unsandbox.com
Anonymous remote code, compile, & execution API for humans & machine learning agents.
Docs 📚 View Pricing →
PowerShell
UN CLI
un.ps1
Usage
# Run this implementation to execute a Python script
pwsh cli/inception/un.ps1 test/fib.py test/fib.pySource Code 📄
# PUBLIC DOMAIN - NO LICENSE, NO WARRANTY
#
# This is free public domain software for the public good of a permacomputer hosted
# at permacomputer.com - an always-on computer by the people, for the people. One
# which is durable, easy to repair, and distributed like tap water for machine
# learning intelligence.
#
# The permacomputer is community-owned infrastructure optimized around four values:
#
# TRUTH - First principles, math & science, open source code freely distributed
# FREEDOM - Voluntary partnerships, freedom from tyranny & corporate control
# HARMONY - Minimal waste, self-renewing systems with diverse thriving connections
# LOVE - Be yourself without hurting others, cooperation through natural law
#
# This software contributes to that vision by enabling code execution across 42+
# programming languages through a unified interface, accessible to all. Code is
# seeds to sprout on any abandoned technology.
#
# Learn more: https://www.permacomputer.com
#
# Anyone is free to copy, modify, publish, use, compile, sell, or distribute this
# software, either in source code form or as a compiled binary, for any purpose,
# commercial or non-commercial, and by any means.
#
# NO WARRANTY. THE SOFTWARE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND.
#
# That said, our permacomputer's digital membrane stratum continuously runs unit,
# integration, and functional tests on all of it's own software - with our
# permacomputer monitoring itself, repairing itself, with minimal human in the
# loop guidance. Our agents do their best.
#
# Copyright 2025 TimeHexOn & foxhop & russell@unturf
# https://www.timehexon.com
# https://www.foxhop.net
# https://www.unturf.com/software
#!/usr/bin/env pwsh
# un.ps1 - Unsandbox CLI Client (PowerShell Implementation)
#
# Usage:
# pwsh un.ps1 [options] <source_file>
# pwsh un.ps1 session [options]
# pwsh un.ps1 service [options]
$API_BASE = "https://api.unsandbox.com"
$PORTAL_BASE = "https://unsandbox.com"
$EXT_MAP = @{
".ps1" = "powershell"; ".py" = "python"; ".js" = "javascript"
".ts" = "typescript"; ".rb" = "ruby"; ".php" = "php"; ".pl" = "perl"
".lua" = "lua"; ".sh" = "bash"; ".go" = "go"; ".rs" = "rust"
".c" = "c"; ".cpp" = "cpp"; ".java" = "java"; ".kt" = "kotlin"
".cs" = "csharp"; ".fs" = "fsharp"; ".hs" = "haskell"; ".ml" = "ocaml"
".clj" = "clojure"; ".scm" = "scheme"; ".lisp" = "commonlisp"
".erl" = "erlang"; ".ex" = "elixir"; ".jl" = "julia"; ".r" = "r"
".cr" = "crystal"; ".d" = "d"; ".nim" = "nim"; ".zig" = "zig"
".v" = "v"; ".dart" = "dart"; ".groovy" = "groovy"; ".f90" = "fortran"
".cob" = "cobol"; ".pro" = "prolog"; ".forth" = "forth"; ".tcl" = "tcl"
".raku" = "raku"; ".m" = "objc"; ".awk" = "awk"
}
function Get-ApiKeys {
$publicKey = $env:UNSANDBOX_PUBLIC_KEY
$secretKey = $env:UNSANDBOX_SECRET_KEY
# Fallback to old UNSANDBOX_API_KEY for backwards compat
if (-not $publicKey -and $env:UNSANDBOX_API_KEY) {
$publicKey = $env:UNSANDBOX_API_KEY
$secretKey = ""
}
if (-not $publicKey) {
Write-Error "Error: UNSANDBOX_PUBLIC_KEY or UNSANDBOX_API_KEY not set"
exit 1
}
return @($publicKey, $secretKey)
}
function Invoke-Api {
param($Endpoint, $Method = "GET", $Body = $null, $BaseUrl = $null)
$publicKey, $secretKey = Get-ApiKeys
$headers = @{
"Authorization" = "Bearer $publicKey"
"Content-Type" = "application/json"
}
# Add HMAC signature if secret key exists
if ($secretKey) {
$timestamp = [int][double]::Parse((Get-Date -UFormat %s))
$bodyContent = if ($Body) { $Body } else { "" }
$sigInput = "${timestamp}:${Method}:${Endpoint}:${bodyContent}"
$hmac = New-Object System.Security.Cryptography.HMACSHA256
$hmac.Key = [System.Text.Encoding]::UTF8.GetBytes($secretKey)
$hash = $hmac.ComputeHash([System.Text.Encoding]::UTF8.GetBytes($sigInput))
$signature = [System.BitConverter]::ToString($hash).Replace("-", "").ToLower()
$headers["X-Timestamp"] = $timestamp.ToString()
$headers["X-Signature"] = $signature
}
$base = if ($BaseUrl) { $BaseUrl } else { $API_BASE }
$uri = "$base$Endpoint"
try {
if ($Body) {
$response = Invoke-RestMethod -Uri $uri -Method $Method -Headers $headers -Body $Body
} else {
$response = Invoke-RestMethod -Uri $uri -Method $Method -Headers $headers
}
return $response
} catch {
$errorMsg = $_.Exception.Message
if ($errorMsg -match "401" -and $errorMsg -match "timestamp") {
Write-Host "`e[31mError: Request timestamp expired (must be within 5 minutes of server time)`e[0m" -ForegroundColor Red
Write-Host "`e[33mYour computer's clock may have drifted.`e[0m" -ForegroundColor Yellow
Write-Host "Check your system time and sync with NTP if needed:"
Write-Host " Linux: sudo ntpdate -s time.nist.gov"
Write-Host " macOS: sudo sntp -sS time.apple.com"
Write-Host " Windows: w32tm /resync"
} else {
Write-Error "Error: $errorMsg"
}
exit 1
}
}
function Invoke-Execute {
param($SourceFile, $EnvVars = @{}, $Network = $null)
if (-not (Test-Path $SourceFile)) {
Write-Error "Error: File not found: $SourceFile"
exit 1
}
$ext = [System.IO.Path]::GetExtension($SourceFile).ToLower()
$language = $EXT_MAP[$ext]
if (-not $language) {
Write-Error "Error: Unknown extension: $ext"
exit 1
}
$code = Get-Content -Raw $SourceFile
$payload = @{
language = $language
code = $code
}
if ($EnvVars.Count -gt 0) {
$payload["env"] = $EnvVars
}
if ($Network) {
$payload["network"] = $Network
}
$body = $payload | ConvertTo-Json -Depth 10
$result = Invoke-Api -Endpoint "/execute" -Method "POST" -Body $body
if ($result.stdout) {
Write-Host "`e[34m$($result.stdout)`e[0m" -NoNewline
}
if ($result.stderr) {
Write-Host "`e[31m$($result.stderr)`e[0m" -NoNewline
}
exit $result.exit_code
}
function Invoke-Session {
param($Args)
if ($Args -contains "--list" -or $Args -contains "-l") {
$result = Invoke-Api -Endpoint "/sessions"
$result | ConvertTo-Json -Depth 5
return
}
if ($Args -contains "--kill") {
$idx = [array]::IndexOf($Args, "--kill")
$sessionId = $Args[$idx + 1]
Invoke-Api -Endpoint "/sessions/$sessionId" -Method "DELETE"
Write-Host "`e[32mSession terminated: $sessionId`e[0m"
return
}
# Create session
$shell = "bash"
if ($Args -contains "--shell" -or $Args -contains "-s") {
$idx = if ($Args -contains "--shell") { [array]::IndexOf($Args, "--shell") } else { [array]::IndexOf($Args, "-s") }
$shell = $Args[$idx + 1]
}
$payload = @{ shell = $shell } | ConvertTo-Json
$result = Invoke-Api -Endpoint "/sessions" -Method "POST" -Body $payload
Write-Host "`e[33mSession created (WebSocket required for interactive)`e[0m"
$result | ConvertTo-Json -Depth 5
}
function Invoke-Key {
param($Args)
$extend = $Args -contains "--extend"
try {
$result = Invoke-Api -Endpoint "/keys/validate" -Method "POST" -BaseUrl $PORTAL_BASE
# Handle --extend flag
if ($extend) {
$publicKey = $result.public_key
if ($publicKey) {
$url = "$PORTAL_BASE/keys/extend?pk=$publicKey"
Write-Host "`e[34mOpening browser to extend key...`e[0m"
if ($IsWindows) {
Start-Process $url
} elseif ($IsMacOS) {
& open $url
} elseif ($IsLinux) {
& xdg-open $url
} else {
Write-Host "`e[33mPlease open manually: $url`e[0m"
}
return
} else {
Write-Error "Error: Could not retrieve public key"
exit 1
}
}
# Check if key is expired
if ($result.expired) {
Write-Host "`e[31mExpired`e[0m"
Write-Host "Public Key: $($result.public_key ?? 'N/A')"
Write-Host "Tier: $($result.tier ?? 'N/A')"
Write-Host "Expired: $($result.expires_at ?? 'N/A')"
Write-Host "`e[33mTo renew: Visit $PORTAL_BASE/keys/extend`e[0m"
exit 1
}
# Valid key
Write-Host "`e[32mValid`e[0m"
Write-Host "Public Key: $($result.public_key ?? 'N/A')"
Write-Host "Tier: $($result.tier ?? 'N/A')"
Write-Host "Status: $($result.status ?? 'N/A')"
Write-Host "Expires: $($result.expires_at ?? 'N/A')"
Write-Host "Time Remaining: $($result.time_remaining ?? 'N/A')"
Write-Host "Rate Limit: $($result.rate_limit ?? 'N/A')"
Write-Host "Burst: $($result.burst ?? 'N/A')"
Write-Host "Concurrency: $($result.concurrency ?? 'N/A')"
} catch {
Write-Host "`e[31mInvalid`e[0m"
Write-Host "Reason: $($_.Exception.Message)"
exit 1
}
}
function Invoke-Service {
param($Args)
if ($Args -contains "--list" -or $Args -contains "-l") {
$result = Invoke-Api -Endpoint "/services"
$result | ConvertTo-Json -Depth 5
return
}
if ($Args -contains "--info") {
$idx = [array]::IndexOf($Args, "--info")
$serviceId = $Args[$idx + 1]
$result = Invoke-Api -Endpoint "/services/$serviceId"
$result | ConvertTo-Json -Depth 5
return
}
if ($Args -contains "--logs") {
$idx = [array]::IndexOf($Args, "--logs")
$serviceId = $Args[$idx + 1]
$result = Invoke-Api -Endpoint "/services/$serviceId/logs"
Write-Host $result.logs
return
}
if ($Args -contains "--freeze") {
$idx = [array]::IndexOf($Args, "--freeze")
$serviceId = $Args[$idx + 1]
Invoke-Api -Endpoint "/services/$serviceId/sleep" -Method "POST" -Body "{}"
Write-Host "`e[32mService sleeping: $serviceId`e[0m"
return
}
if ($Args -contains "--unfreeze") {
$idx = [array]::IndexOf($Args, "--unfreeze")
$serviceId = $Args[$idx + 1]
Invoke-Api -Endpoint "/services/$serviceId/wake" -Method "POST" -Body "{}"
Write-Host "`e[32mService waking: $serviceId`e[0m"
return
}
if ($Args -contains "--destroy") {
$idx = [array]::IndexOf($Args, "--destroy")
$serviceId = $Args[$idx + 1]
Invoke-Api -Endpoint "/services/$serviceId" -Method "DELETE"
Write-Host "`e[32mService destroyed: $serviceId`e[0m"
return
}
if ($Args -contains "--dump-bootstrap") {
$idx = [array]::IndexOf($Args, "--dump-bootstrap")
$serviceId = $Args[$idx + 1]
Write-Host "Fetching bootstrap script from $serviceId..." -ForegroundColor Yellow
$payload = @{ command = "cat /tmp/bootstrap.sh" } | ConvertTo-Json
$result = Invoke-Api -Endpoint "/services/$serviceId/execute" -Method "POST" -Body $payload
if ($result.stdout -and $result.stdout.Length -gt 0) {
$bootstrap = $result.stdout
if ($Args -contains "--dump-file") {
$dumpIdx = [array]::IndexOf($Args, "--dump-file")
$dumpFile = $Args[$dumpIdx + 1]
# Write to file
$bootstrap | Set-Content -Path $dumpFile -NoNewline
if ($IsLinux -or $IsMacOS) {
& chmod 755 $dumpFile
}
Write-Host "Bootstrap saved to $dumpFile"
} else {
# Print to stdout
Write-Host $bootstrap -NoNewline
}
} else {
Write-Error "Error: Failed to fetch bootstrap (service not running or no bootstrap file)"
exit 1
}
return
}
# Create service
if ($Args -contains "--name") {
$idx = [array]::IndexOf($Args, "--name")
$name = $Args[$idx + 1]
$payload = @{ name = $name }
if ($Args -contains "--ports") {
$pIdx = [array]::IndexOf($Args, "--ports")
$ports = $Args[$pIdx + 1] -split "," | ForEach-Object { [int]$_ }
$payload["ports"] = $ports
}
if ($Args -contains "--bootstrap") {
$bIdx = [array]::IndexOf($Args, "--bootstrap")
$payload["bootstrap"] = $Args[$bIdx + 1]
}
if ($Args -contains "--type") {
$tIdx = [array]::IndexOf($Args, "--type")
$payload["service_type"] = $Args[$tIdx + 1]
}
$body = $payload | ConvertTo-Json -Depth 5
$result = Invoke-Api -Endpoint "/services" -Method "POST" -Body $body
Write-Host "`e[32mService created`e[0m"
$result | ConvertTo-Json -Depth 5
return
}
Write-Error "Error: Specify --name to create or use --list, --info, etc."
exit 1
}
# Main
if ($args.Count -eq 0 -or $args[0] -eq "--help" -or $args[0] -eq "-h") {
Write-Host @"
Usage: pwsh un.ps1 [options] <source_file>
pwsh un.ps1 session [options]
pwsh un.ps1 service [options]
pwsh un.ps1 key [options]
Execute options:
-e KEY=VALUE Environment variable
-n MODE Network mode (zerotrust|semitrusted)
Session options:
--list, -l List sessions
--kill ID Terminate session
--shell NAME Shell/REPL to use
Service options:
--name NAME Service name
--ports PORTS Comma-separated ports
--type TYPE Service type (minecraft, mumble, teamspeak, source, tcp, udp)
--bootstrap CMD Bootstrap command
--list, -l List services
--info ID Get service info
--logs ID Get logs
--freeze ID Freeze service
--unfreeze ID Unfreeze service
--destroy ID Destroy service
--dump-bootstrap ID Dump bootstrap script from service
--dump-file FILE Save bootstrap to file (with --dump-bootstrap)
Key options:
--extend Open browser to extend key
"@
exit 0
}
if ($args[0] -eq "session") {
Invoke-Session -Args $args[1..($args.Count-1)]
} elseif ($args[0] -eq "service") {
Invoke-Service -Args $args[1..($args.Count-1)]
} elseif ($args[0] -eq "key") {
Invoke-Key -Args $args[1..($args.Count-1)]
} else {
# Parse execute args
$sourceFile = $null
$envVars = @{}
$network = $null
for ($i = 0; $i -lt $args.Count; $i++) {
switch ($args[$i]) {
"-e" {
$kv = $args[$i+1] -split "=", 2
$envVars[$kv[0]] = $kv[1]
$i++
}
"-n" { $network = $args[$i+1]; $i++ }
default {
if (-not $args[$i].StartsWith("-")) {
$sourceFile = $args[$i]
}
}
}
}
if (-not $sourceFile) {
Write-Error "Error: No source file specified"
exit 1
}
Invoke-Execute -SourceFile $sourceFile -EnvVars $envVars -Network $network
}
License
PUBLIC DOMAIN - NO LICENSE, NO WARRANTY
This is free public domain software for the public good of a permacomputer hosted
at permacomputer.com - an always-on computer by the people, for the people. One
that is durable, easy to repair, and distributed like tap water for machine
learning intelligence.
The permacomputer is community-owned infrastructure optimized around four values:
TRUTH - First principles, math & science, open source code freely distributed
FREEDOM - Voluntary partnerships, freedom from tyranny & corporate control
HARMONY - Minimal waste, self-renewing systems with diverse thriving connections
LOVE - Be yourself without hurting others, cooperation through natural law
This software contributes to that vision by enabling code execution across all 42
programming languages through a unified interface, accessible to everyone. Code is
seeds to sprout on any abandoned technology.
Learn more: https://www.permacomputer.com
Anyone is free to copy, modify, publish, use, compile, sell, or distribute this
software, either in source code form or as a compiled binary, for any purpose,
commercial or non-commercial, and by any means.
NO WARRANTY. THE SOFTWARE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND.
That said, our permacomputer's digital membrane stratum continuously runs unit,
integration, and functional tests on all its own software - with our permacomputer
monitoring itself, repairing itself, with minimal human guidance in the loop.
Our agents do their best.
Copyright 2025 TimeHexOn & foxhop & russell@unturf
https://www.timehexon.com
https://www.foxhop.net
https://www.unturf.com/software