Control what every agent can do across your org.
Every session is governed. Secrets never touch disk. Agents operate within the rules your org defines.
Session Policy
Dedicated instance provisioned
CLAUDE.md · 4 org rules loaded
DATABASE_URL, STRIPE_KEY ••••••
frontend-app (rw) · api-service (r)
Staging · prod requires approval
Built into every session.
These controls are not add-ons. They apply across all plans.
Every session runs in its own VM.
- Dedicated VM per session, not shared containers
- Filesystem wiped on session end
- No cross-user or cross-session access
Self-host Runtime. Bring your own sandbox.
For organizations that cannot send code or execution outside their own infrastructure. Run Runtime inside your VPC, on your compute, with your own sandbox provider.
Self-Host Runtime
Run the entire Runtime control plane on your own infrastructure. Your cloud, your VPC, your rules. Nothing leaves your network.
Bring Your Own Sandbox Provider
Runtime works with your existing VM infrastructure. If you already run Firecracker, gVisor, or a custom execution layer, Runtime can use it instead of ours.
Questions about your security requirements?
Enterprise deployments are set up with hands-on support.