Vercel Sandboxes are now generally available

pawlean · February 2, 2026, 6:12pm

Vercel Sandboxes are now generally available, providing an ephemeral compute primitive for safely executing untrusted code.

It lets teams run AI agent-generated outputs, unverified user uploads, and third-party code without exposing production systems.

Each sandbox runs inside Firecracker microVMs, isolated from your infrastructure, so code running in a sandbox is blocked from accessing environment variables, database connections, and cloud resources.

Sandboxes are in production use by teams including v0, Blackbox AI and RooCode.

To bootstrap a simple Node.js application that creates a Vercel sandbox, use the code below:

Read the full changelog

Topic		Replies	Views
Vercel Python SDK is now available in beta Announcements python , changelog	1	145	December 3, 2025
How to make sandboxes that don't expose API keys? Or how to set up proxying? Discussions ai-sdk	0	16	January 29, 2026
Filesystem snapshots supported on Vercel Sandboxes Announcements changelog	0	34	January 23, 2026
News Cache (2025-06-30) Announcements news-cache	1	137	December 27, 2025
News Cache (2026-01-26) Announcements news-cache	2	136	January 27, 2026

Vercel Sandboxes are now generally available

Related topics