandflare – I built a sandbox that launches AI agent VMs in ~300ms

2•ajaysheoran2323•1h ago

I've been building Sandflare for the past few months — it launches Firecracker microVMs for AI agents in ~300ms cold start. The idea came from running LLM-generated code in production. Docker felt too risky (shared kernel), full VMs too slow (5–10s). Firecracker hits the middle: real VM isolation, fast boot.

I also added managed Postgres because almost every agent I built needed persistent state. One call wires a database into a sandbox.

There are great tools in this space already (E2B, Modal, Daytona) — I wanted something with batteries-included Postgres, and simpler pricing

What I'm trying to figure out: how do I get cold start below 100ms? Currently the bottleneck is the Firecracker API + network setup. Would love to hear from anyone who's pushed Firecracker further.

https://sandflare.io

Comments

pasanhk•1h ago

This is a killer niche. Integrated Postgres solves the biggest headache with ephemeral sandboxes—actually keeping the agent's memory. 300ms is already solid, but getting under 100ms usually means moving from "booting" to Firecracker Snapshots.

If you haven't yet, look into pre-warming TAP devices and bypassing the HTTP API for direct process management. Exciting stuff!

ajaysheoran2323•1h ago

Thanks! The snapshot approach is exactly what we're using — UFFD (userfaultfd) to restore from a pre-booted snapshot, with on-demand page faulting so the VM responds before all memory is loaded. That's how we get to ~300ms.

1-day RCE vulnerability in vim

Stripe Won't Save You from Bad Access Control

DIY Wall-Mounted Solar Panels on Unistrut Mounting [video]

The "Hiring Boom" Is a Mirage

Show HN: Dynamod – Linux init with Erlang-style supervisor trees

Scientists shocked to find lab gloves may be skewing microplastics data

Show HN: Open-source AI native linktree app

Show HN: Book Juicing – Interactive D. Amodei's "The Adolescence of Technology"

The carcinogenicity of e-cigarettes: a qualitative risk assessment

Working Software Runs Locally

Andrej Karpathy on supply chain attacks

The Download: brainless human clones and the first uterus kept alive outside a

Show HN: TaskTrace, a local-first activity log that gives LLMs context

Show HN: Claudebase: Sync your Claude Code env across machines via GitHub

Human TODO

YouTube chat logs reveal employees aimed for "viewer addiction" and scrapped

Freedom is the only thing that matters. Living freely. Creating freely

With Mythos will we reach coding singularity?

Memopt – GPU memory infrastructure for AI clusters

2026 has been the most pivotal year in my career and it's only March

Shor's algorithm is possible with as few as 10k reconfigurable atomic qubits

Vaping likely to cause cancer, new Australian review of evidence finds

Q4_0 KV cache collapses 92.5% at 64K on DGX Spark GB10 (unified memory paradox)

Don't sleep on your feedback infrastructure

Scientists uncovered the nutrients bees were missing – Colonies surged 15-fold

Good CTE Bad CTE

Claude Code v2.1.88 Sourcemap

How the Apple II created the core of personal computing

Write Native Web HTML and CSS for Roblox UI

Windows++: C++ Application Framework for Windows by Paul DiLascia