| docker/egress/v1.0.13 | ## What's New ### โจ Features - **DELETE /policy endpoint for removing egress rules** โ new `DELETE /policy` handler accepts a JSON array of target strings and removes matching rules case-insensitively. Targets not found are silently ignored (idempotent). API spec and README updated. (#864) - **Supervisor + cleanup hook** โ egress now runs under a dedicated single-worker supervisor (`opensandbox-supervisor`). Previously, a hard crash left stale iptables/nft rules and a zombie mitmdump ho | High | 6/5/2026 |
| docker/execd/v1.0.18 | ## What's New ### ๐ Bug Fixes - Kill the entire process group on command cancel. Previously cancellation (client disconnect, timeout, `DELETE /command`) sent SIGKILL only to the bash group leader, so children spawned via `&` or pipelines kept running as orphans. `runCommand` and `killPid` now signal `-pid` (Setpgid group), matching `runBackgroundCommand`; `kill(-pid, 0)` is used for liveness probing. Fixes #922 (#924) - Extend mitmproxy CA wait from 30s to 300s and log the actual wait dura | High | 5/25/2026 |
| k8s/image-committer/v0.1.0 | ๐ Initial version of image-committer | High | 5/21/2026 |
| js/sandbox/v0.1.7 | ## What's New ### โจ Features * Added platform-aware sandbox creation for the JavaScript SDK. `Sandbox.create()` now accepts a `platform` constraint so callers can request runtime OS/architecture explicitly, while existing image-based creation remains compatible by default. This is useful for deployments that schedule across mixed Docker/Kubernetes platforms. https://github.com/alibaba/OpenSandbox/pull/645 * Added richer storage and Windows sandbox creation options. The JS models now include | High | 5/15/2026 |
| python/sandbox/v0.1.8 | ## What's New ### โจ Features * Add first-class Python sandbox pool support for both async and sync clients. This release includes single-node in-memory pools, optional Redis-backed distributed pool stores via `opensandbox[pool-redis]`, lifecycle snapshots, resize/reconcile behavior, stale-idle cleanup, and documentation for operating distributed pools. Redis support is exposed from `opensandbox.pool_redis` so the base SDK import path does not require Redis dependencies. by @ninan-nn in https:/ | High | 5/8/2026 |
| docker/ingress/v1.0.7 | ## What's New ### โจ Features - **Multi-namespace support**: Ingress watches sandbox CRs across all namespaces instead of a single one. `--namespace` flag deprecated. Ambiguous sandbox IDs across namespaces are rejected. (#699) - **Secure access routing (OSEP-0011)**: Added `--secure-access-keys` flag for signed URL verification. Sandboxes with `opensandbox.io/secure-access` require valid signatures; sandboxes without it continue to work with unsigned routes. (#761) - **Log rotation**: Fi | High | 5/6/2026 |
| docker/egress/v1.0.10 | ## What's New ### โจ Features - Log rotation via lumberjack for file-based log outputs. Auto-enabled with defaults (100 MB max size, 30-day retention, 10 backups) when log path is a file. stdout/stderr unaffected. (#791) ### ๐ Bug Fixes - Fix mitmproxy OOM kill by streaming large response bodies (>1 MB) to disk instead of buffering them in memory. Adds automatic mitmdump restart on unexpected exit, so transient failures no longer take down the egress proxy. (#819) - Address CodeQL stati | High | 4/29/2026 |
| docker/egress/v1.0.9 | ## What's New ### โจ Features - precompile domain rule index for fast Evaluate while preserving first-match semantics (#722) - refactor egress's system CPU and memory collector by gopsutil (#697) ### ๐ Bug Fixes - check uid/gid fit in int before ParseUint cast (#756) ### ๐ฆ Misc - mitmproxy docs and benchmark update (#753) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping --- - Docker Hub: opensandbox/egress:v1.0.9 - Aliyun Registry: sandbox-registry.cn- | High | 4/26/2026 |
| docker/execd/v1.0.13 | ## What's New ### โจ Features - basic runtime OTEL metrics for execd (#697) - pre-build `execd.exe` and `install.bat` to execd release image for windows distribution (#712) ### ๐ Bug Fixes - fix permission error when sync mitmproxy certs (#734) - enlarge mitmproxy certs wait time to 30s (#762) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping --- - Docker Hub: opensandbox/execd:v1.0.13 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opens | High | 4/21/2026 |
| server/v0.1.11 | ## What's New ### โจ Features - auto-create PVC/Docker volumes on sandbox creation (#661) ### ๐ Bug Fixes - fix incorrect metadata error message (#703) - use `[log].level` instead of `[server].log_level` (#737) - relax ingress gateway address validation for URI route mode (#740) ### ๐ฆ Misc - simply example configuration (#741) - refactor large file kubernetes_service.py (#694) - add Dockerfile.dockerignore to reduce build context (#718) - chore(deps-dev): bump pytest from 9.0.1 | High | 4/19/2026 |
| docker/egress/v1.0.8 | ## What's New ### โจ Features - [beta] built-in mitmproxy support (#615) - reload deny.always and allow.always every minute using mtime/size checks, treat file deletion as rule removal, and apply updates to both DNS evaluation and nft static policy (#698) ### ๐ Bug Fixes - relax dns upstream failover and change dynamic nftables log to debug (#739) ### ๐ฆ Misc - add Dockerfile.dockerignore to reduce build context (#718) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @P | High | 4/17/2026 |
| docker/execd/v1.0.12 | ## What's New ### โจ Features - trust mitm proxy if `OPENSANDBOX_EGRESS_MITMPROXY_TRANSPARENT` set (#630) ### ๐ Bug Fixes - normalize traceback for command start errors (#701) - resolved issue which execd cannot process file like `$HOME/abc`, `~/abc` or `$MY_WORKSPACE/abc` (#726) ### ๐ฆ Misc - optimize Makefile for multi-build release (#695) - add Dockerfile.dockerignore to reduce build context (#718) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping - @Abo | High | 4/16/2026 |
| java/code-interpreter/v1.0.9 | ## What's New ### ๐ฆ Misc * update open-sandbox dependency version 1.0.9 | Medium | 4/14/2026 |
| java/sandbox/v1.0.9 | ## What's Changed ### ๐ Bug Fixes * fix release idle ttl in memory store by @ninan-nn in https://github.com/alibaba/OpenSandbox/pull/708 ## ๐ฅ Contributors Thanks to these contributors โค๏ธ @ninan-nn | High | 4/14/2026 |
| cli/v0.1.0 | ## What's new Congratulations on the release of the first version of the CLI! ๐ | Medium | 4/14/2026 |
| sdks/sandbox/go/v1.0.0 | ## What's New Go SDK first release. ๐๐ ### โจ Features - Go SDK with oapi-codegen for Lifecycle, Execd, and Egress APIs (#597) - downgrade sdks/go version to 1.20 (#707) ### ๐ Bug Fixes - fix sdk bugs and simply init package struct (#683) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @AlexandrePh - @Pangjiping --- ```bash go get github.com/alibaba/OpenSandbox/sdks/sandbox/go@v1.0.0 ``` | Medium | 4/13/2026 |
| java/sandbox/v1.0.8 | ## What's Changed ### ๐ Bug Fixes * fix release all idles in sandbox pool by @ninan-nn in https://github.com/alibaba/OpenSandbox/pull/679 ## ๐ฅ Contributors Thanks to these contributors โค๏ธ @ninan-nn | Medium | 4/13/2026 |
| docker/execd/v1.0.11 | ## What's New ### ๐ Bug Fixes - fix deduplicate context entries in `ListAllContexts` and `LanguageSessions` (#619) - enlarge default jupyter polling interval to 100ms (#650) - validate request.cwd and return 400 (#656) - Bind token injection to an allowlisted host/scheme (e.g., compare req.URL.Host to the expected Jupyter endpoint before setting Authorization), and/or disable redirects for this client (CheckRedirect) unless explicitly safe (#680) ### ๐ฆ Misc - bump google.golang.org/ | Medium | 4/12/2026 |
| docker/egress/v1.0.7 | ## What's New ### โจ Features - upstream health probes, active list, configurable probe name (#655) - add grace shutdown for egress and rollback all network namespace when egress closes (#654) ### ๐ฆ Misc - extract safego to internal common package and wrapper egress goroutines with safego (#670) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping --- - Docker Hub: opensandbox/egress:v1.0.7 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/open | High | 4/10/2026 |
| server/v0.1.10 | ## What's New ### โจ Features - add a file logger configuration to write both server logs and access logs to files (#674) - expose uvicorn `timeout_keep_alive` in configuration (#667) - introduce an optional platform object in the sandbox lifecycle spec and treat it as a scheduling/runtime constraint rather than as part of image (#645) - refactoring the server package layout to use opensandbox_server as the only published Python package (#558) ### ๐ Bug Fixes - align `Host.path` valid | Medium | 4/10/2026 |
| java/code-interpreter/v1.0.7 | ## What's New ### ๐ฆ Misc * update open-sandbox dependency version 1.0.7 | High | 4/7/2026 |
| python/sandbox/v0.1.7 | ## What's New ### โจ Features * refactor run in session timeout by @ninan-nn in https://github.com/alibaba/OpenSandbox/pull/641 ### ๐ Bug Fixes * accept Windows drive-letter paths in Host.path validation by @FallingSnowFlake in https://github.com/alibaba/OpenSandbox/pull/632 ## ๐ฅ Contributors Thanks to these contributors โค๏ธ @ninan-nn @FallingSnowFlake | Medium | 4/7/2026 |
| csharp/sandbox/v0.1.1 | ## What's New ### โจ Features * refactor run in session timeout by @ninan-nn in https://github.com/alibaba/OpenSandbox/pull/641 ### ๐ Bug Fixes * align Host.path validation with spec across runtimes by @hittyt in https://github.com/alibaba/OpenSandbox/pull/643 ## ๐ฅ Contributors Thanks to these contributors โค๏ธ @ninan-nn @hittyt | Medium | 4/7/2026 |
| js/sandbox/v0.1.6 | ## What's New ### โจ Features * refactor run in session timeout by @ninan-nn in https://github.com/alibaba/OpenSandbox/pull/641 ### ๐ Bug Fixes * align Host.path validation with spec across runtimes by @hittyt in https://github.com/alibaba/OpenSandbox/pull/643 ## ๐ฅ Contributors Thanks to these contributors โค๏ธ @ninan-nn @hittyt | Medium | 4/7/2026 |
| docker/egress/v1.0.6 | ## What's New ### โจ Features - add `OPENSANDBOX_EGRESS_DNS_UPSTREAM` so resolvers are not taken only from /etc/resolv.conf. (#633) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping --- - Docker Hub: opensandbox/egress:v1.0.6 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensandbox/egress:v1.0.6 | Medium | 4/7/2026 |
| java/sandbox/v1.0.7 | ## What's New ### โจ Features * refactor run in session timeout by @ninan-nn in https://github.com/alibaba/OpenSandbox/pull/641 ### ๐ Bug Fixes * align Host.path validation with spec across runtimes by @hittyt in https://github.com/alibaba/OpenSandbox/pull/643 ## ๐ฅ Contributors Thanks to these contributors โค๏ธ @ninan-nn @hittyt | Medium | 4/7/2026 |
| java/sandbox/v1.0.6 | > [!WARNING] > `runInSession` was newly introduced in this release, but its current timeout parameter design has an issue. > We plan to adjust it in a future SDK release. > If possible, avoid relying on this timeout parameter for now. ## What's New ### โจ Features * Enhance sandbox pool functions by @ninan-nn in https://github.com/alibaba/OpenSandbox/pull/617 ## ๐ฅ Contributors Thanks to these contributors โค๏ธ * @ninan-nn | Medium | 4/3/2026 |
| docker/ingress/v1.0.6 | ## What's New ### โจ Features - add kubernetes system test with ingress-gateway (#611) ### ๐ Bug Fixes - relax WebSocket CheckOrigin for trusted reverse proxy (#574) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping --- - Docker Hub: opensandbox/ingress:v1.0.6 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensandbox/ingress:v1.0.6 | Medium | 4/2/2026 |
| docker/execd/v1.0.10 | ## What's New ### โจ Features - tune jupyter idle polling and sse completion wait (#577) - add websocket PTY support (#590) (#608) - add EXECD_CLONE3_COMPAT seccomp-based clone3 fallback (#518) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @skyler0513 - @ctlaltlaltc - @Pangjiping --- - Docker Hub: opensandbox/execd:v1.0.10 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensandbox/execd:v1.0.10 | Medium | 4/2/2026 |
| docker/egress/v1.0.5 | ## What's New ### โจ Features - load fixed always allow/deny lists at startup from `/var/egress/rules/allow.always` and `/var/egress/rules/deny.always` (#622) - add OTel metrics and internal/telemetry (#618) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping --- - Docker Hub: opensandbox/egress:v1.0.5 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensandbox/egress:v1.0.5 | Medium | 4/2/2026 |
| docker/egress/v1.0.4 | ## What's New ### โจ Features - persist egress policy to local file by env `OPENSANDBOX_EGRESS_POLICY_FILE` (#525) ### ๐ Bug Fixes - Clamp nft element timeouts to 60โ360s (was 60โ300s) so the upper bound still matches a 300s DNS TTL cap plus slack; raise dyn_allow_* set timeout to 360s (#595) - Avoid nft "conflicting intervals" when static allow/deny lists overlap (e.g. CGNAT + host inside). Add normalizeNFTIntervalSet to drop strictly contained prefixes before add element (#595) ## | Medium | 3/30/2026 |
| python/code-interpreter/v0.1.2 | ## What's New ### ๐ Bug Fixes * Fixed endpoint header propagation in the Python code-interpreter sync adapter by @Gujiassh in #504 ### ๐ฆ Misc * Added async endpoint-header coverage for the Python code-interpreter package by @Gujiassh in #509 ## ๐ฅ Contributors Thanks to these contributors โค๏ธ * @Gujiassh | Medium | 3/27/2026 |
| python/sandbox/v0.1.6 | > [!WARNING] > `run_in_session` was newly introduced in this release, but its current timeout parameter design has an issue. > We plan to adjust it in a future SDK release. > If possible, avoid relying on this timeout parameter for now. ## What's New ### โจ Features * Added `run_in_session` support for persistent shell workflows in the Python SDK by @Pangjiping in #465 * Added manual-cleanup sandbox lifecycle support in the Python SDK by @hittyt in #446 * Added uid/gid and environment variable | Medium | 3/27/2026 |
| csharp/code-interpreter/v0.1.0 | ## What's New Initial stable release of the C# Code Interpreter SDK. | Medium | 3/27/2026 |
| csharp/sandbox/v0.1.0 | > [!WARNING] > `runInSession` is available in this release, but its current timeout parameter design has an issue. > We plan to adjust it in a future SDK release. > If possible, avoid relying on this timeout parameter for now. ## What's New Initial stable release of the C# Sandbox SDK. | Medium | 3/27/2026 |
| js/code-interpreter/v0.1.3 | ## What's New ### โจ Features * Added sandbox endpoint auth header support for code-interpreter requests in the JavaScript SDK by @ninan-nn in #492 ### ๐ฆ Misc * Updated package metadata and homepage information for the JavaScript code-interpreter package by @ninan-nn in #265 ## ๐ฅ Contributors Thanks to these contributors โค๏ธ * @ninan-nn | Medium | 3/26/2026 |
| java/code-interpreter/v1.0.5 | ## What's New ### โจ Features * Added sandbox endpoint auth header support for code-interpreter requests in the Java SDK by @ninan-nn in #492 ## ๐ฅ Contributors Thanks to these contributors โค๏ธ * @ninan-nn | Medium | 3/26/2026 |
| java/sandbox/v1.0.5 | ## What's New ### โจ Features * Added OSSFS volume support to the Java SDK sandbox models and converters by @ninan-nn in #563 * Added command exit-code support for Java SDK command execution flows by @ninan-nn in #540 * Added client-side sandbox pool support for Java SDK users by @ninan-nn in #393 * Added manual-cleanup sandbox lifecycle support in the Java SDK by @hittyt in #446 * Added egress patch support for sandbox network configuration by @ninan-nn in #464 * Added `x-request-id` propagatio | Medium | 3/26/2026 |
| js/sandbox/v0.1.5 | > [!WARNING] > `runInSession` was newly introduced in this release, but its current timeout parameter design has an issue. > We plan to adjust it in a future SDK release. > If possible, avoid relying on this timeout parameter for now. ## What's New ### โจ Features * Improved persistent shell workflows with `runInSession` support and related SDK cleanup by @ninan-nn in #548 and by @Pangjiping in #465 * Added command exit-code support for JavaScript sandbox command execution by @ninan-nn in #540 | Medium | 3/25/2026 |
| docker/execd/v1.0.9 | ## What's New ### โ ๏ธ Breaking Changes - align the execd runInSession contract from `code` / `timeout_ms` to `command` / `timeout`, and update the execd server handlers accordingly (#548) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @ninan-nn --- - Docker Hub: opensandbox/execd:v1.0.9 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensandbox/execd:v1.0.9 | Medium | 3/25/2026 |
| server/v0.1.9 | ## What's New ### โจ Features - server proxy by websocket (#547) - **[EXPERIMENTAL]** auto-renew on sandbox proxy/ingress access for [OSEP-0009](https://github.com/alibaba/OpenSandbox/blob/main/oseps/0009-auto-renew-sandbox-on-ingress-access.md) (#535) - **[UNSTABLE]** add Pool CRUD API and Kubernetes CRD service (#357) ### ๐ Bug Fixes - **[IMPORTANT]** restore lifecycle route serialization to omit None fields in JSON responses instead of emitting explicit null (#555) - ensure httpx s | Medium | 3/24/2026 |
| docker/ingress/v1.0.5 | ## What's New ### โจ Features - **[EXPERIMENTAL]** publishing renew-intent to Redis for [OSEP-0009](https://github.com/alibaba/OpenSandbox/blob/main/oseps/0009-auto-renew-sandbox-on-ingress-access.md) (#480) ### ๐ Bug Fixes - use LoadOrStore for renew-intent MinInterval throttle (#529) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping --- - Docker Hub: opensandbox/ingress:v1.0.5 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensandbox/in | Medium | 3/24/2026 |
| server/v0.1.8 | > [!WARNING] > `server 0.1.8` contains a lifecycle response compatibility regression and will be yanked. > In this release, some unset optional lifecycle response fields may be serialized as explicit JSON `null` values instead of being omitted. This can break older released SDKs, especially Python SDK versions that do not tolerate explicit `null` in lifecycle responses. > > If you are affected, do not pin to `opensandbox-server==0.1.8`. Upgrade to `0.1.9` once available. ## What's New ### โจ Fe | Low | 3/22/2026 |
| docker/execd/v1.0.8 | ## What's New ### โจ Features - add Session API for pipe-based bash sessions in execd (#104) ### ๐ Bug Fixes - fix goroutine/fd leaks in runCommand when cmd.Start() fails; fix background command stdin still reading from real stdin instead of /dev/null; exit with non-zero code when execd server fails to start; fix panic on empty SQL query and missing `rows.Err()` check (#468) - encode non-ASCII filenames in Content-Disposition header (#472) ## ๐ฅ Contributors Thanks to these contri | Low | 3/18/2026 |
| docker/code-interpreter/v1.0.2 | ## What's New ### ๐ Bug Fixes - correct shell syntax typo in code-interpreter-env.sh (#457) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @LavenderQAQ --- - Docker Hub: opensandbox/code-interpreter:v1.0.2 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensandbox/code-interpreter:v1.0.2 | Low | 3/17/2026 |
| docker/execd/v1.0.7 | ## What's New ### โจ Features - add support env in run command request (#385) - add fallback from bash to sh for Alpine-based images (#407) - add uid and gid support for command execution (#332) - extract version package to components/internal (#245) - replace logger with internal package (#237) ### ๐ Bug Fixes - auto-recreate temp dir in stdLogDescriptor and combinedOutputDescriptor (#415) - return 404 code for missing code context (#373) ### ๐ฆ Misc - refactor unit tests to te | Low | 3/15/2026 |
| docker/ingress/v1.0.4 | ## What's New ### ๐ Bug Fixes - set `CGO_ENABLED=0` resolve ELF 64-bit LSB executable, x86-64, dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2 error (#436) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping --- - Docker Hub: opensandbox/ingress:v1.0.4 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensandbox/ingress:v1.0.4 | Low | 3/13/2026 |
| server/v0.1.7 | ## What's New ### โจ Features - refactor kubernetes client service and add rate limter (#429) - add pvc support in agent-sandbox/batchsandbox runtime (#424) - support user-defined Docker network stack (#426) - add server rbac for secrets (#396) - support image auth in batchsandbox provider (#395) ### ๐ Bug Fixes - clean up failed egress sidecar startup (#418) - strip hop-by-hop proxy headers (#408) - currect Kubernetes label key validation (#398) - use internal endpoint resolution | Low | 3/13/2026 |
| docker/egress/v1.0.3 | ## What's New ### โจ Features - add denied hostname webhook fanout (#406) - add sandboxID within deny webhook payload (#427) ### ๐ฆ Misc - install network tools, like ip (#427) - refactor test by testify framework (#427) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping --- - Docker Hub: opensandbox/egress:v1.0.3 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensandbox/egress:v1.0.3 | Low | 3/12/2026 |
| docker/egress/v1.0.2 | ## What's New ### โจ Features - add patch policy updates and somke coverage (#392) - add nameserver exempt for direct DNS forwarding (#356) ### ๐ฆ Misc - sync latest image for v-prefixed TAG (#331) - Potential fix for code scanning alert no. 114: Workflow does not contain permissions (#278) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping --- - Docker Hub: opensandbox/egress:v1.0.2 - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensand | Low | 3/10/2026 |
| server/v0.1.6 | ## What's New ### โจ Features - secure container e2e case & guide doc (#249) - add configurable resources in execd init container (#349) ### ๐ Bug Fixes - reject websocket upgrades before proxying (#374) - normalize sandbox resource names to DNS-1035 (#335) - reject unsupported image.auth with actionable error (#364) - fix create sandbox timeout in k8s service. No need to wait pod running when create sandbox (#349) - fix file download path encoding and host volume validation errors | Low | 3/9/2026 |
| docker/ingress/v1.0.3 | ## What's New ### โจ Features - build linux/arm64 image (#330) ### ๐ Bug Fixes - Fixes inconsistent sandbox resource naming between creation and lookup paths when sandbox IDs begin with digits (e.g. UUID-like IDs), which can violate Kubernetes DNS-1035 naming rules. (#318) ### ๐ฆ Misc - sync latest image for v-prefixed TAG (#331) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @stablegenius49 - @Pangjiping --- - Docker Hub: opensandbox/ingress:v1.0.3 - Aliyun Re | Low | 3/8/2026 |
| helm/opensandbox/0.1.0 | ## opensandbox Helm Chart(all-in-one) The OpenSandbox Helm Chart (all-in-one) will install both the controller and server components. **Chart Version:** 0.1.0 **App Version:** 0.1.0 ### Installation ็ดๆฅไป GitHub Release ๅฎ่ฃ
: ```bash helm install opensandbox \ https://github.com/alibaba/OpenSandbox/releases/download/helm/opensandbox/0.1.0/opensandbox-0.1.0.tgz \ --namespace opensandbox-system \ --create-namespace ``` ๆ่
ๅ
ไธ่ฝฝๅๅฎ่ฃ
: ```bash # ไธ่ฝฝ wget https://github.com/a | Low | 3/5/2026 |
| server/v0.1.5 | ## What's New ### โจ Features - add server.eip config for endpoint host in Docker runtime (#316) - preserve proxy HTTP errors and add route coverage (#312) - span X-Request-ID by server log (#269) ### ๐ Bug Fixes - validate list metadata query format strictly (#316) - forward query string in sandbox proxy handler (#266) ### ๐ฆ Misc - fix packaging config (#325) - add sandbox router test coverage (#306) - add list sandbox test coverage (#292) - add create and delete sandbox test | Low | 3/3/2026 |
| k8s/task-executor/v0.1.0 | ## What's New ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Spground --- - Aliyun Registry: sandbox-registry.cn-zhangjiakou.cr.aliyuncs.com/opensandbox/task-executor:v0.1.0 | Low | 3/3/2026 |
| helm/opensandbox-controller/0.1.0 | ## opensandbox-controller Helm Chart **Chart Version:** 0.1.0 **App Version:** 0.1.0 ### Installation ็ดๆฅไป GitHub Release ๅฎ่ฃ
: ```bash helm install opensandbox \ https://github.com/alibaba/OpenSandbox/releases/download/helm/opensandbox-controller/0.1.0/opensandbox-controller-0.1.0.tgz \ --namespace opensandbox-system \ --create-namespace ``` ๆ่
ๅ
ไธ่ฝฝๅๅฎ่ฃ
: ```bash # ไธ่ฝฝ wget https://github.com/alibaba/OpenSandbox/releases/download/helm/opensandbox-controller/0.1.0/opensan | Low | 3/3/2026 |
| server/v0.1.4 | ## What's New ### ๐ Bug Fixes - Do not validate `OPEN-SANDBOX-API-KEY` when request is proxied to sandbox (/sandboxes/{id}/proxy/... or /v1/sandboxes/{id}/proxy/...) (#250) - fix server deployment under docker compose bridge network (#256) ### ๐ฆ Misc - bump egress version to v1.0.1 (#259) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping --- - PyPI: opensandbox-server==0.1.4 - Docker Hub: opensandbox/server:v0.1.4 - Aliyun Registry: sandbox-registry.cn-zh | Low | 2/28/2026 |
| docker/egress/v1.0.1 | ## What's New ### โจ Features - Egress stage two for IP/CIDR rules, DoT/DoH block (#183) - Egress stage three for dynamic IP insertion from DNS answers (#197) - unified logger by internal package (#244) - print build/compile info when start up (#245) ### ๐ฆ Misc - chore(deps): bump golang.org/x/net from 0.26.0 to 0.38.0 in /components/egress (#192) ## ๐ฅ Contributors Thanks to these contributors โค๏ธ - @Pangjiping - @dependabot --- - Docker Hub: opensandbox/egress:v1.0.1 | Low | 2/27/2026 |
