Terrarium: Open-Source Sandbox for Agentic Environments with Time Machine Rewind
Running multiple AI agents in production often leads to security headaches and configuration drift. One developer built Terrarium, an open-source sandbox that provides isolated environments for agents with a safety net: a time machine that lets you rewind container state when things go wrong.
Key Features
- Isolated "worlds" — agents operate in separate containers with security hardening out of the box.
- Reverse-proxy management — easy routing between worlds and external services via a built-in GUI.
- Time machine — if an agent corrupts state, simply rewind the container to a previous snapshot.
- Runs on any VPS or cloud with an attached disk — no special infrastructure required.
Quick Start
Clone the repo and launch:
git clone https://github.com/terion-name/terrarium
cd terrarium
make runThen access the management GUI at http://localhost:8080 to create worlds, configure routing, and set snapshot schedules.
Who It's For
Developers running multiple agentic workflows who need per-agent isolation, audit trails, and the ability to roll back from catastrophic agent decisions without rebuilding infrastructure.
📖 Read the full source: r/openclaw
👀 See Also
Dirac: Open-Source Agent Tops TerminalBench with 65.2%, Cheaper and Open
Dirac, an open-source coding agent, achieved a 65.2% score on TerminalBench 2.0 for gemini-3-flash-preview, beating Google's baseline (47.6%) and top closed-source agent Junie CLI (64.3%). It also reduces API costs by 64.8% vs competitors.
Dynamic Status Bar for Claude Code Shows Live Updates
A developer has improved their Claude Code status bar from static text to dynamic display with real-time updates showing what Claude is working on. The configuration is available as a GitHub gist.
Open Source MCP Server Connects Claude to Mailchimp API
A developer built a Mailchimp MCP server using Claude Code, providing 53 tools for campaigns, audiences, reports, automations, and e-commerce with built-in safety modes and read-only configuration.
nah: A context-aware permission guard for Claude Code
nah is a PreToolUse hook that intercepts every tool call in Claude Code, classifying commands by action type like filesystem_read or git_history_rewrite and applying policies based on context. It runs a deterministic classifier in milliseconds with optional LLM escalation for ambiguous cases.