jai is a lightweight Linux sandbox tool designed to safely run AI agents and untrusted scripts without full machine access. It works by prefixing any command with `jai`, giving the current working directory full read/write access while protecting the rest of the home directory via a copy-on-write overlay. Three isolation modes

3m read timeFrom jai.scs.stanford.edu
Post cover image
Table of contents
This is not hypothetical. ​How it works ​Three modes ​Free software, not a funnel ​Versus the alternatives ​

Sort: