Secure, isolated compute environments with sub-second startup for agentic workloads.
| Method | Description | Link |
|---|---|---|
| Portal | Create and manage sandbox groups and sandboxes through the dedicated ACA Sandboxes portal | ACA Sandboxes Portal |
| CLI | Use the ACA CLI extension for scripting and automation |
ACA CLI |
| Python | Use the Python SDK for programmatic access | Python SDK |
Step-through notebooks that run the Python SDK end-to-end. Open in VS Code and Run All, or step cell by cell to inspect each output.
| # | Lab | What it shows |
|---|---|---|
| 01 | getting-started | Full surface end-to-end: create group → sandbox from disk → exec → files → ports → egress → lifecycle → cleanup |
| 02 | bring-your-own-container | Build a sandbox from your own container image and open a port to access its web content |
| 03 | sandbox-inception | Run the SDK inside a sandbox to spawn and manage child sandboxes using the group's managed identity - no secrets |
End-to-end samples that combine multiple sandbox features into real-world patterns. Each scenario includes a README with architecture notes, prerequisites, and step-by-step instructions.
| # | Scenario | What it will show | Python | CLI |
|---|---|---|---|---|
| 01 | webapps | Run a web app in a sandbox; patterns include simple-anonymous (open to the internet) and (planned) authenticated (Entra-gated) |
Python | CLI |
| 02 | coding-agents | Run Copilot CLI in a sandbox with deny-default egress + portal-paste PAT injection (Python + CLI). Claude Code / Codex stubs included. | Python | CLI |
| 03 | code-interpreter | LLM-driven code execution - generate, run, observe, iterate | Python | - |
| 04 | swarms | Orchestrator coordinating many sandbox workers - variants 01 (sandbox inception: orchestrator sandbox spawns workers in another group via its group's MI) and 02 (same plus an AzureBlob volume as durable shared scratchpad) ship now | Python | - |
| 05 | data-processing | Producer/consumer pipelines on shared AzureBlob volumes | Python | - |
| 06 | developer-workflows | PR builds, ephemeral CI, on-demand dev environments | Python | - |
| 07 | computer-use | LLM computer-use agent (Azure OpenAI computer-use-preview / gpt-5.4) driving Chrome inside a sandbox to fill out a form or any web task; watch live via noVNC. Built on the OpenAI Agents SDK (AsyncComputer + ComputerTool). |
- | - |
| 08 | sandbox-agents | Agent frameworks (OpenAI Agents SDK, Claude Managed Agents, LangChain Deep Agents) using ACA sandboxes as their tool-execution backend. OpenAI ships a first-class provider package (agents_aca_sandboxes) plus a live Deep Research demo and a platform-architecture brief. |
Python | - |
| 09 | mcp-hosting | Host MCP servers in a sandbox - excalidraw-anonymous (public via add_port) and dab-sql-devtunnel (DAB + Postgres + Chinook, exposed via Dev Tunnels with no inbound port on the sandbox) |
Python | - |
| 10 | connectors-email-triage | Connector Namespaces + ACA Sandbox: Outlook When a new email arrives (V3) trigger → ACA receiver → per-email sandbox → GitHub Copilot CLI → Teams MCP (Work IQ) posts a triage card. End-to-end azd up, deny-default egress + Transform-rule API-key stamping. |
Python | - |
| 11 | connectors-document-automation | ACA Sandbox as direct webhook target for a Connector Namespaces SharePoint trigger. No receiver, no Function host. Sandbox runs FastAPI on :8080, Copilot CLI uses Work IQ SharePoint MCP + pdftotext/tesseract to extract invoice data and upload results back to SharePoint. End-to-end azd up. |
Python | - |
- ACA Sandboxes Documentation - https://sandboxes.azure.com/docs/sandboxes
- ASA Sandboxes portal - https://sandboxes.azure.com/