Project

vagrant-claude-sandbox

0.0
The project is in a healthy, maintained state
vagrant-claude-sandboxbgrgicak/vagrant-claude-sandboxHomepageDocumentationSource CodeBug TrackerWiki
Provides a pre-configured sandbox environment for running Claude Code in an isolated VM with full plugin and skills support
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
2026
 Popularity
Downloads
1,093
Stars
3
Forks
0
Watchers
0
 Releases
Current version
0.4.0
Total releases
5
First release
2026-01-22
Latest release
2026-02-03
 Issues
Open Issues
1
Closed Issues
0
Total Issues
1
Issue Closure Rate
0%
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2026-01-27
Reverse Dependencies
0

 Dependencies

Development

rspec
~> 3.12
rake
~> 13.0
 Project Readme

Vagrant Claude Sandbox

A Vagrant plugin for running Claude Code in an isolated sandbox environment.

Features

  • Fast container-based sandbox using Docker
  • Ubuntu 24.04 LTS with Node.js and git pre-installed
  • Automatic Claude Code CLI installation
  • Synced workspace folder and Claude config (plugins and skills work automatically)
  • Customizable resources (memory, CPUs)
  • Optional VirtualBox provider for full VM isolation

Prerequisites

Installation

vagrant plugin install vagrant-claude-sandbox

Usage

Create a Vagrantfile:

Vagrant.configure("2") do |config|
  config.claude_sandbox.apply_to!(config)
end

Start the sandbox:

vagrant up
vagrant claude  # Launch Claude CLI with Chrome integration

Access a normal shell:

vagrant ssh  # Regular shell session

Custom Configuration

Vagrant.configure("2") do |config|
  config.claude_sandbox.apply_to!(config) do |sandbox|
    sandbox.memory = 8192
    sandbox.cpus = 4
    sandbox.additional_packages = ["vim", "htop"]
  end
end

Mounting Additional Directories

Mount additional directories using Vagrant's synced_folder directive:

Vagrant.configure("2") do |config|
  config.claude_sandbox.apply_to!(config) do |sandbox|
    sandbox.memory = 8192
    sandbox.cpus = 4
  end

  config.vm.synced_folder "~/Projects/my-project", "/my-project"
end

Note: The workspace (/agent-workspace) and Claude config (~/.claude/) are mounted automatically.

Options

Option Default Description
provider "docker" Provider: "docker" or "virtualbox"
memory 4096 RAM in MB
cpus 2 Number of CPUs
workspace_path "/agent-workspace" Workspace path in container/VM
claude_config_path "~/.claude/" Host Claude config path
additional_packages [] Extra apt packages
skip_claude_cli_install false Skip Claude CLI installation
ubuntu_mirror nil Ubuntu package mirror URL (uses official mirror by default)

VirtualBox Provider

For full VM isolation or Docker-in-Docker capabilities:

Vagrant.configure("2") do |config|
  config.claude_sandbox.provider = "virtualbox"
  config.claude_sandbox.apply_to!(config)
end

When to use VirtualBox:

  • You need Docker available inside the sandbox
  • You need full VM isolation (kernel-level)
  • You're running on a system without Docker

Prerequisites:

Ubuntu Mirror Configuration

By default, the plugin uses Ubuntu's official mirror (http://ports.ubuntu.com/ubuntu-ports). If package updates are slow in your region, you can configure a faster mirror:

Vagrant.configure("2") do |config|
  # Choose a mirror close to your location for faster updates
  config.claude_sandbox.ubuntu_mirror = "http://ftp.jaist.ac.jp/pub/Linux/ubuntu-ports"  # Japan
  config.claude_sandbox.apply_to!(config)
end

Trusted mirrors for ARM (ubuntu-ports):

  • Official Ubuntu: http://ports.ubuntu.com/ubuntu-ports (default, safest)
  • JAIST (Japan): http://ftp.jaist.ac.jp/pub/Linux/ubuntu-ports (university mirror)
  • Kakao (Korea): http://mirror.kakao.com/ubuntu-ports (major tech company)

Security note: Only use mirrors from trusted sources. The official Ubuntu mirror is always the safest option.

Notifications

The plugin automatically starts a notification server when you run vagrant up, enabling desktop notifications from Claude running in the sandbox.

Setup:

  1. Install notification support on your OS:

    • macOS: brew install terminal-notifier
    • Linux: apt install libnotify-bin (untested)

  2. The notification server starts automatically with vagrant up and stops with vagrant halt or vagrant destroy.

Customization:

By default, notifications appear when Claude completes tasks, needs input, or encounters errors/warnings.

To customize notification behavior, copy the example config:

cp lib/vagrant-claude-sandbox/notification_config.yml.example ~/.vagrant-claude-sandbox/notification_config.yml

Then edit ~/.vagrant-claude-sandbox/notification_config.yml to configure which notification types to show, timeouts, sounds, etc.

Manual Control:

If needed, you can manually run the notification server:

bundle exec bin/vagrant-notify-server

Development and Testing

Running Tests

The project includes comprehensive unit and integration tests:

# Install development dependencies
bundle install

# Run unit tests
bundle exec rake spec

# Run integration tests
./test-plugin.sh docker --skip-extended  # Quick test

# Run all tests
bundle exec rake test

See TESTING.md for detailed testing instructions.

Contributing

  1. Fork the repository
  2. Create a feature branch
  3. Add tests for your changes
  4. Ensure all tests pass: bundle exec rake test
  5. Submit a pull request

Troubleshooting

Docker "Permission denied" Error

This is now handled automatically by the plugin!

The plugin automatically detects and fixes PATH conflicts that could cause "Permission denied" errors with the Docker provider. If you have a directory named docker in your PATH before the actual Docker executable, the plugin will reorder your PATH to prioritize common Docker binary locations.

You should see a message during vagrant up if a conflict was detected and fixed:

Detected Docker PATH conflict - automatically reordered PATH

If you're still experiencing issues, you can manually fix the PATH as a fallback:

PATH=/usr/local/bin:$PATH vagrant up

Credits

Original idea by @emilburzo - blog post

License

MIT License - see LICENSE