DevBox Sandboxer

A powerful CLI tool for creating isolated Windows development environments using Windows Sandbox. Automates environment setup with YAML configuration, enabling safe, disposable development spaces without affecting the host system.

Tech Stack: PowerShell Windows Sandbox YAML Chocolatey CLI
View on GitHub

Project Overview

DevBox Sandboxer is a command-line tool that revolutionizes Windows development workflows by creating isolated, reproducible development environments using Windows Sandbox. It provides developers with a safe way to experiment, develop, and test applications without compromising their host system.

Core Features

Environment Isolation

  • Windows Sandbox Integration: Leverages native Windows Sandbox for complete isolation
  • Host Safety: All modifications occur within disposable sandbox environments
  • Clean State: Each environment starts fresh, ensuring consistency
  • Resource Control: Configurable memory, GPU, and network settings

Configuration Management

  • YAML Configuration: Simple, declarative environment definitions
  • Package Management: Automatic installation via Chocolatey
  • Environment Variables: Custom environment variable configuration
  • Startup Commands: Automated setup scripts and initialization

Developer Experience

  • Simple CLI: Just three commands - up, down, and status
  • Idempotent Operations: Consistent results from repeated operations
  • Project Code Mapping: Host project folders mounted in sandbox
  • Shared Folders: Additional host directories accessible in sandbox

Technical Architecture

PowerShell Core Engine

# Main CLI interface with parameter validation
param([Parameter(Mandatory = $true)]
      [ValidateSet("up", "down", "status")]
      [string]$Command)

Configuration Processing

  • YAML Parsing: Robust configuration file parsing with validation
  • Sandbox Configuration: Dynamic Windows Sandbox .wsb file generation
  • Setup Script Generation: PowerShell scripts for environment provisioning
  • Process Management: Tracking and lifecycle management of sandbox instances

Windows Sandbox Integration

  • WSB File Generation: Dynamic creation of sandbox configuration files
  • Resource Allocation: Memory, CPU, and GPU resource management
  • Network Configuration: Configurable network access and isolation
  • Folder Mapping: Host-to-sandbox directory mapping and permissions

Key Capabilities

Automated Package Installation

DevBox uses Chocolatey for comprehensive package management:

  • Development Tools: Git, VS Code, various IDEs
  • Runtime Environments: Node.js, Python, .NET, Go, Rust
  • Databases: PostgreSQL, MongoDB, Redis
  • Container Tools: Docker Desktop, Kubernetes CLI

Security & Isolation Features

# Enhanced security configuration example
sandbox:
  networking: "Disable"        # No network access
  protected_client: true       # Enhanced security mode
  clipboard_redirection: false # Disabled clipboard sharing
  audio_input: false          # No microphone access
  video_input: false          # No camera access

Multi-Environment Support

  • Development Templates: Pre-configured environments for different tech stacks
  • Custom Configurations: Flexible YAML-based environment definitions
  • Shared Resources: Common tools and libraries across environments
  • Environment Versioning: Version-controlled environment configurations

Development Workflow Integration

Project Setup Process

  1. Configuration Creation: Define environment requirements in devbox.yaml
  2. Environment Launch: Execute devbox.ps1 up to create sandbox
  3. Development Work: Code within isolated, fully-configured environment
  4. Environment Cleanup: Use devbox.ps1 down to clean up resources

Configuration Examples

# Web development environment
name: "web-project"
packages:
  - git
  - nodejs
  - vscode
  - googlechrome
environment:
  NODE_ENV: "development"
  BROWSER: "chrome"
startup_commands:
  - "npm install -g yarn"
  - "node --version"

# Data science environment  
name: "datascience-project"
packages:
  - git
  - python
  - anaconda3
  - vscode
startup_commands:
  - "pip install jupyter pandas numpy"
  - "conda info"

Advanced Features

Sandbox Customization

  • Memory Allocation: Configurable RAM from 2GB to 16GB
  • GPU Acceleration: Hardware-accelerated graphics when needed
  • Network Policies: Full isolation or selective network access
  • Hardware Access: Controlled access to cameras, microphones, printers

Development Tools Integration

  • Interactive Configuration: Wizard-based environment setup
  • Template Library: Pre-built configurations for common scenarios
  • Validation Tools: Configuration syntax and compatibility checking
  • Test Framework: Automated testing of environment configurations

Enterprise Features

  • Compliance Support: Air-gapped development environments
  • Security Policies: Enforced isolation and access controls
  • Audit Logging: Complete tracking of environment usage
  • Centralized Configuration: Organization-wide environment standards

Performance & Scalability

Resource Optimization

  • Efficient Startup: Fast environment initialization
  • Memory Management: Optimized resource allocation
  • Storage Efficiency: Minimal host system impact
  • Concurrent Environments: Support for multiple active sandboxes

Monitoring & Diagnostics

  • Status Reporting: Real-time environment status
  • Log Management: Comprehensive logging and debugging
  • Performance Metrics: Resource usage monitoring
  • Troubleshooting Tools: Built-in diagnostic capabilities

Community & Ecosystem

Open Source Project

  • MIT License: Open source with permissive licensing
  • Active Development: Regular updates and feature additions
  • Community Contributions: Open to external contributions
  • Documentation: Comprehensive guides and examples

Integration Possibilities

  • CI/CD Pipelines: Integration with build and deployment systems
  • IDE Extensions: Potential VS Code and other IDE integrations
  • Cloud Services: Future cloud-based sandbox environments
  • Team Collaboration: Shared environment configurations

DevBox Sandboxer represents a significant advancement in Windows development tooling, providing developers with the isolation and safety of containerized environments while leveraging native Windows technologies for optimal performance and compatibility.

Key Features

  • Automated environment setup from YAML configuration
  • Isolated sandbox environments for safe development
  • Package management via Chocolatey integration
  • Host safety - never installs anything on host machine
  • Simple CLI with up, down, and status commands