Sandbox · GocciaScript

Sandbox · AI agents

A runtime designed for code you didn't write.#

GocciaScript is meant for running untrusted or user-provided code in a host-controlled environment. Scripts receive only the data and capabilities the host provides, run with explicit limits, and return structured results that the host can inspect.

AI agent

LLM emits GocciaScript via a tool call

Goccia sandbox

explicit globals · capability gates · timeout · memory cap

Structured result

JSON

Tool-call comparison

One sandboxed call vs five.#

The same agent task — “Summarize the latest transaction batch and find outliers.” — solved with a typical tool stack and again with a single GocciaScript call. This comparison assumes each tool call depends on data discovered or produced by the previous step, so the calls cannot be parallelized without changing the task shape.

Show Responses API request bodyEach step expands to the request body for that turn — instructions, tool definitions, prior function calls, and function-call outputs. Token counts via gpt-tokenizer on GPT-5-family o200k_base tokenization.

Bash + jq

5 tool calls ↓ 1422 in ↑ 241 out

1
bashdiscover↓ 108 ↑ 39
```
ls /tmp/agent/transactions/
```

bashload↓ 166 ↑ 42

cat /tmp/agent/transactions/transactions.current.json

bashsum↓ 313 ↑ 50

jq '[.[].amount] | add' /tmp/agent/transactions/transactions.current.json

bashaverage↓ 382 ↑ 52

jq '[.[].amount] | add / length' /tmp/agent/transactions/transactions.current.json

bashoutliers↓ 453 ↑ 58

jq '[.[] | select((.amount | abs) > 280)]' /tmp/agent/transactions/transactions.current.json

· values cross 5 process boundaries — possible to lose precision or quoting
· 5 round-trips ≈ 5× the prompt overhead and 5× the chance of a misstep

GocciaScript (single call)

1 tool call ↓ 223 in ↑ 138 out

run_codeeverything↓ 223 ↑ 138

const total = transactions.reduce((s, t) => s + t.amount, 0);
const avg = total / transactions.length;
const stdev = Math.sqrt(
  transactions.reduce((s, t) => s + (t.amount - avg) ** 2, 0) / transactions.length
);
const outliers = transactions.filter((t) => Math.abs(t.amount - avg) > 2 * stdev);
({ total, avg, outliers });

✓ all values stay in one sandbox — no serialization between steps
✓ host gets a single structured JSON result back

Sandbox preview

Edit the script or globals and hit Run — the code runs in the same sandboxed runtime used by the server preview and returns a structured host result.

sandboxed script · script.js

// Untrusted script from an AI agent.
const active = users.filter((u) => u.active);
const names = active
  .map((u) => u.name.toUpperCase())
  .join(", ");
console.log("active count:", active.length);
console.log("names:", names);
console.log("first id:", active[0]?.id);

globals · context.json

{
  "users": [{
    "id": 1, "name": "Alice",
    "active": true
  }, {
    "id": 2, "name": "Bob",
    "active": false
  }, {
    "id": 3, "name": "Charlie",
    "active": true
  }]
}

host result

press Run or ⌘+Enter