← 返回 Skills 市场
E2B Sandbox
作者
maverick-software
· GitHub ↗
· v1.0.0
· MIT-0
106
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install e2b-sandbox
功能描述
Spin up and manage E2B cloud sandboxes for agent work. Use when an OpenClaw agent needs an isolated remote Linux sandbox instead of the local workspace: crea...
使用说明 (SKILL.md)
E2B Sandbox
Use this skill when the task should run in an E2B sandbox rather than directly on the OpenClaw host.
Credentials
This skill requires E2B_API_KEY in the environment.
Configure it in Vault / env before use.
MCPorter-native setup
Register the local MCP server once:
node /home/charl/.openclaw/workspace/skills/e2b-sandbox/scripts/register-mcporter.mjs
This writes an e2b-sandbox entry into:
~/.openclaw/workspace/config/mcporter.json
Then verify it:
mcporter list e2b-sandbox --schema
Primary usage
After registration, prefer MCP tools instead of shell wrappers.
Expected tool names:
e2b-sandbox.create_sandboxe2b-sandbox.list_sandboxese2b-sandbox.get_infoe2b-sandbox.exece2b-sandbox.hoste2b-sandbox.set_timeoute2b-sandbox.snapshote2b-sandbox.kill
Example low-level calls:
mcporter call e2b-sandbox.create_sandbox --args '{"label":"codex-lab","template":"base","timeoutMs":3600000}'
mcporter call e2b-sandbox.exec --args '{"sandbox":"codex-lab","cmd":"python3 --version"}'
mcporter call e2b-sandbox.host --args '{"sandbox":"codex-lab","port":3000}'
Shell helper fallback
A wrapper still exists for debugging or environments where you want direct script access:
/home/charl/.openclaw/workspace/skills/e2b-sandbox/scripts/run-e2b.sh help
Notes
- Sandbox ids and labels are tracked in
~/.openclaw/workspace/.state/e2b-sandboxes.json. - Prefer labels for longer tasks so later steps can refer to the same sandbox cleanly.
- The MCP server is local and uses the E2B Node SDK under the hood.
- Use this helper for one-shot command execution. If a task needs a long interactive PTY session or a specialized template flow, read
references/e2b-notes.mdfirst. - If a task needs a custom image or preinstalled stack, create the sandbox/template first, then snapshot it for reuse.
Read next when needed
Read references/e2b-notes.md when you need:
- state-file behavior
- timeout / snapshot guidance
- port exposure reminders
- when to use MCP tools vs the shell helper
安全使用建议
This skill appears to actually implement E2B sandbox management, but there are a few things to check before installing/using it:
- The skill requires E2B_API_KEY and a Node runtime, but the registry metadata omitted those declarations — assume you must provide E2B_API_KEY in your environment or Vault and ensure node is available.
- The register script will write an MCP server entry to ~/.openclaw/workspace/config/mcporter.json and the skill will store sandbox state in ~/.openclaw/workspace/.state/e2b-sandboxes.json. If you don't want these files created/modified, don't run the register helper.
- The fallback wrapper (run-e2b.sh) can run npm install in the skill directory on first use; review package-lock.json and the dependencies (notably the public 'e2b' SDK and @modelcontextprotocol/sdk) before allowing the install.
- Be careful about forwarding environment variables into created sandboxes (the scripts accept envs). Do NOT pass secrets (AWS keys, tokens, etc.) into sandbox envs unless you trust the remote provider and sandbox network exposure — remote sandboxes can expose services and could leak data.
- Confirm you trust the skill author and the e2b provider (the skill will create externally reachable URLs for exposed ports). If in doubt, inspect scripts/e2b-core.mjs and e2b-mcp-server.mjs locally and consider running them in an isolated environment where you control the E2B_API_KEY and network exposure.
If you want to proceed: set a minimal-scoped E2B API key, run the scripts manually after review (don't blindly run register), and avoid passing sensitive local environment variables into sandboxes.
功能分析
Type: OpenClaw Skill
Name: e2b-sandbox
Version: 1.0.0
The e2b-sandbox skill bundle is a legitimate integration for managing remote cloud sandboxes via the E2B platform. The code (scripts/e2b-core.mjs and scripts/e2b-mcp-server.mjs) correctly implements the official E2B SDK to provide isolated execution environments for AI agents. It follows standard OpenClaw patterns for state management and MCP server registration without any evidence of data exfiltration, malicious prompt injection, or unauthorized persistence.
能力标签
能力评估
Purpose & Capability
The code implements the stated purpose (creating/listing/executing/hosting/snapshotting/killing E2B sandboxes using the e2b SDK). However the registry metadata is inconsistent: SKILL.md and the scripts require E2B_API_KEY and a Node runtime, yet the registry entry lists no required env vars or required binaries. The package includes dependencies (@modelcontextprotocol/sdk and e2b) which are expected for this purpose.
Instruction Scope
Runtime instructions and scripts will read/write user files in home (~/.openclaw/workspace/config/mcporter.json and ~/.openclaw/workspace/.state/e2b-sandboxes.json) and launch a local MCP server. The SKILL.md and register script instruct adding an MCP server entry and the code will create and update a state file. The fallback wrapper may run npm install automatically when first invoked. These file writes and possible automated installs are outside a purely 'read-only' helper and should be expected and reviewed.
Install Mechanism
There is no formal install spec, but scripts include a run-e2b.sh that will run `npm install` in the skill directory if node_modules are missing. Dependencies come from the public npm registry (package-lock.json visible). This is a moderate risk vector (remote packages executed locally) but is expected for a Node-based skill; it should be audited before running.
Credentials
The skill requires an E2B_API_KEY (enforced in multiple scripts), but the registry metadata did not declare it as a required environment variable or primary credential — an important mismatch. The scripts also accept and forward env key/value pairs into created sandboxes (create/exec with envs), which could unintentionally transmit local secrets into a remote environment if the agent or user supplies them. The register script writes a config entry with the placeholder '${E2B_API_KEY}' (it does not inject your secret for you), so you must provide the real key in the environment or Vault. Overall the credential request is coherent for sandbox control, but the risk of leaking other env vars into remote sandboxes is real and must be considered.
Persistence & Privilege
The skill is not marked always:true and does not autonomously escalate platform-wide privileges. It does, however, persist configuration by writing an MCP server entry to ~/.openclaw/workspace/config/mcporter.json and tracking sandboxes in ~/.openclaw/workspace/.state/e2b-sandboxes.json. Registering the MCP server makes the skill's local server available to agents via mcporter; that persistent registration is expected for this functionality but is a persistent side-effect you should approve.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install e2b-sandbox - 安装完成后,直接呼叫该 Skill 的名称或使用
/e2b-sandbox触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.0
Initial release. MCPorter-native E2B sandbox skill with tools for create/list/info/exec/host/set-timeout/snapshot/kill, plus local mcporter registration helper and shell fallback.
元数据
常见问题
E2B Sandbox 是什么?
Spin up and manage E2B cloud sandboxes for agent work. Use when an OpenClaw agent needs an isolated remote Linux sandbox instead of the local workspace: crea... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 106 次。
如何安装 E2B Sandbox?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install e2b-sandbox」即可一键安装,无需额外配置。
E2B Sandbox 是免费的吗?
是的,E2B Sandbox 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
E2B Sandbox 支持哪些平台?
E2B Sandbox 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 E2B Sandbox?
由 maverick-software(@maverick-software)开发并维护,当前版本 v1.0.0。
推荐 Skills