Create a new sandbox
Creates a sandbox from a template (defaults to superserve/base when
from_template is omitted). When the request returns successfully,
the sandbox is ready to use — you can run commands against it
immediately.
Documentation Index
Fetch the complete documentation index at: https://docs.superserve.ai/llms.txt
Use this file to discover all available pages before exploring further.
Authorizations
Body
Human-readable name for the sandbox.
1 - 64Boot the sandbox from a template. Accepts either a template UUID or a name (e.g. superserve/base, superserve/python-3.11, superserve/node-22, or a team-owned name like my-python-env). The template must be owned by the caller's team OR be a curated system template (curated templates use the superserve/ name prefix). The template's vCPU, memory, and disk values are inherited by the sandbox — they cannot be overridden per-sandbox because the snapshot dictates VM shape. When omitted, defaults to superserve/base.
Optional hard lifetime cap in seconds, measured from sandbox creation. When set, the sandbox is destroyed this many seconds after creation regardless of state (active, paused) or activity — the user asked for a hard deadline. When unset, the sandbox lives until explicitly paused or deleted. Maximum 604800 (7 days).
1 <= x <= 604800Flat string-to-string tags attached to the sandbox at creation. Useful for grouping, owner labels, environment, run IDs, etc.
Constraints
- Strings only. Values must be strings. There is no type
coercion:
metadata.count=42filters for the string "42". - At most 64 keys.
- Each key may be at most 256 bytes.
- Each value may be at most 2048 bytes (2 KB).
- The serialized object may be at most 16384 bytes (16 KB) in total.
- Keys starting with
superserve.or_superserve(case- insensitive) are reserved for platform use and rejected.
Metadata can be updated after creation via PATCH /sandboxes/:id.
Filter sandboxes by metadata via the metadata.{key} query
parameter on GET /sandboxes.
{ "env": "prod", "owner": "agent-7" }
Environment variables injected into every process inside the
sandbox (terminal sessions, exec calls). Merged on top of any
defaults set by the template's env build steps — caller keys
win on conflict. Survive pause/resume.
{
"OPENAI_API_KEY": "sk-...",
"DEBUG": "1",
"run_id": "7f3c-21"
}
Egress network rules for a sandbox. allow_out accepts CIDRs (e.g. 8.8.8.8/32) and domain names (e.g. api.openai.com, *.github.com). deny_out accepts CIDRs only. Private ranges (10/8, 172.16/12, 192.168/16, 127/8, 169.254/16) are always blocked regardless of rules.
Response
Sandbox created
Single-sandbox shape — SandboxListItem plus access_token.
Current state of the sandbox. active means running; paused means paused and awaiting resume. resuming is a transient state observed while the platform restores a paused sandbox (e.g. via auto-resume on /exec); clients should retry shortly.
active, paused, resuming ID of the latest snapshot (present after a pause).
Hard lifetime cap in seconds from creation, if set at creation time. Absent when no cap was configured.
Current egress allow/deny rules, if any have been configured. Absent when the sandbox uses default network settings.
User-supplied tags attached at creation. Always present — sandboxes created without metadata return {} rather than being absent.
{ "env": "prod", "owner": "agent-7" }
Per-sandbox access token for data-plane operations (file
upload/download, terminal). Pass as the X-Access-Token
header.