I would contend the nix ecosystem is sloppy, 3 of the primary projects I use are wrong for various reasons. I'm not really sure what's here beyond a prebuilt image with nix and open code, is there?
Can this be adjusted to give the agents access to environments rather than being boxed into them. You want their exec's and fs work boxed in, and likely you also want them to use multiple agents in multiple envs, or have a single agent leverage multiple envs (i.e. with different permissions available for different tasks). You also likely don't need a full on env when you are making an API call with the right secrets
The user cases could be very different. Personally, I like the idea to run AI agents like opencode in a sandbox, but I also want it to be able to install software without sudo. Have a look at flake.nix (it's like a Dockerfile in this context). There's opencode but also some permission tweaks to use the container as user instead of root.
If you have a better idea to accomplish that, suggestions are welcome.
I would contend the nix ecosystem is sloppy, 3 of the primary projects I use are wrong for various reasons. I'm not really sure what's here beyond a prebuilt image with nix and open code, is there?
Can this be adjusted to give the agents access to environments rather than being boxed into them. You want their exec's and fs work boxed in, and likely you also want them to use multiple agents in multiple envs, or have a single agent leverage multiple envs (i.e. with different permissions available for different tasks). You also likely don't need a full on env when you are making an API call with the right secrets
The user cases could be very different. Personally, I like the idea to run AI agents like opencode in a sandbox, but I also want it to be able to install software without sudo. Have a look at flake.nix (it's like a Dockerfile in this context). There's opencode but also some permission tweaks to use the container as user instead of root.
If you have a better idea to accomplish that, suggestions are welcome.