Run Untrusted AI Agent Code Safely with Azure Container Apps Sandboxes
Scored daily by a customisable AI persona to surface the most relevant engineering leadership news.
Azure Container Apps Sandboxes for untrusted AI agent code is a novel security solution for agent execution.
Microsoft announced the public preview of Azure Container Apps Sandboxes, a new ARM resource type (Microsoft.App/SandboxGroups) that runs untrusted AI agent code in hardware-isolated microVMs, starting from OCI disk images in under a second and scaling to thousands of instances with no cost when idle. Each sandbox enforces network egress deny-by-default, supports Entra managed identities for credential-free authentication, and includes snapshot-based suspend/resume for stateful multi-step agent workflows. The Agent Governance Toolkit adds AST scanning and tool allowlists before code execution, with independent egress enforcement at the proxy layer, and is already used by GitHub Copilot Cloud Sandboxes, Foundry Hosted Agents, and Azure Container Apps Express.