CLI
Cliente de línea de comandos rápido para ejecución de código y sesiones interactivas. Más de 42 lenguajes, más de 30 shells/REPL.
Documentación oficial OpenAPI Swagger ↗Inicio Rápido — Bash
# Download + setup
curl -O https://git.unturf.com/engineering/unturf/un-inception/-/raw/main/clients/bash/sync/src/un.sh && chmod +x un.sh && ln -sf un.sh un
export UNSANDBOX_PUBLIC_KEY="unsb-pk-xxxx-xxxx-xxxx-xxxx"
export UNSANDBOX_SECRET_KEY="unsb-sk-xxxxx-xxxxx-xxxxx-xxxxx"
# Run code
./un script.shDescargar
Guía de instalación →Características:
- 42+ languages - Python, JS, Go, Rust, C++, Java...
- Sessions - 30+ shells/REPLs, tmux persistence
- Files - Upload files, collect artifacts
- Services - Persistent containers with domains
- Snapshots - Point-in-time backups
- Images - Publish, share, transfer
Inicio Rápido de Integración ⚡
Agrega superpoderes unsandbox a tu app Bash existente:
1
Descargar
curl -O https://git.unturf.com/engineering/unturf/un-inception/-/raw/main/clients/bash/sync/src/un.sh
2
Obtener una Clave API
# Option A: Environment variables
export UNSANDBOX_PUBLIC_KEY="unsb-pk-xxxx-xxxx-xxxx-xxxx"
export UNSANDBOX_SECRET_KEY="unsb-sk-xxxxx-xxxxx-xxxxx-xxxxx"
# Option B: Config file (persistent)
mkdir -p ~/.unsandbox
echo "unsb-pk-xxxx-xxxx-xxxx-xxxx,unsb-sk-xxxxx-xxxxx-xxxxx-xxxxx" > ~/.unsandbox/accounts.csv
3
Hola Mundo
# Run code via CLI:
bash un.sh script.sh
# Or inline:
echo 'echo "Hello from Bash running on unsandbox!"' > /tmp/test.sh && bash un.sh /tmp/test.sh
# Output: Hello from Bash running on unsandbox!
Demo cooldown: s
stdout:
JSON Response:
4
Run
bash myapp.sh
Código fuente 📄 (1319 lines)
MD5:
ab15e606d457ca0a4a31e3df8204fab8
SHA256: 85d81b53391060cbc136cbe0fd391c785788693bf8181c9e1c611f5259fa6d35
#!/bin/bash
# This is free software for the public good of a permacomputer hosted at
# permacomputer.com, an always-on computer by the people, for the people.
# One which is durable, easy to repair, & distributed like tap water
# for machine learning intelligence.
#
# The permacomputer is community-owned infrastructure optimized around
# four values:
#
# TRUTH First principles, math & science, open source code freely distributed
# FREEDOM Voluntary partnerships, freedom from tyranny & corporate control
# HARMONY Minimal waste, self-renewing systems with diverse thriving connections
# LOVE Be yourself without hurting others, cooperation through natural law
#
# This software contributes to that vision by enabling code execution across 42+ programming languages through a unified interface, accessible to all.
# Code is seeds to sprout on any abandoned technology.
set -euo pipefail
VERSION="4.2.50"
API_BASE="https://api.unsandbox.com"
PORTAL_BASE="https://unsandbox.com"
LAST_ERROR=""
ACCOUNT_INDEX=-1
# Colors
BLUE='\033[34m'
RED='\033[31m'
GREEN='\033[32m'
YELLOW='\033[33m'
RESET='\033[0m'
# ============================================================================
# Utility Functions
# ============================================================================
version() {
echo "$VERSION"
}
last_error() {
echo "$LAST_ERROR"
}
set_error() {
LAST_ERROR="$1"
}
detect_language() {
local file="$1"
case "$file" in
*.py) echo "python" ;;
*.js) echo "javascript" ;;
*.ts) echo "typescript" ;;
*.rb) echo "ruby" ;;
*.php) echo "php" ;;
*.pl) echo "perl" ;;
*.lua) echo "lua" ;;
*.sh) echo "bash" ;;
*.go) echo "go" ;;
*.rs) echo "rust" ;;
*.c) echo "c" ;;
*.cpp|*.cc|*.cxx) echo "cpp" ;;
*.java) echo "java" ;;
*.kt) echo "kotlin" ;;
*.cs) echo "csharp" ;;
*.fs) echo "fsharp" ;;
*.hs) echo "haskell" ;;
*.ml) echo "ocaml" ;;
*.clj) echo "clojure" ;;
*.scm) echo "scheme" ;;
*.lisp) echo "commonlisp" ;;
*.erl) echo "erlang" ;;
*.ex|*.exs) echo "elixir" ;;
*.jl) echo "julia" ;;
*.r|*.R) echo "r" ;;
*.cr) echo "crystal" ;;
*.d) echo "d" ;;
*.nim) echo "nim" ;;
*.zig) echo "zig" ;;
*.v) echo "v" ;;
*.dart) echo "dart" ;;
*.groovy) echo "groovy" ;;
*.scala) echo "scala" ;;
*.f90|*.f95) echo "fortran" ;;
*.cob) echo "cobol" ;;
*.tcl) echo "tcl" ;;
*.raku) echo "raku" ;;
*.pro) echo "prolog" ;;
*.forth|*.4th) echo "forth" ;;
*.m) echo "objc" ;;
*) return 1 ;;
esac
}
hmac_sign() {
local secret="$1"
local message="$2"
echo -n "$message" | openssl dgst -sha256 -hmac "$secret" -hex 2>/dev/null | sed 's/^.* //'
}
# ============================================================================
# Credential Management
# ============================================================================
load_accounts_csv() {
local path="${1:-$HOME/.unsandbox/accounts.csv}"
local row="${2:-0}"
[ -f "$path" ] || return 1
local n=0
while IFS= read -r line; do
[[ "$line" =~ ^# ]] && continue
[ -z "$line" ] && continue
if [ "$n" -eq "$row" ]; then
echo "$line"
return 0
fi
n=$((n + 1))
done < "$path"
return 1
}
get_credentials() {
# Tier 1: Arguments (via PUBLIC_KEY/SECRET_KEY globals)
if [ -n "${PUBLIC_KEY:-}" ] && [ -n "${SECRET_KEY:-}" ]; then
echo "$PUBLIC_KEY:$SECRET_KEY"
return
fi
# Tier 2: --account N flag → bypass env vars, load CSV row N directly
if [ "$ACCOUNT_INDEX" -ge 0 ] 2>/dev/null; then
local creds
creds=$(load_accounts_csv "$HOME/.unsandbox/accounts.csv" "$ACCOUNT_INDEX" 2>/dev/null || true)
[ -z "$creds" ] && creds=$(load_accounts_csv "./accounts.csv" "$ACCOUNT_INDEX" 2>/dev/null || true)
if [ -n "$creds" ]; then
echo "$creds"
return
fi
set_error "Account index $ACCOUNT_INDEX not found in accounts.csv"
return 1
fi
# Tier 3: Environment
if [ -n "${UNSANDBOX_PUBLIC_KEY:-}" ] && [ -n "${UNSANDBOX_SECRET_KEY:-}" ]; then
echo "$UNSANDBOX_PUBLIC_KEY:$UNSANDBOX_SECRET_KEY"
return
fi
# Legacy fallback
if [ -n "${UNSANDBOX_API_KEY:-}" ]; then
echo "$UNSANDBOX_API_KEY:"
return
fi
# Tier 4: Home directory
local creds
creds=$(load_accounts_csv "$HOME/.unsandbox/accounts.csv" 2>/dev/null || true)
if [ -n "$creds" ]; then
echo "$creds"
return
fi
# Tier 5: Local directory
creds=$(load_accounts_csv "./accounts.csv" 2>/dev/null || true)
if [ -n "$creds" ]; then
echo "$creds"
return
fi
set_error "No credentials found"
return 1
}
# ============================================================================
# API Communication
# ============================================================================
api_request() {
local method="$1"
local endpoint="$2"
local body="${3:-}"
local extra_headers="${4:-}"
local content_type="${5:-application/json}"
local creds
creds=$(get_credentials) || return 1
local pk="${creds%%:*}"
local sk="${creds#*:}"
local timestamp
timestamp=$(date +%s)
local body_str="${body:-}"
local signature=""
if [ -n "$sk" ]; then
signature=$(hmac_sign "$sk" "$timestamp:$method:$endpoint:$body_str")
fi
local curl_args=(-s -X "$method" "$API_BASE$endpoint"
-H "Authorization: Bearer $pk"
-H "Content-Type: $content_type")
if [ -n "$signature" ]; then
curl_args+=(-H "X-Timestamp: $timestamp" -H "X-Signature: $signature")
fi
if [ -n "$extra_headers" ]; then
eval "curl_args+=($extra_headers)"
fi
if [ -n "$body_str" ]; then
curl_args+=(-d "$body_str")
fi
curl "${curl_args[@]}"
}
api_request_with_sudo() {
local method="$1"
local endpoint="$2"
local body="${3:-}"
local creds
creds=$(get_credentials) || return 1
local pk="${creds%%:*}"
local sk="${creds#*:}"
local timestamp
timestamp=$(date +%s)
local body_str="${body:-}"
local signature=""
if [ -n "$sk" ]; then
signature=$(hmac_sign "$sk" "$timestamp:$method:$endpoint:$body_str")
fi
local result
result=$(curl -s -w '\n%{http_code}' -X "$method" "$API_BASE$endpoint" \
-H "Authorization: Bearer $pk" \
-H "Content-Type: application/json" \
${signature:+-H "X-Timestamp: $timestamp" -H "X-Signature: $signature"} \
${body_str:+-d "$body_str"})
local http_code
http_code=$(echo "$result" | tail -1)
local response_body
response_body=$(echo "$result" | sed '$d')
# Handle 428 - Sudo OTP required
if [ "$http_code" = "428" ]; then
local challenge_id
challenge_id=$(echo "$response_body" | jq -r '.challenge_id // empty' 2>/dev/null || true)
echo -e "${YELLOW}Confirmation required. Check your email for a one-time code.${RESET}" >&2
echo -n "Enter OTP: " >&2
read -r otp
if [ -z "$otp" ]; then
set_error "Operation cancelled"
return 1
fi
# Retry with sudo headers
timestamp=$(date +%s)
if [ -n "$sk" ]; then
signature=$(hmac_sign "$sk" "$timestamp:$method:$endpoint:$body_str")
fi
result=$(curl -s -w '\n%{http_code}' -X "$method" "$API_BASE$endpoint" \
-H "Authorization: Bearer $pk" \
-H "Content-Type: application/json" \
${signature:+-H "X-Timestamp: $timestamp" -H "X-Signature: $signature"} \
-H "X-Sudo-OTP: $otp" \
${challenge_id:+-H "X-Sudo-Challenge: $challenge_id"} \
${body_str:+-d "$body_str"})
http_code=$(echo "$result" | tail -1)
response_body=$(echo "$result" | sed '$d')
fi
if [ "$http_code" -lt 200 ] || [ "$http_code" -ge 300 ]; then
set_error "API error ($http_code)"
return 1
fi
echo "$response_body"
}
# ============================================================================
# Execution Functions (8)
# ============================================================================
execute() {
local language="$1"
local code="$2"
local network_mode="${3:-zerotrust}"
local body
body=$(jq -n --arg lang "$language" --arg code "$code" --arg net "$network_mode" \
'{language: $lang, code: $code, network_mode: $net, ttl: 60}')
api_request "POST" "/execute" "$body"
}
execute_async() {
local language="$1"
local code="$2"
local network_mode="${3:-zerotrust}"
local body
body=$(jq -n --arg lang "$language" --arg code "$code" --arg net "$network_mode" \
'{language: $lang, code: $code, network_mode: $net, ttl: 300}')
api_request "POST" "/execute/async" "$body"
}
wait_job() {
local job_id="$1"
local delays=(300 450 700 900 650 1600 2000)
for i in $(seq 0 119); do
local job
job=$(get_job "$job_id")
local status
status=$(echo "$job" | jq -r '.status')
[ "$status" = "completed" ] && echo "$job" && return 0
[ "$status" = "failed" ] && { set_error "Job failed"; return 1; }
local delay=${delays[$((i % 7))]}
sleep "$(echo "scale=3; $delay/1000" | bc)"
done
set_error "Max polls exceeded"
return 1
}
get_job() {
local job_id="$1"
api_request "GET" "/jobs/$job_id" ""
}
cancel_job() {
local job_id="$1"
api_request "DELETE" "/jobs/$job_id" ""
}
list_jobs() {
api_request "GET" "/jobs" ""
}
get_languages() {
local cache_path="$HOME/.unsandbox/languages.json"
local cache_ttl=3600
if [ -f "$cache_path" ]; then
local age
age=$(($(date +%s) - $(stat -f%m "$cache_path" 2>/dev/null || stat -c%Y "$cache_path" 2>/dev/null || echo 0)))
if [ "$age" -lt "$cache_ttl" ]; then
cat "$cache_path"
return
fi
fi
local result
result=$(api_request "GET" "/languages" "")
mkdir -p "$HOME/.unsandbox"
echo "$result" | jq '.languages' > "$cache_path"
echo "$result" | jq '.languages'
}
# ============================================================================
# Session Functions (9)
# ============================================================================
session_list() {
api_request "GET" "/sessions" ""
}
session_get() {
local session_id="$1"
api_request "GET" "/sessions/$session_id" ""
}
session_create() {
local shell="${1:-bash}"
local network="${2:-}"
local vcpu="${3:-}"
local body
body=$(jq -n --arg shell "$shell" '{shell: $shell}')
if [ -n "$network" ]; then
body=$(echo "$body" | jq --arg net "$network" '. + {network: $net}')
fi
if [ -n "$vcpu" ]; then
body=$(echo "$body" | jq --argjson vcpu "$vcpu" '. + {vcpu: $vcpu}')
fi
api_request "POST" "/sessions" "$body"
}
session_destroy() {
local session_id="$1"
api_request "DELETE" "/sessions/$session_id" ""
}
session_freeze() {
local session_id="$1"
api_request "POST" "/sessions/$session_id/freeze" "{}"
}
session_unfreeze() {
local session_id="$1"
api_request "POST" "/sessions/$session_id/unfreeze" "{}"
}
session_boost() {
local session_id="$1"
local vcpu="${2:-2}"
api_request "POST" "/sessions/$session_id/boost" "{\"vcpu\":$vcpu}"
}
session_unboost() {
local session_id="$1"
api_request "POST" "/sessions/$session_id/unboost" "{}"
}
session_execute() {
local session_id="$1"
local command="$2"
api_request "POST" "/sessions/$session_id/execute" "{\"command\":$(echo "$command" | jq -Rs .)}"
}
# ============================================================================
# Service Functions (17)
# ============================================================================
service_list() {
api_request "GET" "/services" ""
}
service_get() {
local service_id="$1"
api_request "GET" "/services/$service_id" ""
}
service_create() {
local name="$1"
local ports="${2:-}"
local bootstrap="${3:-}"
local input_files_json="${4:-}"
local body
body=$(jq -n --arg name "$name" '{name: $name}')
if [ -n "$ports" ]; then
body=$(echo "$body" | jq --argjson ports "[$ports]" '. + {ports: $ports}')
fi
if [ -n "$bootstrap" ]; then
body=$(echo "$body" | jq --arg boot "$bootstrap" '. + {bootstrap: $boot}')
fi
if [ -n "$input_files_json" ]; then
body=$(echo "$body" | jq --argjson files "$input_files_json" '. + {input_files: $files}')
fi
api_request "POST" "/services" "$body"
}
service_destroy() {
local service_id="$1"
api_request_with_sudo "DELETE" "/services/$service_id" ""
}
service_freeze() {
local service_id="$1"
api_request "POST" "/services/$service_id/freeze" "{}"
}
service_unfreeze() {
local service_id="$1"
api_request "POST" "/services/$service_id/unfreeze" "{}"
}
service_lock() {
local service_id="$1"
api_request "POST" "/services/$service_id/lock" "{}"
}
service_unlock() {
local service_id="$1"
api_request_with_sudo "POST" "/services/$service_id/unlock" "{}"
}
service_set_unfreeze_on_demand() {
local service_id="$1"
local enabled="$2"
api_request "PATCH" "/services/$service_id" "{\"unfreeze_on_demand\":$enabled}"
}
service_redeploy() {
local service_id="$1"
local bootstrap="${2:-}"
local input_files_json="${3:-}"
local body="{}"
if [ -n "$bootstrap" ]; then
body=$(jq -n --arg boot "$bootstrap" '{bootstrap: $boot}')
fi
if [ -n "$input_files_json" ]; then
body=$(echo "$body" | jq --argjson files "$input_files_json" '. + {input_files: $files}')
fi
api_request "POST" "/services/$service_id/redeploy" "$body"
}
service_logs() {
local service_id="$1"
local lines="${2:-}"
local endpoint="/services/$service_id/logs"
[ -n "$lines" ] && endpoint="$endpoint?lines=$lines"
api_request "GET" "$endpoint" ""
}
service_execute() {
local service_id="$1"
local command="$2"
api_request "POST" "/services/$service_id/execute" "{\"command\":$(echo "$command" | jq -Rs .)}"
}
service_env_get() {
local service_id="$1"
api_request "GET" "/services/$service_id/env" ""
}
service_env_set() {
local service_id="$1"
local env_content="$2"
api_request "PUT" "/services/$service_id/env" "$env_content" "" "text/plain"
}
service_env_delete() {
local service_id="$1"
api_request "DELETE" "/services/$service_id/env" ""
}
service_env_export() {
local service_id="$1"
api_request "POST" "/services/$service_id/env/export" "{}"
}
service_resize() {
local service_id="$1"
local vcpu="$2"
api_request "PATCH" "/services/$service_id" "{\"vcpu\":$vcpu}"
}
# ============================================================================
# Snapshot Functions (9)
# ============================================================================
snapshot_list() {
api_request "GET" "/snapshots" ""
}
snapshot_get() {
local snapshot_id="$1"
api_request "GET" "/snapshots/$snapshot_id" ""
}
snapshot_session() {
local session_id="$1"
local name="${2:-}"
local hot="${3:-false}"
local body="{}"
if [ -n "$name" ] || [ "$hot" = "true" ]; then
body=$(jq -n --arg name "$name" --argjson hot "$hot" \
'{name: (if $name != "" then $name else null end), hot: $hot}')
fi
api_request "POST" "/sessions/$session_id/snapshot" "$body"
}
snapshot_service() {
local service_id="$1"
local name="${2:-}"
local hot="${3:-false}"
local body="{}"
if [ -n "$name" ] || [ "$hot" = "true" ]; then
body=$(jq -n --arg name "$name" --argjson hot "$hot" \
'{name: (if $name != "" then $name else null end), hot: $hot}')
fi
api_request "POST" "/services/$service_id/snapshot" "$body"
}
snapshot_restore() {
local snapshot_id="$1"
api_request "POST" "/snapshots/$snapshot_id/restore" "{}"
}
snapshot_delete() {
local snapshot_id="$1"
api_request_with_sudo "DELETE" "/snapshots/$snapshot_id" ""
}
snapshot_lock() {
local snapshot_id="$1"
api_request "POST" "/snapshots/$snapshot_id/lock" "{}"
}
snapshot_unlock() {
local snapshot_id="$1"
api_request_with_sudo "POST" "/snapshots/$snapshot_id/unlock" "{}"
}
snapshot_clone() {
local snapshot_id="$1"
local clone_type="${2:-session}"
local name="${3:-}"
local body
body=$(jq -n --arg type "$clone_type" --arg name "$name" \
'{clone_type: $type, name: (if $name != "" then $name else null end)}')
api_request "POST" "/snapshots/$snapshot_id/clone" "$body"
}
# ============================================================================
# Image Functions (13)
# ============================================================================
image_list() {
local filter="${1:-}"
local endpoint="/images"
[ -n "$filter" ] && endpoint="$endpoint?filter=$filter"
api_request "GET" "$endpoint" ""
}
image_get() {
local image_id="$1"
api_request "GET" "/images/$image_id" ""
}
image_publish() {
local source_type="$1"
local source_id="$2"
local name="${3:-}"
local body
body=$(jq -n --arg type "$source_type" --arg id "$source_id" --arg name "$name" \
'{source_type: $type, source_id: $id, name: (if $name != "" then $name else null end)}')
api_request "POST" "/images/publish" "$body"
}
image_delete() {
local image_id="$1"
api_request_with_sudo "DELETE" "/images/$image_id" ""
}
image_lock() {
local image_id="$1"
api_request "POST" "/images/$image_id/lock" "{}"
}
image_unlock() {
local image_id="$1"
api_request_with_sudo "POST" "/images/$image_id/unlock" "{}"
}
image_set_visibility() {
local image_id="$1"
local visibility="$2"
api_request "POST" "/images/$image_id/visibility" "{\"visibility\":\"$visibility\"}"
}
image_grant_access() {
local image_id="$1"
local trusted_key="$2"
api_request "POST" "/images/$image_id/access" "{\"api_key\":\"$trusted_key\"}"
}
image_revoke_access() {
local image_id="$1"
local trusted_key="$2"
api_request "DELETE" "/images/$image_id/access/$trusted_key" ""
}
image_list_trusted() {
local image_id="$1"
api_request "GET" "/images/$image_id/access" ""
}
image_transfer() {
local image_id="$1"
local to_key="$2"
api_request "POST" "/images/$image_id/transfer" "{\"to_api_key\":\"$to_key\"}"
}
image_spawn() {
local image_id="$1"
local name="${2:-}"
local ports="${3:-}"
local body="{}"
if [ -n "$name" ] || [ -n "$ports" ]; then
body="{"
local first=1
if [ -n "$name" ]; then
body="$body\"name\":\"$name\""
first=0
fi
if [ -n "$ports" ]; then
[ "$first" -eq 0 ] && body="$body,"
body="$body\"ports\":[$ports]"
fi
body="$body}"
fi
api_request "POST" "/images/$image_id/spawn" "$body"
}
image_clone() {
local image_id="$1"
local name="${2:-}"
local body="{}"
if [ -n "$name" ]; then
body="{\"name\":\"$name\"}"
fi
api_request "POST" "/images/$image_id/clone" "$body"
}
# ============================================================================
# PaaS Logs Functions (2)
# ============================================================================
logs_fetch() {
local source="${1:-all}"
local lines="${2:-100}"
local since="${3:-1h}"
local grep_pattern="${4:-}"
local body
body=$(jq -n --arg source "$source" --argjson lines "$lines" --arg since "$since" --arg grep "$grep_pattern" \
'{source: $source, lines: $lines, since: $since, grep: (if $grep != "" then $grep else null end)}')
api_request "POST" "/paas/logs" "$body"
}
logs_stream() {
set_error "logs_stream requires async support"
return 1
}
# ============================================================================
# Key Validation
# ============================================================================
validate_keys() {
local creds
creds=$(get_credentials) || return 1
local pk="${creds%%:*}"
local sk="${creds#*:}"
local timestamp
timestamp=$(date +%s)
local signature=""
if [ -n "$sk" ]; then
signature=$(hmac_sign "$sk" "$timestamp:POST:/keys/validate:")
fi
curl -s -X POST "$PORTAL_BASE/keys/validate" \
-H "Authorization: Bearer $pk" \
-H "Content-Type: application/json" \
${signature:+-H "X-Timestamp: $timestamp" -H "X-Signature: $signature"}
}
health_check() {
local result
result=$(curl -s -o /dev/null -w '%{http_code}' "$API_BASE/health")
[ "$result" = "200" ]
}
# ============================================================================
# CLI Implementation
# ============================================================================
run_file() {
local file="$1"
if [ ! -f "$file" ]; then
echo -e "${RED}Error: File not found: $file${RESET}" >&2
exit 1
fi
local code
code=$(cat "$file")
local lang
lang=$(detect_language "$file") || {
echo -e "${RED}Error: Cannot detect language${RESET}" >&2
exit 1
}
local result
result=$(execute "$lang" "$code")
if ! echo "$result" | jq -e . >/dev/null 2>&1; then
echo -e "${RED}Error: Failed to execute${RESET}" >&2
exit 1
fi
echo "$result" | jq -r '.stdout // empty'
echo "$result" | jq -r '.stderr // empty' >&2
local exit_code
exit_code=$(echo "$result" | jq -r '.exit_code // 0')
exit "${exit_code:-0}"
}
cmd_languages() {
local json_output=0
for arg in "$@"; do
if [ "$arg" = "--json" ]; then
json_output=1
fi
done
local result
result=$(get_languages)
if [ "$json_output" -eq 1 ]; then
echo "$result" | jq -c '.'
else
echo "$result" | jq -r '.[]'
fi
}
cmd_key() {
local extend=0
for arg in "$@"; do
if [ "$arg" = "--extend" ]; then
extend=1
fi
done
local result
result=$(validate_keys)
local pk
pk=$(echo "$result" | jq -r '.public_key // empty')
if [ "$extend" -eq 1 ] && [ -n "$pk" ]; then
local url="$PORTAL_BASE/keys/extend?pk=$pk"
echo -e "${BLUE}Opening browser to extend key...${RESET}"
xdg-open "$url" 2>/dev/null || open "$url" 2>/dev/null &
return
fi
if echo "$result" | jq -e '.expired' >/dev/null 2>&1; then
echo -e "${RED}Expired${RESET}"
echo "Public Key: $pk"
echo "Tier: $(echo "$result" | jq -r '.tier // "N/A"')"
echo -e "${YELLOW}To renew: Visit $PORTAL_BASE/keys/extend${RESET}"
exit 1
fi
echo -e "${GREEN}Valid${RESET}"
echo "Public Key: $pk"
echo "Tier: $(echo "$result" | jq -r '.tier // "N/A"')"
echo "Status: $(echo "$result" | jq -r '.status // "N/A"')"
echo "Expires: $(echo "$result" | jq -r '.expires_at // "N/A"')"
echo "Time Remaining: $(echo "$result" | jq -r '.time_remaining // "N/A"')"
}
cmd_session() {
local action=""
local target=""
while [ $# -gt 0 ]; do
case "$1" in
--list|-l) action="list" ;;
--info) action="info"; target="$2"; shift ;;
--kill) action="kill"; target="$2"; shift ;;
--freeze) action="freeze"; target="$2"; shift ;;
--unfreeze) action="unfreeze"; target="$2"; shift ;;
--boost) action="boost"; target="$2"; shift ;;
--unboost) action="unboost"; target="$2"; shift ;;
*) ;;
esac
shift
done
case "$action" in
list)
local result
result=$(session_list)
echo "$result" | jq -r '.sessions[] | "\(.id)\t\(.shell)\t\(.status)\t\(.created_at)"' 2>/dev/null || echo "No sessions"
;;
info)
session_get "$target" | jq .
;;
kill)
session_destroy "$target"
echo -e "${GREEN}Session terminated: $target${RESET}"
;;
freeze)
session_freeze "$target"
echo -e "${GREEN}Session frozen: $target${RESET}"
;;
unfreeze)
session_unfreeze "$target"
echo -e "${GREEN}Session unfreezing: $target${RESET}"
;;
boost)
session_boost "$target"
echo -e "${GREEN}Session boosted: $target${RESET}"
;;
unboost)
session_unboost "$target"
echo -e "${GREEN}Session unboosted: $target${RESET}"
;;
*)
echo "Usage: bash un.sh session --list|--info ID|--kill ID|--freeze ID|--unfreeze ID" >&2
exit 1
;;
esac
}
cmd_service() {
local action=""
local target=""
local name=""
local ports=""
local bootstrap=""
local bootstrap_file=""
local -a files=()
while [ $# -gt 0 ]; do
case "$1" in
--list|-l) action="list" ;;
--info) action="info"; target="$2"; shift ;;
--destroy) action="destroy"; target="$2"; shift ;;
--freeze) action="freeze"; target="$2"; shift ;;
--unfreeze) action="unfreeze"; target="$2"; shift ;;
--lock) action="lock"; target="$2"; shift ;;
--unlock) action="unlock"; target="$2"; shift ;;
--logs) action="logs"; target="$2"; shift ;;
--redeploy) action="redeploy"; target="$2"; shift ;;
--name) name="$2"; shift ;;
--ports) ports="$2"; shift ;;
--bootstrap) bootstrap="$2"; shift ;;
--bootstrap-file) bootstrap_file="$2"; shift ;;
-f|--file) files+=("$2"); shift ;;
*) ;;
esac
shift
done
# Build input_files JSON from -f args
local input_files_json=""
if [ ${#files[@]} -gt 0 ]; then
input_files_json="["
local first=1
for fpath in "${files[@]}"; do
if [ ! -f "$fpath" ]; then
echo -e "${RED}Error: File not found: $fpath${RESET}" >&2
exit 1
fi
local encoded
encoded=$(base64 -w0 "$fpath" 2>/dev/null || base64 "$fpath" 2>/dev/null)
local fname
fname=$(basename "$fpath")
[ "$first" -eq 0 ] && input_files_json="$input_files_json,"
input_files_json="$input_files_json{\"filename\":$(echo "$fname" | jq -Rs .),\"content\":$(echo "$encoded" | jq -Rs .)}"
first=0
done
input_files_json="$input_files_json]"
fi
# Resolve bootstrap from file if provided
if [ -n "$bootstrap_file" ]; then
if [ ! -f "$bootstrap_file" ]; then
echo -e "${RED}Error: Bootstrap file not found: $bootstrap_file${RESET}" >&2
exit 1
fi
bootstrap=$(cat "$bootstrap_file")
fi
case "$action" in
list)
local result
result=$(service_list)
echo "$result" | jq -r '.services[] | "\(.id)\t\(.name)\t\(.status)\t\(.ports | join(","))"' 2>/dev/null || echo "No services"
;;
info)
service_get "$target" | jq .
;;
destroy)
service_destroy "$target"
echo -e "${GREEN}Service destroyed: $target${RESET}"
;;
freeze)
service_freeze "$target"
echo -e "${GREEN}Service frozen: $target${RESET}"
;;
unfreeze)
service_unfreeze "$target"
echo -e "${GREEN}Service unfreezing: $target${RESET}"
;;
lock)
service_lock "$target"
echo -e "${GREEN}Service locked: $target${RESET}"
;;
unlock)
service_unlock "$target"
echo -e "${GREEN}Service unlocked: $target${RESET}"
;;
logs)
local result
result=$(service_logs "$target")
echo "$result" | jq -r '.logs // empty'
;;
redeploy)
local result
result=$(service_redeploy "$target" "$bootstrap" "$input_files_json")
echo -e "${GREEN}Service redeployed: $target${RESET}"
;;
*)
if [ -n "$name" ]; then
local result
result=$(service_create "$name" "$ports" "$bootstrap" "$input_files_json")
echo -e "${GREEN}Service created${RESET}"
echo "$result" | jq -r '"ID: \(.id)\nName: \(.name)"'
else
echo "Usage: bash un.sh service --list|--info ID|--destroy ID|--redeploy ID|--name NAME" >&2
exit 1
fi
;;
esac
}
cmd_snapshot() {
local action=""
local target=""
while [ $# -gt 0 ]; do
case "$1" in
--list|-l) action="list" ;;
--info) action="info"; target="$2"; shift ;;
--delete) action="delete"; target="$2"; shift ;;
--restore) action="restore"; target="$2"; shift ;;
--lock) action="lock"; target="$2"; shift ;;
--unlock) action="unlock"; target="$2"; shift ;;
*) ;;
esac
shift
done
case "$action" in
list)
local result
result=$(snapshot_list)
echo "$result" | jq -r '.snapshots[] | "\(.id)\t\(.name)\t\(.type)\t\(.created_at)"' 2>/dev/null || echo "No snapshots"
;;
info)
snapshot_get "$target" | jq .
;;
delete)
snapshot_delete "$target"
echo -e "${GREEN}Snapshot deleted: $target${RESET}"
;;
restore)
snapshot_restore "$target"
echo -e "${GREEN}Snapshot restored${RESET}"
;;
lock)
snapshot_lock "$target"
echo -e "${GREEN}Snapshot locked: $target${RESET}"
;;
unlock)
snapshot_unlock "$target"
echo -e "${GREEN}Snapshot unlocked: $target${RESET}"
;;
*)
echo "Usage: bash un.sh snapshot --list|--info ID|--delete ID|--restore ID" >&2
exit 1
;;
esac
}
cmd_image() {
local action=""
local target=""
local source_type=""
local visibility_mode=""
local name=""
local ports=""
while [ $# -gt 0 ]; do
case "$1" in
--list|-l) action="list" ;;
--info) action="info"; target="$2"; shift ;;
--delete) action="delete"; target="$2"; shift ;;
--lock) action="lock"; target="$2"; shift ;;
--unlock) action="unlock"; target="$2"; shift ;;
--publish) action="publish"; target="$2"; shift ;;
--source-type) source_type="$2"; shift ;;
--visibility) action="visibility"; target="$2"; visibility_mode="$3"; shift 2 ;;
--spawn) action="spawn"; target="$2"; shift ;;
--clone) action="clone"; target="$2"; shift ;;
--name) name="$2"; shift ;;
--ports) ports="$2"; shift ;;
*) ;;
esac
shift
done
case "$action" in
list)
local result
result=$(image_list)
echo "$result" | jq -r '.images[] | "\(.id)\t\(.name // "-")\t\(.visibility)\t\(.created_at)"' 2>/dev/null || echo "No images"
;;
info)
image_get "$target" | jq .
;;
delete)
image_delete "$target"
echo -e "${GREEN}Image deleted: $target${RESET}"
;;
lock)
image_lock "$target"
echo -e "${GREEN}Image locked: $target${RESET}"
;;
unlock)
image_unlock "$target"
echo -e "${GREEN}Image unlocked: $target${RESET}"
;;
publish)
if [ -z "$source_type" ]; then
echo -e "${RED}Error: --source-type required${RESET}" >&2
exit 1
fi
local result
result=$(image_publish "$source_type" "$target" "$name")
echo -e "${GREEN}Image published${RESET}"
echo "$result" | jq -r '"Image ID: \(.id)"'
;;
visibility)
image_set_visibility "$target" "$visibility_mode"
echo -e "${GREEN}Visibility set to $visibility_mode${RESET}"
;;
spawn)
local result
result=$(image_spawn "$target" "$name" "$ports")
echo -e "${GREEN}Service spawned from image${RESET}"
echo "$result" | jq -r '"Service ID: \(.id)"'
;;
clone)
local result
result=$(image_clone "$target" "$name")
echo -e "${GREEN}Image cloned${RESET}"
echo "$result" | jq -r '"Image ID: \(.id)"'
;;
*)
echo "Usage: bash un.sh image --list|--info ID|--delete ID|--publish ID|--spawn ID|--clone ID" >&2
exit 1
;;
esac
}
show_help() {
cat << 'EOF'
Unsandbox CLI - Execute code in secure sandboxes
Usage:
bash un.sh [options] <source_file>
bash un.sh -s <language> '<code>'
bash un.sh session [options]
bash un.sh service [options]
bash un.sh snapshot [options]
bash un.sh image [options]
bash un.sh languages [--json]
bash un.sh key [--extend]
Commands:
languages List available programming languages
key Validate API key
session Manage interactive sessions
service Manage persistent services
snapshot Manage snapshots
image Manage images
Session options:
--list List all sessions
--info ID Get session details
--kill ID Terminate session
--freeze ID Freeze session
--unfreeze ID Unfreeze session
--boost ID Boost session CPU
--unboost ID Unboost session CPU
Service options:
--list List all services
--info ID Get service details
--destroy ID Destroy service
--freeze ID Freeze service
--unfreeze ID Unfreeze service
--lock ID Lock service
--unlock ID Unlock service
--logs ID Get service logs
--redeploy ID Re-run bootstrap (supports -f, --bootstrap)
--name NAME Create service with name
--ports PORTS Service ports (comma-separated)
--bootstrap CMD Bootstrap command
--bootstrap-file FILE Bootstrap from file
-f, --file FILE Add input file (can repeat)
Snapshot options:
--list List all snapshots
--info ID Get snapshot details
--delete ID Delete snapshot
--restore ID Restore from snapshot
--lock ID Lock snapshot
--unlock ID Unlock snapshot
Image options:
--list List all images
--info ID Get image details
--delete ID Delete image
--lock ID Lock image
--unlock ID Unlock image
--publish ID Publish from service/snapshot (needs --source-type)
--source-type TYPE Source type (service or snapshot)
--visibility ID MODE Set visibility (private|unlisted|public)
--spawn ID Spawn service from image
--clone ID Clone image
--name NAME Name for spawned service or cloned image
--ports PORTS Ports for spawned service
Environment:
UNSANDBOX_PUBLIC_KEY API public key
UNSANDBOX_SECRET_KEY API secret key
EOF
}
# CLI entry point
if [ "${BASH_SOURCE[0]}" = "$0" ]; then
if [ $# -eq 0 ]; then
show_help
exit 1
fi
# Pre-scan for --account N before dispatching
_args=("$@")
_new_args=()
_i=0
while [ $_i -lt ${#_args[@]} ]; do
if [ "${_args[$_i]}" = "--account" ]; then
_i=$((_i + 1))
ACCOUNT_INDEX="${_args[$_i]}"
else
_new_args+=("${_args[$_i]}")
fi
_i=$((_i + 1))
done
set -- "${_new_args[@]+"${_new_args[@]}"}"
case "$1" in
languages)
shift
cmd_languages "$@"
;;
key)
shift
cmd_key "$@"
;;
session)
shift
cmd_session "$@"
;;
service)
shift
cmd_service "$@"
;;
snapshot)
shift
cmd_snapshot "$@"
;;
image)
shift
cmd_image "$@"
;;
-s)
lang="$2"
code="$3"
if [ -z "$lang" ] || [ -z "$code" ]; then
echo -e "${RED}Error: -s requires language and code${RESET}" >&2
exit 1
fi
result=$(execute "$lang" "$code")
echo "$result" | jq -r '.stdout // empty'
echo "$result" | jq -r '.stderr // empty' >&2
exit_code=$(echo "$result" | jq -r '.exit_code // 0')
exit "${exit_code:-0}"
;;
--help|-h)
show_help
;;
*)
run_file "$1"
;;
esac
fi
Aclaraciones de documentación
Dependencias
C Binary (un1) — requiere libcurl y libwebsockets:
sudo apt install build-essential libcurl4-openssl-dev libwebsockets-dev
wget unsandbox.com/downloads/un.c && gcc -O2 -o un un.c -lcurl -lwebsocketsImplementaciones de SDK — la mayoría usa solo stdlib (Ruby, JS, Go, etc). Algunos requieren dependencias mínimas:
pip install requests # PythonEjecutar Código
Ejecutar un script
./un hello.py
./un app.js
./un main.rsCon variables de entorno
./un -e DEBUG=1 -e NAME=World script.pyCon Archivos de Entrada (teleportar archivos a sandbox)
./un -f data.csv -f config.json process.pyObtener binario compilado
./un -a -o ./bin main.cSesiones Interactivas
Iniciar Sesión de Shell
# Default bash shell
./un session
# Choose your shell
./un session --shell zsh
./un session --shell fish
# Jump into a REPL
./un session --shell python3
./un session --shell node
./un session --shell juliaSesión con Acceso a Red
./un session -n semitrustedAuditoría de Sesión (grabación completa de terminal)
# Record everything (including vim, interactive programs)
./un session --audit -o ./logs
# Replay session later
zcat session.log*.gz | less -RRecopilar Artefactos de la Sesión
# Files in /tmp/artifacts/ are collected on exit
./un session -a -o ./outputsPersistencia de Sesión (tmux/screen)
# Default: session terminates on disconnect (clean exit)
./un session
# With tmux: session persists, can reconnect later
./un session --tmux
# Press Ctrl+b then d to detach
# With screen: alternative multiplexer
./un session --screen
# Press Ctrl+a then d to detachListar Trabajos Activos
./un session --list
# Output:
# Active sessions: 2
#
# SESSION ID CONTAINER SHELL TTL STATUS
# abc123... unsb-vm-12345 python3 45m30s active
# def456... unsb-vm-67890 bash 1h2m activeReconectar a Sesión Existente
# Reconnect by container name (requires --tmux or --screen)
./un session --attach unsb-vm-12345
# Use exit to terminate session, or detach to keep it runningTerminar una Sesión
./un session --kill unsb-vm-12345Shells y REPLs Disponibles
Shells: bash, dash, sh, zsh, fish, ksh, tcsh, csh, elvish, xonsh, ash
REPLs: python3, bpython, ipython # Python
node # JavaScript
ruby, irb # Ruby
lua # Lua
php # PHP
perl # Perl
guile, scheme # Scheme
ghci # Haskell
erl, iex # Erlang/Elixir
sbcl, clisp # Common Lisp
r # R
julia # Julia
clojure # ClojureGestión de Claves API
Verificar Estado del Pago
# Check if your API key is valid
./un key
# Output:
# Valid: key expires in 30 daysExtender Clave Expirada
# Open the portal to extend an expired key
./un key --extend
# This opens the unsandbox.com portal where you can
# add more credits to extend your key's expirationAutenticación
Las credenciales se cargan en orden de prioridad (mayor primero):
# 1. CLI flags (highest priority)
./un -p unsb-pk-xxxx -k unsb-sk-xxxxx script.py
# 2. Environment variables
export UNSANDBOX_PUBLIC_KEY=unsb-pk-xxxx-xxxx-xxxx-xxxx
export UNSANDBOX_SECRET_KEY=unsb-sk-xxxxx-xxxxx-xxxxx-xxxxx
./un script.py
# 3. Config file (lowest priority)
# ~/.unsandbox/accounts.csv format: public_key,secret_key
mkdir -p ~/.unsandbox
echo "unsb-pk-xxxx-xxxx-xxxx-xxxx,unsb-sk-xxxxx-xxxxx-xxxxx-xxxxx" > ~/.unsandbox/accounts.csv
./un script.pyLas solicitudes se firman con HMAC-SHA256. El token bearer contiene solo la clave pública; la clave secreta calcula la firma (nunca se transmite).
Escalado de Recursos
Establecer Conteo de vCPU
# Default: 1 vCPU, 2GB RAM
./un script.py
# Scale up: 4 vCPUs, 8GB RAM
./un -v 4 script.py
# Maximum: 8 vCPUs, 16GB RAM
./un --vcpu 8 heavy_compute.pyImpulso de Sesión en Vivo
# Boost a running session to 2 vCPU, 4GB RAM
./un session --boost sandbox-abc
# Boost to specific vCPU count (4 vCPU, 8GB RAM)
./un session --boost sandbox-abc --boost-vcpu 4
# Return to base resources (1 vCPU, 2GB RAM)
./un session --unboost sandbox-abcCongelar/Descongelar Sesión
Congelar y Descongelar Sesiones
# Freeze a session (stop billing, preserve state)
./un session --freeze sandbox-abc
# Unfreeze a frozen session
./un session --unfreeze sandbox-abc
# Note: Requires --tmux or --screen for persistenceServicios Persistentes
Crear un Servicio
# Web server with ports
./un service --name web --ports 80,443 --bootstrap "python -m http.server 80"
# With custom domains
./un service --name blog --ports 8000 --domains blog.example.com
# Game server with SRV records
./un service --name mc --type minecraft --bootstrap ./setup.sh
# Deploy app tarball with bootstrap script
./un service --name app --ports 8000 -f app.tar.gz --bootstrap-file ./setup.sh
# setup.sh: cd /tmp && tar xzf app.tar.gz && ./app/start.shAdministrar Servicios
# List all services
./un service --list
# Get service details
./un service --info abc123
# View bootstrap logs
./un service --logs abc123
./un service --tail abc123 # last 9000 lines
# Execute command in running service
./un service --execute abc123 'journalctl -u myapp -n 50'
# Dump bootstrap script (for migrations)
./un service --dump-bootstrap abc123
./un service --dump-bootstrap abc123 backup.sh
# Freeze/unfreeze service
./un service --freeze abc123
./un service --unfreeze abc123
# Service settings (auto-wake, freeze page display)
./un service --auto-unfreeze abc123 # enable auto-wake on HTTP
./un service --no-auto-unfreeze abc123 # disable auto-wake
./un service --show-freeze-page abc123 # show HTML payment page (default)
./un service --no-show-freeze-page abc123 # return JSON error instead
# Redeploy with new bootstrap
./un service --redeploy abc123 --bootstrap ./new-setup.sh
# Destroy service
./un service --destroy abc123Instantáneas
Listar Instantáneas
./un snapshot --list
# Output:
# Snapshots: 3
#
# SNAPSHOT ID NAME SOURCE SIZE CREATED
# unsb-snapshot-a1b2-c3d4-e5f6-g7h8 before-upgrade session 512 MB 2h ago
# unsb-snapshot-i9j0-k1l2-m3n4-o5p6 stable-v1.0 service 1.2 GB 1d agoCrear Instantánea de Sesión
# Snapshot with name
./un session --snapshot unsb-vm-12345 --name "before upgrade"
# Quick snapshot (auto-generated name)
./un session --snapshot unsb-vm-12345Crear Instantánea de Servicio
# Standard snapshot (pauses container briefly)
./un service --snapshot unsb-service-abc123 --name "stable v1.0"
# Hot snapshot (no pause, may be inconsistent)
./un service --snapshot unsb-service-abc123 --hotRestaurar desde Instantánea
# Restore session from snapshot
./un session --restore unsb-snapshot-a1b2-c3d4-e5f6-g7h8
# Restore service from snapshot
./un service --restore unsb-snapshot-i9j0-k1l2-m3n4-o5p6Eliminar Instantánea
./un snapshot --delete unsb-snapshot-a1b2-c3d4-e5f6-g7h8Imágenes
Las imágenes son imágenes de contenedores independientes y transferibles que sobreviven a la eliminación del contenedor. A diferencia de las instantáneas (que permanecen con su contenedor), las imágenes pueden compartirse con otros usuarios, transferirse entre claves API o hacerse públicas en el marketplace.
Listar imágenes
# List all images (owned + shared + public)
./un image --list
# List only your images
./un image --list owned
# List images shared with you
./un image --list shared
# List public marketplace images
./un image --list public
# Get image details
./un image --info unsb-image-xxxx-xxxx-xxxx-xxxxPublicar imágenes
# Publish from a stopped or frozen service
./un image --publish-service unsb-service-abc123 \
--name "My App v1.0" --description "Production snapshot"
# Publish from a snapshot
./un image --publish-snapshot unsb-snapshot-xxxx-xxxx-xxxx-xxxx \
--name "Stable Release"
# Note: Cannot publish from running containers - stop or freeze firstCrear servicios desde imágenes
# Spawn a new service from an image
./un image --spawn unsb-image-xxxx-xxxx-xxxx-xxxx \
--name new-service --ports 80,443
# Clone an image (creates a copy you own)
./un image --clone unsb-image-xxxx-xxxx-xxxx-xxxxProtección de imágenes
# Lock image to prevent accidental deletion
./un image --lock unsb-image-xxxx-xxxx-xxxx-xxxx
# Unlock image to allow deletion
./un image --unlock unsb-image-xxxx-xxxx-xxxx-xxxx
# Delete image (must be unlocked)
./un image --delete unsb-image-xxxx-xxxx-xxxx-xxxxVisibilidad y compartir
# Set visibility level
./un image --visibility unsb-image-xxxx-xxxx-xxxx-xxxx private # owner only (default)
./un image --visibility unsb-image-xxxx-xxxx-xxxx-xxxx unlisted # can be shared
./un image --visibility unsb-image-xxxx-xxxx-xxxx-xxxx public # marketplace
# Share with specific user
./un image --grant unsb-image-xxxx-xxxx-xxxx-xxxx \
--key unsb-pk-friend-friend-friend-friend
# Revoke access
./un image --revoke unsb-image-xxxx-xxxx-xxxx-xxxx \
--key unsb-pk-friend-friend-friend-friend
# List who has access
./un image --trusted unsb-image-xxxx-xxxx-xxxx-xxxxTransferir propiedad
# Transfer image to another API key
./un image --transfer unsb-image-xxxx-xxxx-xxxx-xxxx \
--to unsb-pk-newowner-newowner-newowner-newownerReferencia de Uso
Usage: ./un [options] <source_file>
./un session [options]
./un service [options]
./un snapshot [options]
./un image [options]
./un key
Commands:
(default) Execute source file in sandbox
session Open interactive shell/REPL session
service Manage persistent services
snapshot Manage container snapshots
image Manage container images (publish, share, transfer)
key Check API key validity and expiration
Options:
-e KEY=VALUE Set environment variable (can use multiple times)
-f FILE Add input file (can use multiple times)
-a Return and save artifacts from /tmp/artifacts/
-o DIR Output directory for artifacts (default: current dir)
-p KEY Public key (or set UNSANDBOX_PUBLIC_KEY env var)
-k KEY Secret key (or set UNSANDBOX_SECRET_KEY env var)
-n MODE Network mode: zerotrust (default) or semitrusted
-v N, --vcpu N vCPU count 1-8, each vCPU gets 2GB RAM (default: 1)
-y Skip confirmation for large uploads (>1GB)
-h Show this help
Authentication (priority order):
1. -p and -k flags (public and secret key)
2. UNSANDBOX_PUBLIC_KEY + UNSANDBOX_SECRET_KEY env vars
3. ~/.unsandbox/accounts.csv (format: public_key,secret_key per line)
Session options:
-s, --shell SHELL Shell/REPL to use (default: bash)
-l, --list List active sessions
--attach ID Reconnect to existing session (ID or container name)
--kill ID Terminate a session (ID or container name)
--freeze ID Freeze a session (requires --tmux/--screen)
--unfreeze ID Unfreeze a frozen session
--boost ID Boost session resources (2 vCPU, 4GB RAM)
--boost-vcpu N Specify vCPU count for boost (1-8)
--unboost ID Return to base resources
--audit Record full session for auditing
--tmux Enable session persistence with tmux (allows reconnect)
--screen Enable session persistence with screen (allows reconnect)
Service options:
--name NAME Service name (creates new service)
--ports PORTS Comma-separated ports (e.g., 80,443)
--domains DOMAINS Custom domains (e.g., example.com,www.example.com)
--type TYPE Service type: minecraft, mumble, teamspeak, source, tcp, udp
--bootstrap CMD Bootstrap command/file/URL to run on startup
-f FILE Upload file to /tmp/ (can use multiple times)
-l, --list List all services
--info ID Get service details
--tail ID Get last 9000 lines of bootstrap logs
--logs ID Get all bootstrap logs
--freeze ID Freeze a service
--unfreeze ID Unfreeze a service
--auto-unfreeze ID Enable auto-wake on HTTP request
--no-auto-unfreeze ID Disable auto-wake on HTTP request
--show-freeze-page ID Show HTML payment page when frozen (default)
--no-show-freeze-page ID Return JSON error when frozen
--destroy ID Destroy a service
--redeploy ID Re-run bootstrap script (requires --bootstrap)
--execute ID CMD Run a command in a running service
--dump-bootstrap ID [FILE] Dump bootstrap script (for migrations)
--snapshot ID Create snapshot of session or service
--snapshot-name User-friendly name for snapshot
--hot Create snapshot without pausing (may be inconsistent)
--restore ID Restore session/service from snapshot ID
Snapshot options:
-l, --list List all snapshots
--info ID Get snapshot details
--delete ID Delete a snapshot permanently
Image options:
-l, --list [owned|shared|public] List images (all, owned, shared, or public)
--info ID Get image details
--publish-service ID Publish image from stopped/frozen service
--publish-snapshot ID Publish image from snapshot
--name NAME Name for published image
--description DESC Description for published image
--delete ID Delete image (must be unlocked)
--clone ID Clone image (creates copy you own)
--spawn ID Create service from image (requires --name)
--lock ID Lock image to prevent deletion
--unlock ID Unlock image to allow deletion
--visibility ID LEVEL Set visibility (private|unlisted|public)
--grant ID --key KEY Grant access to another API key
--revoke ID --key KEY Revoke access from API key
--transfer ID --to KEY Transfer ownership to API key
--trusted ID List API keys with access
Key options:
(no options) Check API key validity
--extend Open portal to extend an expired key
Examples:
./un script.py # execute Python script
./un -e DEBUG=1 script.py # with environment variable
./un -f data.csv process.py # with input file
./un -a -o ./bin main.c # save compiled artifacts
./un -v 4 heavy.py # with 4 vCPUs, 8GB RAM
./un session # interactive bash session
./un session --tmux # bash with reconnect support
./un session --list # list active sessions
./un session --attach unsb-vm-12345 # reconnect to session
./un session --kill unsb-vm-12345 # terminate a session
./un session --freeze unsb-vm-12345 # freeze session
./un session --unfreeze unsb-vm-12345 # unfreeze session
./un session --boost unsb-vm-12345 # boost resources
./un session --unboost unsb-vm-12345 # return to base
./un session --shell python3 # Python REPL
./un session --shell node # Node.js REPL
./un session -n semitrusted # session with network access
./un session --audit -o ./logs # record session for auditing
./un service --name web --ports 80 # create web service
./un service --list # list all services
./un service --logs abc123 # view bootstrap logs
./un key # check API key
./un key --extend # extend expired key
./un snapshot --list # list all snapshots
./un session --snapshot unsb-vm-123 # snapshot a session
./un service --snapshot abc123 # snapshot a service
./un session --restore unsb-snapshot-xxxx # restore from snapshot
./un image --list # list all images
./un image --list owned # list your images
./un image --publish-service abc # publish image from service
./un image --spawn img123 --name x # create service from image
./un image --grant img --key pk # share image with userCLI Inception
El CLI UN ha sido implementado en 42 lenguajes de programación, demostrando que la API de unsandbox puede ser accedida desde virtualmente cualquier entorno.
Licencia
DOMINIO PÚBLICO - SIN LICENCIA, SIN GARANTÍA
Este es software gratuito de dominio público para el bien público de una permacomputadora
alojada en permacomputer.com - una computadora siempre activa del pueblo, para el pueblo. Una
que es duradera, fácil de reparar y distribuida como agua del grifo para la inteligencia de
aprendizaje automático.
La permacomputadora es infraestructura de propiedad comunitaria optimizada en torno a cuatro valores:
VERDAD - Primeros principios, matemáticas & ciencia, código abierto distribuido libremente
LIBERTAD - Asociaciones voluntarias, libertad de la tiranía y el control corporativo
ARMONÍA - Mínimo desperdicio, sistemas auto-renovables con diversas conexiones prósperas
AMOR - Sé tú mismo sin dañar a otros, cooperación a través de la ley natural
Este software contribuye a esa visión al permitir la ejecución de código a través de más de 42
lenguajes de programación mediante una interfaz unificada, accesible para todos. El código es
semillas para brotar en cualquier tecnología abandonada.
Aprende más: https://www.permacomputer.com
Cualquiera es libre de copiar, modificar, publicar, usar, compilar, vender o distribuir este
software, ya sea en forma de código fuente o como binario compilado, para cualquier propósito,
comercial o no comercial, y por cualquier medio.
SIN GARANTÍA. EL SOFTWARE SE PROPORCIONA "TAL CUAL" SIN GARANTÍA DE NINGÚN TIPO.
Dicho esto, el estrato de membrana digital de nuestra permacomputadora ejecuta continuamente
pruebas unitarias, de integración y funcionales en todo su propio software - con nuestra
permacomputadora monitoreándose a sí misma, reparándose a sí misma, con mínima guía humana
en el ciclo. Nuestros agentes hacen su mejor esfuerzo.
Copyright 2025 TimeHexOn & foxhop & russell@unturf
https://www.timehexon.com
https://www.foxhop.net
https://www.unturf.com/software