Opinionated agent sandbox orchestrator. Deploy AI coding agents with enforced security boundaries, messaging channels, and fleet management.
- Sandbox isolation — Docker containers with transparent egress proxy and default-deny rules
- Credential injection — Secrets never enter the sandbox; injected at the network boundary via MITM
- Channel abstraction — Connect agents to Telegram (or other platforms) via ACP protocol
- Fleet management — Multiple agents from a single configuration
- Composable egress — Mix and match egress presets per agent
curl -sSL https://raw.githubusercontent.com/donbader/agent-fleet/main/install.sh | shagent-fleet init my-fleet && cd my-fleet
# Edit fleet.yaml + agents/coder/agent.yaml + .env
agent-fleet generate
agent-fleet compose up -d --buildSee Getting Started for the full walkthrough.
| Doc | Description |
|---|---|
| Getting Started | Full setup and daily workflow guide |
| Configuration | fleet.yaml and agent.yaml reference |
| Customization | Home directory strategies and Dockerfile templates |
| Architecture | System design and component overview |
| Security Model | Egress rules, MITM, credential injection |
| Bridge Protocol | ACP protocol and channel adapters |
| Docker API Proxy | Controlled container spawning [PLANNED] |
| ADRs | Architecture decision records |
| Runtime | Status |
|---|---|
| Codex | ✅ Primary |
| Claude Code | 🔜 Planned |
| Platform | Status |
|---|---|
| Telegram | ✅ Primary |
| Slack | 🔜 Planned |
go build ./cmd/agent-fleet
go test ./...
golangci-lint runMIT