Investigate where Anthropic's sandbox-runtime fits in #291
Description
Naively, it feels like packaging https://github.com/anthropic-experimental/sandbox-runtime nicely would offer cool benefits, especially to anyone building vibe coding environments where agents and end users are accessing a shared environment but should have different levels of access. Need to understand this use-case more and how people are solving this problem today. Also how well this tool (which uses bubblewrap underneath) solves this problem. I know some users completely escape the sandbox and run multiple containers, to separate access for users and agents and take over the additional orchestration overhead and maybe that will be needed for most? But what's the median problem and median solution?