Lobsters is a community-driven platform for sharing and discussing links to articles, tutorials, and projects related to technology and programming. Readers can learn about a wide range of topics, from software development and system administration to cybersecurity and artificial intelligence. With user submissions, comments, and voting, Lobsters provides a platform for collaborative learning and knowledge sharing among technology enthusiasts.

Lobsters

A practical guide to sandboxing your development environment and LLM agents using BubbleWrap (bwrap). The setup uses a shell script called `isolate` that mounts only necessary parts of the filesystem, mostly read-only, to limit damage from malicious dependencies or runaway AI agents. Integration with Nix wraps Claude Code to always run isolated, while `auto-isolate` and tmux configuration automate entering the sandbox for any project containing a `.isolate` marker file. Project-specific sandbox extensions (e.g., Wayland/GPU access) are supported via the `.isolate` config file.

BubbleWrap your dev env and agents