CLI
Cliente de linha de comando rápido para execução de código e sessões interativas. Mais de 42 linguagens, mais de 30 shells/REPLs.
Documentação Oficial OpenAPI Swagger ↗Início Rápido — Scheme
# Download + setup
curl -O https://git.unturf.com/engineering/unturf/un-inception/-/raw/main/clients/scheme/sync/src/un.scm && chmod +x un.scm && ln -sf un.scm un
export UNSANDBOX_PUBLIC_KEY="unsb-pk-xxxx-xxxx-xxxx-xxxx"
export UNSANDBOX_SECRET_KEY="unsb-sk-xxxxx-xxxxx-xxxxx-xxxxx"
# Run code
./un script.schemeBaixar
Guia de Instalação →Características:
- 42+ languages - Python, JS, Go, Rust, C++, Java...
- Sessions - 30+ shells/REPLs, tmux persistence
- Files - Upload files, collect artifacts
- Services - Persistent containers with domains
- Snapshots - Point-in-time backups
- Images - Publish, share, transfer
Início Rápido de Integração ⚡
Adicione superpoderes unsandbox ao seu app Scheme existente:
1
Baixar
curl -O https://git.unturf.com/engineering/unturf/un-inception/-/raw/main/clients/scheme/sync/src/un.scm
2
Obter uma Chave API
# Option A: Environment variables
export UNSANDBOX_PUBLIC_KEY="unsb-pk-xxxx-xxxx-xxxx-xxxx"
export UNSANDBOX_SECRET_KEY="unsb-sk-xxxxx-xxxxx-xxxxx-xxxxx"
# Option B: Config file (persistent)
mkdir -p ~/.unsandbox
echo "unsb-pk-xxxx-xxxx-xxxx-xxxx,unsb-sk-xxxxx-xxxxx-xxxxx-xxxxx" > ~/.unsandbox/accounts.csv
3
Hello World
;; In your Scheme app:
(load "un.scm")
(let ((result (execute-code "scheme" "(display \"Hello from Scheme running on unsandbox!\") (newline)")))
(display (assoc-ref result 'stdout))) ; Hello from Scheme running on unsandbox!
Demo cooldown: s
stdout:
JSON Response:
4
Run
guile myapp.scm
MD5:
a5fb19d9ffdac6c7759304d8ddf9b346
SHA256: 91a55281eb7df88a8ebfb52dbfe0d1cf59d3787dccbd3138c62b9eb80932d6b4
#!/usr/bin/env guile
;; PUBLIC DOMAIN - NO LICENSE, NO WARRANTY
;;
;; This is free public domain software for the public good of a permacomputer hosted
;; at permacomputer.com - an always-on computer by the people, for the people. One
;; which is durable, easy to repair, and distributed like tap water for machine
;; learning intelligence.
;;
;; The permacomputer is community-owned infrastructure optimized around four values:
;;
;; TRUTH - First principles, math & science, open source code freely distributed
;; FREEDOM - Voluntary partnerships, freedom from tyranny & corporate control
;; HARMONY - Minimal waste, self-renewing systems with diverse thriving connections
;; LOVE - Be yourself without hurting others, cooperation through natural law
;;
;; This software contributes to that vision by enabling code execution across 42+
;; programming languages through a unified interface, accessible to all. Code is
;; seeds to sprout on any abandoned technology.
;;
;; Learn more: https://www.permacomputer.com
;;
;; Anyone is free to copy, modify, publish, use, compile, sell, or distribute this
;; software, either in source code form or as a compiled binary, for any purpose,
;; commercial or non-commercial, and by any means.
;;
;; NO WARRANTY. THE SOFTWARE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND.
;;
;; That said, our permacomputer's digital membrane stratum continuously runs unit,
;; integration, and functional tests on all of it's own software - with our
;; permacomputer monitoring itself, repairing itself, with minimal human in the
;; loop guidance. Our agents do their best.
;;
;; Copyright 2025 TimeHexOn & foxhop & russell@unturf
;; https://www.timehexon.com
;; https://www.foxhop.net
;; https://www.unturf.com/software
#!/usr/bin/env guile
!#
;;; Scheme UN CLI - Unsandbox CLI Client
;;;
;;; Full-featured CLI matching un.py capabilities
;;; Uses curl for HTTP (no external dependencies)
(use-modules (ice-9 popen)
(ice-9 rdelim)
(ice-9 format))
(define blue "\x1b[34m")
(define red "\x1b[31m")
(define green "\x1b[32m")
(define yellow "\x1b[33m")
(define reset "\x1b[0m")
(define portal-base "https://unsandbox.com")
(define languages-cache-ttl 3600) ;; 1 hour in seconds
(define ext-map
'((".hs" . "haskell") (".ml" . "ocaml") (".clj" . "clojure")
(".scm" . "scheme") (".lisp" . "commonlisp") (".erl" . "erlang")
(".ex" . "elixir") (".exs" . "elixir") (".py" . "python")
(".js" . "javascript") (".ts" . "typescript") (".rb" . "ruby")
(".go" . "go") (".rs" . "rust") (".c" . "c") (".cpp" . "cpp")
(".cc" . "cpp") (".java" . "java") (".kt" . "kotlin")
(".cs" . "csharp") (".fs" . "fsharp") (".jl" . "julia")
(".r" . "r") (".cr" . "crystal") (".d" . "d") (".nim" . "nim")
(".zig" . "zig") (".v" . "v") (".dart" . "dart") (".sh" . "bash")
(".pl" . "perl") (".lua" . "lua") (".php" . "php")))
(define (get-extension filename)
(let ((dot-pos (string-rindex filename #\.)))
(if dot-pos (substring filename dot-pos) "")))
(define (escape-json s)
(string-append
(string-concatenate
(map (lambda (c)
(cond
((char=? c #\\) "\\\\")
((char=? c #\") "\\\"")
((char=? c #\newline) "\\n")
((char=? c #\return) "\\r")
((char=? c #\tab) "\\t")
(else (string c))))
(string->list s)))))
(define (read-file filename)
(call-with-input-file filename
(lambda (port)
(let loop ((lines '()))
(let ((line (read-line port)))
(if (eof-object? line)
(string-join (reverse lines) "\n")
(loop (cons line lines))))))))
(define (base64-encode-file filename)
"Base64 encode a file using shell command"
(let* ((cmd (format #f "base64 -w0 ~a" filename))
(port (open-input-pipe cmd))
(result (let loop ((chars '()))
(let ((char (read-char port)))
(if (eof-object? char)
(list->string (reverse chars))
(loop (cons char chars)))))))
(close-pipe port)
(string-trim-both result)))
(define (build-input-files-json files)
"Build input_files JSON array from list of filenames"
(if (null? files)
""
(let ((entries (map (lambda (f)
(let* ((basename (basename f))
(content (base64-encode-file f)))
(format #f "{\"filename\":\"~a\",\"content\":\"~a\"}"
basename content)))
files)))
(format #f ",\"input_files\":[~a]" (string-join entries ",")))))
(define (write-temp-file data)
(let ((tmp-file (format #f "/tmp/un_scm_~a.json" (random 999999))))
(call-with-output-file tmp-file
(lambda (port) (display data port)))
tmp-file))
(define (curl-post api-key endpoint json-data)
(let* ((tmp-file (write-temp-file json-data))
(keys (get-api-keys))
(public-key (car keys))
(secret-key (cadr keys))
(auth-headers (build-auth-headers public-key secret-key "POST" endpoint json-data))
(cmd (string-append "curl -s -X POST https://api.unsandbox.com" endpoint
" -H 'Content-Type: application/json' "
(string-join auth-headers " ")
" -d @" tmp-file))
(port (open-input-pipe cmd))
(output (let loop ((lines '()))
(let ((line (read-line port)))
(if (eof-object? line)
(string-join (reverse lines) "\n")
(loop (cons line lines)))))))
(close-pipe port)
(delete-file tmp-file)
;; Check for clock drift errors
(when (and (string-contains output "timestamp")
(or (string-contains output "401")
(string-contains output "expired")
(string-contains output "invalid")))
(format (current-error-port) "~aError: Request timestamp expired (must be within 5 minutes of server time)~a\n" red reset)
(format (current-error-port) "~aYour computer's clock may have drifted.~a\n" yellow reset)
(format (current-error-port) "~aCheck your system time and sync with NTP if needed:~a\n" yellow reset)
(format (current-error-port) "~a Linux: sudo ntpdate -s time.nist.gov~a\n" yellow reset)
(format (current-error-port) "~a macOS: sudo sntp -sS time.apple.com~a\n" yellow reset)
(format (current-error-port) "~a Windows: w32tm /resync~a\n" yellow reset)
(exit 1))
output))
(define (curl-get api-key endpoint)
(let* ((keys (get-api-keys))
(public-key (car keys))
(secret-key (cadr keys))
(auth-headers (build-auth-headers public-key secret-key "GET" endpoint ""))
(cmd (string-append "curl -s https://api.unsandbox.com" endpoint
" " (string-join auth-headers " ")))
(port (open-input-pipe cmd))
(output (let loop ((lines '()))
(let ((line (read-line port)))
(if (eof-object? line)
(string-join (reverse lines) "\n")
(loop (cons line lines)))))))
(close-pipe port)
;; Check for clock drift errors
(when (and (string-contains output "timestamp")
(or (string-contains output "401")
(string-contains output "expired")
(string-contains output "invalid")))
(format (current-error-port) "~aError: Request timestamp expired (must be within 5 minutes of server time)~a\n" red reset)
(format (current-error-port) "~aYour computer's clock may have drifted.~a\n" yellow reset)
(format (current-error-port) "~aCheck your system time and sync with NTP if needed:~a\n" yellow reset)
(format (current-error-port) "~a Linux: sudo ntpdate -s time.nist.gov~a\n" yellow reset)
(format (current-error-port) "~a macOS: sudo sntp -sS time.apple.com~a\n" yellow reset)
(format (current-error-port) "~a Windows: w32tm /resync~a\n" yellow reset)
(exit 1))
output))
(define (curl-delete api-key endpoint)
(let* ((keys (get-api-keys))
(public-key (car keys))
(secret-key (cadr keys))
(auth-headers (build-auth-headers public-key secret-key "DELETE" endpoint ""))
(cmd (string-append "curl -s -X DELETE https://api.unsandbox.com" endpoint
" " (string-join auth-headers " ")))
(port (open-input-pipe cmd))
(output (let loop ((lines '()))
(let ((line (read-line port)))
(if (eof-object? line)
(string-join (reverse lines) "\n")
(loop (cons line lines)))))))
(close-pipe port)
;; Check for clock drift errors
(when (and (string-contains output "timestamp")
(or (string-contains output "401")
(string-contains output "expired")
(string-contains output "invalid")))
(format (current-error-port) "~aError: Request timestamp expired (must be within 5 minutes of server time)~a\n" red reset)
(format (current-error-port) "~aYour computer's clock may have drifted.~a\n" yellow reset)
(format (current-error-port) "~aCheck your system time and sync with NTP if needed:~a\n" yellow reset)
(format (current-error-port) "~a Linux: sudo ntpdate -s time.nist.gov~a\n" yellow reset)
(format (current-error-port) "~a macOS: sudo sntp -sS time.apple.com~a\n" yellow reset)
(format (current-error-port) "~a Windows: w32tm /resync~a\n" yellow reset)
(exit 1))
output))
(define (parse-http-response-with-code response)
"Parse response to extract body and HTTP status code from curl -w output"
(let* ((lines (string-split response #\newline))
(last-line (if (null? lines) "" (car (last-pair lines))))
(code (string->number (string-trim-both last-line))))
(if code
(cons (string-join (reverse (cdr (reverse lines))) "\n") code)
(cons response 0))))
(define (handle-sudo-challenge response-data public-key secret-key method endpoint body)
"Handle 428 sudo OTP challenge - prompts user for OTP and retries"
(let ((challenge-id (json-extract-string response-data "challenge_id")))
(format (current-error-port) "~aConfirmation required. Check your email for a one-time code.~a\n" yellow reset)
(display "Enter OTP: " (current-error-port))
(force-output (current-error-port))
(let ((otp (string-trim-both (read-line))))
(when (string=? otp "")
(display "Error: Operation cancelled\n" (current-error-port))
(exit 1))
;; Retry the request with sudo headers
(let* ((auth-headers (build-auth-headers public-key secret-key method endpoint (or body "")))
(sudo-otp-header (format #f "-H 'X-Sudo-OTP: ~a'" otp))
(sudo-challenge-header (format #f "-H 'X-Sudo-Challenge: ~a'" (or challenge-id "")))
(method-flag (cond
((equal? method "DELETE") "-X DELETE")
((equal? method "POST") "-X POST")
(else (format #f "-X ~a" method))))
(content-header (if body "-H 'Content-Type: application/json'" ""))
(body-part (if body (format #f "-d '~a'" body) ""))
(cmd (string-append "curl -s -w '\\n%{http_code}' " method-flag
" https://api.unsandbox.com" endpoint
" " (string-join auth-headers " ")
" " sudo-otp-header
" " sudo-challenge-header
" " content-header
" " body-part))
(port (open-input-pipe cmd))
(output (let loop ((lines '()))
(let ((line (read-line port)))
(if (eof-object? line)
(string-join (reverse lines) "\n")
(loop (cons line lines)))))))
(close-pipe port)
(let* ((parsed (parse-http-response-with-code output))
(resp-body (car parsed))
(http-code (cdr parsed)))
(if (and (>= http-code 200) (< http-code 300))
(cons #t resp-body)
(begin
(format (current-error-port) "~aError: HTTP ~a~a\n" red http-code reset)
(format (current-error-port) "~a\n" resp-body)
(cons #f resp-body))))))))
(define (curl-delete-with-sudo api-key endpoint)
"DELETE request that handles 428 sudo OTP challenge"
(let* ((keys (get-api-keys))
(public-key (car keys))
(secret-key (cadr keys))
(auth-headers (build-auth-headers public-key secret-key "DELETE" endpoint ""))
(cmd (string-append "curl -s -w '\\n%{http_code}' -X DELETE https://api.unsandbox.com" endpoint
" " (string-join auth-headers " ")))
(port (open-input-pipe cmd))
(output (let loop ((lines '()))
(let ((line (read-line port)))
(if (eof-object? line)
(string-join (reverse lines) "\n")
(loop (cons line lines)))))))
(close-pipe port)
(let* ((parsed (parse-http-response-with-code output))
(body (car parsed))
(http-code (cdr parsed)))
;; Check for clock drift
(when (and (string-contains body "timestamp")
(or (string-contains body "401")
(string-contains body "expired")
(string-contains body "invalid")))
(format (current-error-port) "~aError: Request timestamp expired~a\n" red reset)
(exit 1))
(if (= http-code 428)
(handle-sudo-challenge body public-key secret-key "DELETE" endpoint #f)
(cons (and (>= http-code 200) (< http-code 300)) body)))))
(define (curl-post-with-sudo api-key endpoint json-data)
"POST request that handles 428 sudo OTP challenge"
(let* ((tmp-file (write-temp-file json-data))
(keys (get-api-keys))
(public-key (car keys))
(secret-key (cadr keys))
(auth-headers (build-auth-headers public-key secret-key "POST" endpoint json-data))
(cmd (string-append "curl -s -w '\\n%{http_code}' -X POST https://api.unsandbox.com" endpoint
" -H 'Content-Type: application/json' "
(string-join auth-headers " ")
" -d @" tmp-file))
(port (open-input-pipe cmd))
(output (let loop ((lines '()))
(let ((line (read-line port)))
(if (eof-object? line)
(string-join (reverse lines) "\n")
(loop (cons line lines)))))))
(close-pipe port)
(delete-file tmp-file)
(let* ((parsed (parse-http-response-with-code output))
(body (car parsed))
(http-code (cdr parsed)))
;; Check for clock drift
(when (and (string-contains body "timestamp")
(or (string-contains body "401")
(string-contains body "expired")
(string-contains body "invalid")))
(format (current-error-port) "~aError: Request timestamp expired~a\n" red reset)
(exit 1))
(if (= http-code 428)
(handle-sudo-challenge body public-key secret-key "POST" endpoint json-data)
(cons (and (>= http-code 200) (< http-code 300)) body)))))
(define (curl-patch api-key endpoint json-data)
(let* ((tmp-file (write-temp-file json-data))
(keys (get-api-keys))
(public-key (car keys))
(secret-key (cadr keys))
(auth-headers (build-auth-headers public-key secret-key "PATCH" endpoint json-data))
(cmd (string-append "curl -s -X PATCH https://api.unsandbox.com" endpoint
" -H 'Content-Type: application/json' "
(string-join auth-headers " ")
" -d @" tmp-file))
(port (open-input-pipe cmd))
(output (let loop ((lines '()))
(let ((line (read-line port)))
(if (eof-object? line)
(string-join (reverse lines) "\n")
(loop (cons line lines)))))))
(close-pipe port)
(delete-file tmp-file)
;; Check for clock drift errors
(when (and (string-contains output "timestamp")
(or (string-contains output "401")
(string-contains output "expired")
(string-contains output "invalid")))
(format (current-error-port) "~aError: Request timestamp expired (must be within 5 minutes of server time)~a\n" red reset)
(format (current-error-port) "~aYour computer's clock may have drifted.~a\n" yellow reset)
(format (current-error-port) "~aCheck your system time and sync with NTP if needed:~a\n" yellow reset)
(format (current-error-port) "~a Linux: sudo ntpdate -s time.nist.gov~a\n" yellow reset)
(format (current-error-port) "~a macOS: sudo sntp -sS time.apple.com~a\n" yellow reset)
(format (current-error-port) "~a Windows: w32tm /resync~a\n" yellow reset)
(exit 1))
output))
(define (curl-post-portal api-key endpoint json-data)
(let* ((tmp-file (write-temp-file json-data))
(keys (get-api-keys))
(public-key (car keys))
(secret-key (cadr keys))
(auth-headers (build-auth-headers public-key secret-key "POST" endpoint json-data))
(cmd (string-append "curl -s -X POST " portal-base endpoint
" -H 'Content-Type: application/json' "
(string-join auth-headers " ")
" -d @" tmp-file))
(port (open-input-pipe cmd))
(output (let loop ((lines '()))
(let ((line (read-line port)))
(if (eof-object? line)
(string-join (reverse lines) "\n")
(loop (cons line lines)))))))
(close-pipe port)
(delete-file tmp-file)
;; Check for clock drift errors
(when (and (string-contains output "timestamp")
(or (string-contains output "401")
(string-contains output "expired")
(string-contains output "invalid")))
(format (current-error-port) "~aError: Request timestamp expired (must be within 5 minutes of server time)~a\n" red reset)
(format (current-error-port) "~aYour computer's clock may have drifted.~a\n" yellow reset)
(format (current-error-port) "~aCheck your system time and sync with NTP if needed:~a\n" yellow reset)
(format (current-error-port) "~a Linux: sudo ntpdate -s time.nist.gov~a\n" yellow reset)
(format (current-error-port) "~a macOS: sudo sntp -sS time.apple.com~a\n" yellow reset)
(format (current-error-port) "~a Windows: w32tm /resync~a\n" yellow reset)
(exit 1))
output))
(define (curl-put-text api-key endpoint content)
"PUT request with text/plain content type (for vault)"
(let* ((tmp-file (write-temp-file content))
(keys (get-api-keys))
(public-key (car keys))
(secret-key (cadr keys))
(auth-headers (build-auth-headers public-key secret-key "PUT" endpoint content))
(cmd (string-append "curl -s -X PUT https://api.unsandbox.com" endpoint
" -H 'Content-Type: text/plain' "
(string-join auth-headers " ")
" --data-binary @" tmp-file))
(port (open-input-pipe cmd))
(output (let loop ((lines '()))
(let ((line (read-line port)))
(if (eof-object? line)
(string-join (reverse lines) "\n")
(loop (cons line lines)))))))
(close-pipe port)
(delete-file tmp-file)
output))
(define (build-env-content env-vars env-file)
"Build env content from -e args and --env-file"
(let* ((var-lines env-vars)
(file-lines (if (and env-file (file-exists? env-file))
(let ((content (read-file env-file)))
(filter (lambda (line)
(let ((trimmed (string-trim-both line)))
(and (> (string-length trimmed) 0)
(not (char=? (string-ref trimmed 0) #\#)))))
(string-split content #\newline)))
'())))
(string-join (append var-lines file-lines) "\n")))
;; Service vault functions
(define (service-env-status api-key service-id)
(display (curl-get api-key (format #f "/services/~a/env" service-id)))
(newline))
(define (service-env-set api-key service-id content)
(display (curl-put-text api-key (format #f "/services/~a/env" service-id) content))
(newline))
(define (service-env-export api-key service-id)
(let* ((response (curl-post api-key (format #f "/services/~a/env/export" service-id) "{}"))
(content (json-extract-string response "content")))
(when content (display content))))
(define (service-env-delete api-key service-id)
(curl-delete api-key (format #f "/services/~a/env" service-id))
(format #t "~aVault deleted for: ~a~a\n" green service-id reset))
(define *account-index* #f)
(define (load-accounts-csv path index)
"Load row INDEX from a CSV file of public_key,secret_key pairs.
Skips blank lines and lines starting with #. Returns (list pk sk) or #f."
(if (not (access? path R_OK))
#f
(catch #t
(lambda ()
(let ((port (open-input-file path))
(rows '()))
(let loop ()
(let ((line (read-line port)))
(when (not (eof-object? line))
(let ((trimmed (string-trim-both line)))
(when (and (> (string-length trimmed) 0)
(not (char=? (string-ref trimmed 0) #\#)))
(let ((comma-pos (string-index trimmed #\,)))
(when comma-pos
(set! rows (append rows
(list (list
(string-trim-both (substring trimmed 0 comma-pos))
(string-trim-both (substring trimmed (1+ comma-pos)))))))))))
(loop))))
(close-input-port port)
(if (< index (length rows))
(list-ref rows index)
#f)))
(lambda (key . args) #f))))
(define (get-api-keys)
(let ((public-key (getenv "UNSANDBOX_PUBLIC_KEY"))
(secret-key (getenv "UNSANDBOX_SECRET_KEY"))
(api-key (getenv "UNSANDBOX_API_KEY"))
(home (getenv "HOME")))
(cond
;; --account N: load row N from accounts.csv, bypasses env vars
((not (eq? *account-index* #f))
(let ((result (or (load-accounts-csv
(string-append home "/.unsandbox/accounts.csv")
*account-index*)
(load-accounts-csv "./accounts.csv" *account-index*))))
(or result
(begin
(format (current-error-port) "Error: account ~a not found in accounts.csv\n" *account-index*)
(exit 1)))))
;; env vars
((and public-key secret-key) (list public-key secret-key))
(api-key (list api-key #f))
;; accounts.csv fallback (row 0 or UNSANDBOX_ACCOUNT env var)
(else
(let* ((acc-env (getenv "UNSANDBOX_ACCOUNT"))
(row-idx (if acc-env
(catch #t
(lambda () (string->number acc-env))
(lambda (key . args) 0))
0))
(row-idx (if (number? row-idx) (inexact->exact row-idx) 0))
(result (or (load-accounts-csv
(string-append home "/.unsandbox/accounts.csv")
row-idx)
(load-accounts-csv "./accounts.csv" row-idx))))
(or result
(begin
(display "Error: UNSANDBOX_PUBLIC_KEY and UNSANDBOX_SECRET_KEY not set (or UNSANDBOX_API_KEY for backwards compat)\n" (current-error-port))
(exit 1)))))))
(define (get-api-key)
(car (get-api-keys)))
(define (hmac-sha256 secret message)
"Compute HMAC-SHA256 using openssl command"
(let* ((cmd (format #f "echo -n '~a' | openssl dgst -sha256 -hmac '~a' | awk '{print $2}'"
(string-append (list->string (map (lambda (c) (if (char=? c #\') #\space c)) (string->list message))))
(string-append (list->string (map (lambda (c) (if (char=? c #\') #\space c)) (string->list secret))))))
(port (open-input-pipe cmd))
(result (read-line port)))
(close-pipe port)
(string-trim-both result)))
(define (make-signature secret-key timestamp method path body)
(let ((message (format #f "~a:~a:~a:~a" timestamp method path body)))
(hmac-sha256 secret-key message)))
(define (build-auth-headers public-key secret-key method path body)
(if secret-key
(let* ((timestamp (number->string (quotient (current-time) 1)))
(signature (make-signature secret-key timestamp method path body)))
(list "-H" (format #f "Authorization: Bearer ~a" public-key)
"-H" (format #f "X-Timestamp: ~a" timestamp)
"-H" (format #f "X-Signature: ~a" signature)))
(list "-H" (format #f "Authorization: Bearer ~a" public-key))))
(define (json-extract-string json key)
"Extract string value for key from JSON (simple parser)"
(let* ((pattern (format #f "\"~a\":\\s*\"([^\"]*)" key))
(cmd (format #f "echo '~a' | grep -oP '~a' | sed 's/\"~a\":\\s*\"//'" json pattern key))
(port (open-input-pipe cmd))
(result (read-line port)))
(close-pipe port)
(if (eof-object? result) #f result)))
(define (json-has-field json field)
"Check if JSON contains a field"
(string-contains json (format #f "\"~a\"" field)))
(define (open-browser url)
"Open URL in browser using xdg-open"
(let ((cmd (format #f "xdg-open '~a' 2>/dev/null &" url)))
(system cmd)))
(define (json-extract-array json key)
"Extract array values for key from JSON (simple parser)"
;; This extracts items from a JSON array like "languages":["python","javascript",...]
(let* ((pattern (format #f "\"~a\":\\s*\\[([^\\]]*)\\]" key))
(cmd (format #f "echo '~a' | grep -oP '\"~a\":\\s*\\[[^]]*\\]' | sed 's/\"~a\":\\s*\\[//' | sed 's/\\]//' | tr ',' '\\n' | sed 's/\"//g' | sed 's/^ *//' | sed 's/ *$//'" json key key))
(port (open-input-pipe cmd))
(result (let loop ((lines '()))
(let ((line (read-line port)))
(if (eof-object? line)
(reverse lines)
(loop (cons (string-trim-both line) lines)))))))
(close-pipe port)
(filter (lambda (s) (> (string-length s) 0)) result)))
(define (get-languages-cache-path)
"Get the path to the languages cache file"
(let ((home (getenv "HOME")))
(string-append home "/.unsandbox/languages.json")))
(define (load-languages-cache)
"Load languages from cache if valid"
(let ((cache-path (get-languages-cache-path)))
(if (file-exists? cache-path)
(catch #t
(lambda ()
(let* ((content (read-file cache-path))
(timestamp-str (json-extract-string content "timestamp")))
(if timestamp-str
(let* ((cache-time (string->number timestamp-str))
(now (current-time)))
(if (< (- now cache-time) languages-cache-ttl)
content
#f))
#f)))
(lambda args #f))
#f)))
(define (save-languages-cache languages-json)
"Save languages to cache"
(let* ((cache-path (get-languages-cache-path))
(cache-dir (dirname cache-path)))
;; Create directory if it doesn't exist
(catch #t
(lambda () (mkdir cache-dir))
(lambda args #f))
(let* ((timestamp (current-time))
(cache-content (format #f "{\"languages\":~a,\"timestamp\":~a}" languages-json timestamp)))
(call-with-output-file cache-path
(lambda (port) (display cache-content port))))))
(define (languages-cmd json-output)
(let* ((api-key (get-api-key))
;; Try cache first
(cached (load-languages-cache))
(response (if cached
cached
(let ((resp (curl-get api-key "/languages")))
;; Extract and cache the languages array
(let ((langs (json-extract-array resp "languages")))
(when (not (null? langs))
(let ((languages-json (string-append "[" (string-join (map (lambda (l) (format #f "\"~a\"" l)) langs) ",") "]")))
(save-languages-cache languages-json))))
resp)))
(langs (json-extract-array response "languages")))
(if json-output
;; JSON array output
(format #t "[~a]\n" (string-join (map (lambda (l) (format #f "\"~a\"" l)) langs) ","))
;; One language per line (default)
(for-each (lambda (lang)
(display lang)
(newline))
langs))))
(define (validate-key-cmd extend)
(let* ((api-key (get-api-key))
(response (curl-post-portal api-key "/keys/validate" "{}"))
(status (json-extract-string response "status"))
(public-key (json-extract-string response "public_key"))
(tier (json-extract-string response "tier"))
(valid-through (json-extract-string response "valid_through_datetime"))
(valid-for (json-extract-string response "valid_for_human"))
(rate-limit (json-extract-string response "rate_per_minute"))
(burst (json-extract-string response "burst"))
(concurrency (json-extract-string response "concurrency"))
(expired-at (json-extract-string response "expired_at_datetime")))
(cond
;; Valid key
((and status (string=? status "valid"))
(format #t "~aValid~a\n\n" green reset)
(when public-key (format #t "Public Key: ~a\n" public-key))
(when tier (format #t "Tier: ~a\n" tier))
(format #t "Status: valid\n")
(when valid-through (format #t "Expires: ~a\n" valid-through))
(when valid-for (format #t "Time Remaining: ~a\n" valid-for))
(when rate-limit (format #t "Rate Limit: ~a/min\n" rate-limit))
(when burst (format #t "Burst: ~a\n" burst))
(when concurrency (format #t "Concurrency: ~a\n" concurrency))
(when extend
(if public-key
(let ((url (format #f "~a/keys/extend?pk=~a" portal-base public-key)))
(format #t "~aOpening browser to extend key...~a\n" blue reset)
(open-browser url))
(format #t "~aError: No public_key in response~a\n" red reset))))
;; Expired key
((and status (string=? status "expired"))
(format #t "~aExpired~a\n\n" red reset)
(when public-key (format #t "Public Key: ~a\n" public-key))
(when tier (format #t "Tier: ~a\n" tier))
(when expired-at (format #t "Expired: ~a\n" expired-at))
(format #t "\n~aTo renew:~a Visit ~a/keys/extend\n" yellow reset portal-base)
(when extend
(if public-key
(let ((url (format #f "~a/keys/extend?pk=~a" portal-base public-key)))
(format #t "~aOpening browser...~a\n" blue reset)
(open-browser url))
(format #t "~aError: No public_key in response~a\n" red reset))))
;; Invalid or error
(else
(format #t "~aInvalid~a\n" red reset)
(display response)
(newline)))))
(define (execute-cmd file)
(let* ((api-key (get-api-key))
(ext (get-extension file))
(language (assoc-ref ext-map ext)))
(when (not language)
(format (current-error-port) "Error: Unknown extension: ~a\n" ext)
(exit 1))
(let* ((code (read-file file))
(json (format #f "{\"language\":\"~a\",\"code\":\"~a\"}"
language (escape-json code)))
(response (curl-post api-key "/execute" json)))
(display response)
(newline))))
(define (session-cmd action id shell input-files)
(let ((api-key (get-api-key)))
(cond
((equal? action "list")
(display (curl-get api-key "/sessions"))
(newline))
((equal? action "kill")
(curl-delete api-key (format #f "/sessions/~a" id))
(format #t "~aSession terminated: ~a~a\n" green id reset))
(else
(let* ((sh (or shell "bash"))
(input-files-json (build-input-files-json input-files))
(json (format #f "{\"shell\":\"~a\"~a}" sh input-files-json))
(response (curl-post api-key "/sessions" json)))
(format #t "~aSession created (WebSocket required)~a\n" yellow reset)
(display response)
(newline))))))
(define (service-cmd action id name ports bootstrap bootstrap-file type input-files env-vars env-file vcpu . rest)
(define unfreeze-on-demand (and (pair? rest) (car rest)))
(let ((api-key (get-api-key)))
(cond
((equal? action "list")
(display (curl-get api-key "/services"))
(newline))
((equal? action "info")
(display (curl-get api-key (format #f "/services/~a" id)))
(newline))
((equal? action "logs")
(display (curl-get api-key (format #f "/services/~a/logs" id)))
(newline))
((equal? action "sleep")
(curl-post api-key (format #f "/services/~a/freeze" id) "{}")
(format #t "~aService frozen: ~a~a\n" green id reset))
((equal? action "wake")
(curl-post api-key (format #f "/services/~a/unfreeze" id) "{}")
(format #t "~aService unfreezing: ~a~a\n" green id reset))
((equal? action "destroy")
(let ((result (curl-delete-with-sudo api-key (format #f "/services/~a" id))))
(if (car result)
(format #t "~aService destroyed: ~a~a\n" green id reset)
(begin
(format (current-error-port) "~aError destroying service~a\n" red reset)
(exit 1)))))
((equal? action "resize")
(if (and vcpu (>= vcpu 1) (<= vcpu 8))
(let* ((json (format #f "{\"vcpu\":~a}" vcpu))
(ram (* vcpu 2)))
(curl-patch api-key (format #f "/services/~a" id) json)
(format #t "~aService resized to ~a vCPU, ~a GB RAM~a\n" green vcpu ram reset))
(begin
(format (current-error-port) "~aError: --resize requires --vcpu N (1-8)~a\n" red reset)
(exit 1))))
((equal? action "set-unfreeze-on-demand")
(if bootstrap ;; reusing bootstrap as the enabled value
(let* ((enabled (or (equal? bootstrap "true") (equal? bootstrap "1")))
(enabled-str (if enabled "true" "false"))
(msg (if enabled "enabled" "disabled"))
(json (format #f "{\"unfreeze_on_demand\":~a}" enabled-str)))
(curl-patch api-key (format #f "/services/~a" id) json)
(format #t "~aUnfreeze-on-demand ~a for service: ~a~a\n" green msg id reset))
(begin
(format (current-error-port) "~aError: --set-unfreeze-on-demand requires true/false or 1/0~a\n" red reset)
(exit 1))))
((equal? action "env-status")
(service-env-status api-key id))
((equal? action "env-set")
(let ((content (build-env-content env-vars env-file)))
(if (> (string-length content) 0)
(service-env-set api-key id content)
(begin
(format (current-error-port) "~aError: No environment variables to set~a\n" red reset)
(exit 1)))))
((equal? action "env-export")
(service-env-export api-key id))
((equal? action "env-delete")
(service-env-delete api-key id))
((equal? action "execute")
(when (and id bootstrap)
(let* ((json (format #f "{\"command\":\"~a\"}" (escape-json bootstrap)))
(response (curl-post api-key (format #f "/services/~a/execute" id) json))
(stdout-val (json-extract-string response "stdout")))
(when stdout-val
(display (format #f "~a~a~a" blue stdout-val reset))))))
((equal? action "dump-bootstrap")
(when id
(format (current-error-port) "Fetching bootstrap script from ~a...\n" id)
(let* ((json "{\"command\":\"cat /tmp/bootstrap.sh\"}")
(response (curl-post api-key (format #f "/services/~a/execute" id) json))
(stdout-val (json-extract-string response "stdout")))
(if stdout-val
(if type
(begin
(call-with-output-file type
(lambda (port) (display stdout-val port)))
(system (format #f "chmod 755 ~a" type))
(format #t "Bootstrap saved to ~a\n" type))
(display stdout-val))
(begin
(format (current-error-port) "~aError: Failed to fetch bootstrap (service not running or no bootstrap file)~a\n" red reset)
(exit 1))))))
((and (equal? action "create") name)
(let* ((ports-json (if ports (format #f ",\"ports\":[~a]" ports) ""))
(bootstrap-json (if bootstrap (format #f ",\"bootstrap\":\"~a\"" (escape-json bootstrap)) ""))
(bootstrap-content-json (if bootstrap-file
(format #f ",\"bootstrap_content\":\"~a\"" (escape-json (read-file bootstrap-file)))
""))
(type-json (if type (format #f ",\"service_type\":\"~a\"" type) ""))
(unfreeze-on-demand-json (if unfreeze-on-demand ",\"unfreeze_on_demand\":true" ""))
(input-files-json (build-input-files-json input-files))
(json (format #f "{\"name\":\"~a\"~a~a~a~a~a~a}" name ports-json bootstrap-json bootstrap-content-json type-json unfreeze-on-demand-json input-files-json))
(response (curl-post api-key "/services" json))
(service-id (json-extract-string response "id")))
(format #t "~aService created~a\n" green reset)
(display response)
(newline)
;; Auto-set vault if env vars were provided
(let ((env-content (build-env-content env-vars env-file)))
(when (and service-id (> (string-length env-content) 0))
(format #t "~aSetting vault for service...~a\n" yellow reset)
(service-env-set api-key service-id env-content)))))
(else
(display "Error: --name required to create service, or use env subcommand\n" (current-error-port))
(exit 1)))))
;; Image access management functions
(define (image-grant-access id trusted-key)
(let* ((api-key (get-api-key))
(json (format #f "{\"trusted_api_key\":\"~a\"}" trusted-key)))
(curl-post api-key (format #f "/images/~a/grant-access" id) json)
(format #t "~aAccess granted to: ~a~a\n" green trusted-key reset)))
(define (image-revoke-access id trusted-key)
(let* ((api-key (get-api-key))
(json (format #f "{\"trusted_api_key\":\"~a\"}" trusted-key)))
(curl-post api-key (format #f "/images/~a/revoke-access" id) json)
(format #t "~aAccess revoked from: ~a~a\n" green trusted-key reset)))
(define (image-list-trusted id)
(let ((api-key (get-api-key)))
(display (curl-get api-key (format #f "/images/~a/trusted" id)))
(newline)))
(define (image-transfer id to-key)
(let* ((api-key (get-api-key))
(json (format #f "{\"to_api_key\":\"~a\"}" to-key)))
(curl-post api-key (format #f "/images/~a/transfer" id) json)
(format #t "~aImage transferred to: ~a~a\n" green to-key reset)))
;; Snapshot functions
(define (snapshot-list)
(let ((api-key (get-api-key)))
(display (curl-get api-key "/snapshots"))
(newline)))
(define (snapshot-info id)
(let ((api-key (get-api-key)))
(display (curl-get api-key (format #f "/snapshots/~a" id)))
(newline)))
(define (snapshot-session session-id name hot)
(let* ((api-key (get-api-key))
(name-json (if name (format #f ",\"name\":\"~a\"" (escape-json name)) ""))
(hot-json (if hot ",\"hot\":true" ""))
(json (format #f "{\"session_id\":\"~a\"~a~a}" session-id name-json hot-json)))
(format #t "~aSnapshot created~a\n" green reset)
(display (curl-post api-key "/snapshots" json))
(newline)))
(define (snapshot-service-create service-id name hot)
(let* ((api-key (get-api-key))
(name-json (if name (format #f ",\"name\":\"~a\"" (escape-json name)) ""))
(hot-json (if hot ",\"hot\":true" ""))
(json (format #f "{\"service_id\":\"~a\"~a~a}" service-id name-json hot-json)))
(format #t "~aSnapshot created~a\n" green reset)
(display (curl-post api-key "/snapshots" json))
(newline)))
(define (snapshot-restore id)
(let ((api-key (get-api-key)))
(curl-post api-key (format #f "/snapshots/~a/restore" id) "{}")
(format #t "~aSnapshot restored: ~a~a\n" green id reset)))
(define (snapshot-delete id)
(let* ((api-key (get-api-key))
(result (curl-delete-with-sudo api-key (format #f "/snapshots/~a" id))))
(if (car result)
(format #t "~aSnapshot deleted: ~a~a\n" green id reset)
(begin
(format (current-error-port) "~aError deleting snapshot~a\n" red reset)
(exit 1)))))
(define (snapshot-lock id)
(let ((api-key (get-api-key)))
(curl-post api-key (format #f "/snapshots/~a/lock" id) "{}")
(format #t "~aSnapshot locked: ~a~a\n" green id reset)))
(define (snapshot-unlock id)
(let* ((api-key (get-api-key))
(result (curl-post-with-sudo api-key (format #f "/snapshots/~a/unlock" id) "{}")))
(if (car result)
(format #t "~aSnapshot unlocked: ~a~a\n" green id reset)
(begin
(format (current-error-port) "~aError unlocking snapshot~a\n" red reset)
(exit 1)))))
(define (snapshot-clone id clone-type name ports shell)
(let* ((api-key (get-api-key))
(type-json (format #f "\"clone_type\":\"~a\"" clone-type))
(name-json (if name (format #f ",\"name\":\"~a\"" (escape-json name)) ""))
(ports-json (if ports (format #f ",\"ports\":[~a]" ports) ""))
(shell-json (if shell (format #f ",\"shell\":\"~a\"" shell) ""))
(json (format #f "{~a~a~a~a}" type-json name-json ports-json shell-json)))
(format #t "~aSnapshot cloned~a\n" green reset)
(display (curl-post api-key (format #f "/snapshots/~a/clone" id) json))
(newline)))
(define (snapshot-cmd action id name ports shell hot)
(cond
((equal? action "list") (snapshot-list))
((equal? action "info") (snapshot-info id))
((equal? action "session") (snapshot-session id name hot))
((equal? action "service") (snapshot-service-create id name hot))
((equal? action "restore") (snapshot-restore id))
((equal? action "delete") (snapshot-delete id))
((equal? action "lock") (snapshot-lock id))
((equal? action "unlock") (snapshot-unlock id))
((equal? action "clone") (snapshot-clone id "session" name ports shell))
(else
(display "Error: Unknown snapshot action\n" (current-error-port))
(exit 1))))
;; Session additional functions
(define (session-info id)
(let ((api-key (get-api-key)))
(display (curl-get api-key (format #f "/sessions/~a" id)))
(newline)))
(define (session-boost id vcpu)
(let* ((api-key (get-api-key))
(json (format #f "{\"vcpu\":~a}" vcpu)))
(curl-patch api-key (format #f "/sessions/~a" id) json)
(format #t "~aSession boosted to ~a vCPU~a\n" green vcpu reset)))
(define (session-unboost id)
(let* ((api-key (get-api-key))
(json "{\"vcpu\":1}"))
(curl-patch api-key (format #f "/sessions/~a" id) json)
(format #t "~aSession unboosted to 1 vCPU~a\n" green reset)))
(define (session-execute id command)
(let* ((api-key (get-api-key))
(json (format #f "{\"command\":\"~a\"}" (escape-json command)))
(response (curl-post api-key (format #f "/sessions/~a/execute" id) json))
(stdout-val (json-extract-string response "stdout")))
(when stdout-val
(display (format #f "~a~a~a" blue stdout-val reset)))))
;; Service additional functions
(define (service-lock id)
(let ((api-key (get-api-key)))
(curl-post api-key (format #f "/services/~a/lock" id) "{}")
(format #t "~aService locked: ~a~a\n" green id reset)))
(define (service-unlock id)
(let* ((api-key (get-api-key))
(result (curl-post-with-sudo api-key (format #f "/services/~a/unlock" id) "{}")))
(if (car result)
(format #t "~aService unlocked: ~a~a\n" green id reset)
(begin
(format (current-error-port) "~aError unlocking service~a\n" red reset)
(exit 1)))))
(define (service-redeploy id bootstrap)
(let* ((api-key (get-api-key))
(json (if bootstrap
(format #f "{\"bootstrap\":\"~a\"}" (escape-json bootstrap))
"{}")))
(curl-post api-key (format #f "/services/~a/redeploy" id) json)
(format #t "~aService redeploying: ~a~a\n" green id reset)))
;; PaaS logs functions
(define (logs-fetch source lines since grep-pattern)
(let* ((api-key (get-api-key))
(params (format #f "?source=~a&lines=~a~a~a"
(or source "all")
(or lines 100)
(if since (format #f "&since=~a" since) "")
(if grep-pattern (format #f "&grep=~a" grep-pattern) ""))))
(display (curl-get api-key (format #f "/logs~a" params)))
(newline)))
;; Utility functions
(define (health-check)
(let* ((cmd "curl -s https://api.unsandbox.com/health")
(port (open-input-pipe cmd))
(result (let loop ((chars '()))
(let ((char (read-char port)))
(if (eof-object? char)
(list->string (reverse chars))
(loop (cons char chars)))))))
(close-pipe port)
(display result)
(newline)
(string-contains result "ok")))
(define (sdk-version)
"4.2.0")
(define (image-cmd action id source-type visibility-mode name ports)
(let ((api-key (get-api-key)))
(cond
((equal? action "list")
(let* ((response (curl-get api-key "/images"))
(images (json-extract-array response "images")))
(if (null? images)
(display "No images found\n")
(begin
(format #t "~a~a ~a ~a ~a~a\n" blue "ID" "Name" "Visibility" "Created" reset)
(display response)
(newline)))))
((equal? action "info")
(display (curl-get api-key (format #f "/images/~a" id)))
(newline))
((equal? action "delete")
(let ((result (curl-delete-with-sudo api-key (format #f "/images/~a" id))))
(if (car result)
(format #t "~aImage deleted successfully~a\n" green reset)
(begin
(format (current-error-port) "~aError deleting image~a\n" red reset)
(exit 1)))))
((equal? action "lock")
(curl-post api-key (format #f "/images/~a/lock" id) "{}")
(format #t "~aImage locked successfully~a\n" green reset))
((equal? action "unlock")
(let ((result (curl-post-with-sudo api-key (format #f "/images/~a/unlock" id) "{}")))
(if (car result)
(format #t "~aImage unlocked successfully~a\n" green reset)
(begin
(format (current-error-port) "~aError unlocking image~a\n" red reset)
(exit 1)))))
((equal? action "publish")
(if (not source-type)
(begin
(format (current-error-port) "~aError: --source-type required for --publish (service or snapshot)~a\n" red reset)
(exit 1))
(let* ((name-json (if name (format #f ",\"name\":\"~a\"" (escape-json name)) ""))
(json (format #f "{\"source_type\":\"~a\",\"source_id\":\"~a\"~a}" source-type id name-json))
(response (curl-post api-key "/images/publish" json))
(image-id (json-extract-string response "id")))
(format #t "~aImage published successfully~a\n" green reset)
(format #t "Image ID: ~a\n" (or image-id "N/A")))))
((equal? action "visibility")
(if (not visibility-mode)
(begin
(format (current-error-port) "~aError: visibility mode required (private, unlisted, or public)~a\n" red reset)
(exit 1))
(let ((json (format #f "{\"visibility\":\"~a\"}" visibility-mode)))
(curl-post api-key (format #f "/images/~a/visibility" id) json)
(format #t "~aImage visibility set to ~a~a\n" green visibility-mode reset))))
((equal? action "spawn")
(let* ((name-json (if name (format #f "\"name\":\"~a\"" (escape-json name)) ""))
(ports-json (if ports (format #f "~a\"ports\":[~a]" (if name "," "") ports) ""))
(json (format #f "{~a~a}" name-json ports-json))
(response (curl-post api-key (format #f "/images/~a/spawn" id) json))
(service-id (json-extract-string response "id")))
(format #t "~aService spawned from image~a\n" green reset)
(format #t "Service ID: ~a\n" (or service-id "N/A"))))
((equal? action "clone")
(let* ((name-json (if name (format #f "\"name\":\"~a\"" (escape-json name)) ""))
(json (format #f "{~a}" name-json))
(response (curl-post api-key (format #f "/images/~a/clone" id) json))
(image-id (json-extract-string response "id")))
(format #t "~aImage cloned successfully~a\n" green reset)
(format #t "Image ID: ~a\n" (or image-id "N/A"))))
(else
(display "Error: Specify --list, --info ID, --delete ID, --lock ID, --unlock ID, --publish ID, --visibility ID MODE, --spawn ID, or --clone ID\n" (current-error-port))
(exit 1)))))
(define (parse-input-files args)
"Parse -f flags from args and return list of filenames"
(let loop ((args args) (files '()))
(if (null? args)
(reverse files)
(if (and (equal? (car args) "-f") (pair? (cdr args)))
(let ((file (cadr args)))
(if (file-exists? file)
(loop (cddr args) (cons file files))
(begin
(format (current-error-port) "Error: File not found: ~a\n" file)
(exit 1))))
(loop (cdr args) files)))))
(define (main args)
(if (null? args)
(begin
(display "Usage: un.scm [options] <source_file>\n")
(display " un.scm session [options]\n")
(display " un.scm service [options]\n")
(display " un.scm image [options]\n")
(display " un.scm key [--extend]\n")
(display " un.scm languages [--json]\n")
(display "\nLanguages options:\n")
(display " --json Output as JSON array\n")
(display "\nImage options:\n")
(display " --list List all images\n")
(display " --info ID Get image details\n")
(display " --delete ID Delete an image\n")
(display " --lock ID Lock image to prevent deletion\n")
(display " --unlock ID Unlock image\n")
(display " --publish ID Publish image from service/snapshot\n")
(display " --source-type TYPE Source type: service or snapshot\n")
(display " --visibility ID MODE Set visibility: private, unlisted, public\n")
(display " --spawn ID Spawn new service from image\n")
(display " --clone ID Clone an image\n")
(display " --name NAME Name for spawned service or cloned image\n")
(display " --ports PORTS Ports for spawned service\n")
(exit 1))
(cond
((equal? (car args) "languages")
(let ((json-output (and (> (length args) 1) (equal? (cadr args) "--json"))))
(languages-cmd json-output)))
((equal? (car args) "key")
(let ((extend (and (> (length args) 1) (equal? (cadr args) "--extend"))))
(validate-key-cmd extend)))
((equal? (car args) "snapshot")
(cond
((and (> (length args) 1) (equal? (cadr args) "--list"))
(snapshot-cmd "list" #f #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--info"))
(snapshot-cmd "info" (caddr args) #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--session"))
(snapshot-cmd "session" (caddr args) #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--service"))
(snapshot-cmd "service" (caddr args) #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--restore"))
(snapshot-cmd "restore" (caddr args) #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--delete"))
(snapshot-cmd "delete" (caddr args) #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--lock"))
(snapshot-cmd "lock" (caddr args) #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--unlock"))
(snapshot-cmd "unlock" (caddr args) #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--clone"))
(snapshot-cmd "clone" (caddr args) #f #f #f #f))
(else
(snapshot-cmd "list" #f #f #f #f #f))))
((equal? (car args) "image")
(cond
((and (> (length args) 1) (equal? (cadr args) "--list"))
(image-cmd "list" #f #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--info"))
(image-cmd "info" (caddr args) #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--delete"))
(image-cmd "delete" (caddr args) #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--lock"))
(image-cmd "lock" (caddr args) #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--unlock"))
(image-cmd "unlock" (caddr args) #f #f #f #f))
((and (> (length args) 2) (equal? (cadr args) "--publish"))
(let* ((publish-id (caddr args))
(rest-args (cdddr args))
(source-type #f)
(name #f))
(let loop ((args rest-args))
(when (pair? args)
(cond
((and (equal? (car args) "--source-type") (pair? (cdr args)))
(set! source-type (cadr args))
(loop (cddr args)))
((and (equal? (car args) "--name") (pair? (cdr args)))
(set! name (cadr args))
(loop (cddr args)))
(else (loop (cdr args))))))
(image-cmd "publish" publish-id source-type #f name #f)))
((and (> (length args) 3) (equal? (cadr args) "--visibility"))
(image-cmd "visibility" (caddr args) #f (list-ref args 3) #f #f))
((and (> (length args) 2) (equal? (cadr args) "--spawn"))
(let* ((spawn-id (caddr args))
(rest-args (cdddr args))
(name #f)
(ports #f))
(let loop ((args rest-args))
(when (pair? args)
(cond
((and (equal? (car args) "--name") (pair? (cdr args)))
(set! name (cadr args))
(loop (cddr args)))
((and (equal? (car args) "--ports") (pair? (cdr args)))
(set! ports (cadr args))
(loop (cddr args)))
(else (loop (cdr args))))))
(image-cmd "spawn" spawn-id #f #f name ports)))
((and (> (length args) 2) (equal? (cadr args) "--clone"))
(let* ((clone-id (caddr args))
(rest-args (cdddr args))
(name #f))
(let loop ((args rest-args))
(when (pair? args)
(cond
((and (equal? (car args) "--name") (pair? (cdr args)))
(set! name (cadr args))
(loop (cddr args)))
(else (loop (cdr args))))))
(image-cmd "clone" clone-id #f #f name #f)))
(else
(display "Error: Invalid image command\n" (current-error-port))
(exit 1))))
((equal? (car args) "session")
(if (and (> (length args) 1) (equal? (cadr args) "--list"))
(session-cmd "list" #f #f '())
(if (and (> (length args) 2) (equal? (cadr args) "--kill"))
(session-cmd "kill" (caddr args) #f '())
;; Parse session create options including -f
(let* ((rest-args (cdr args))
(input-files (parse-input-files rest-args))
(shell #f))
;; Parse --shell option
(let loop ((args rest-args))
(when (pair? args)
(cond
((and (or (equal? (car args) "--shell") (equal? (car args) "-s")) (pair? (cdr args)))
(set! shell (cadr args))
(loop (cddr args)))
((equal? (car args) "-f")
(loop (cdr args))) ; skip -f, already parsed
((and (string? (car args)) (> (string-length (car args)) 0) (char=? (string-ref (car args) 0) #\-))
(format (current-error-port) "~aUnknown option: ~a~a\n" red (car args) reset)
(format (current-error-port) "Usage: un.scm session [options]\n")
(exit 1))
(else (loop (cdr args))))))
(session-cmd "create" #f shell input-files)))))
((equal? (car args) "service")
(cond
((and (> (length args) 1) (equal? (cadr args) "--list"))
(service-cmd "list" #f #f #f #f #f #f '() '() #f #f))
((and (> (length args) 2) (equal? (cadr args) "--info"))
(service-cmd "info" (caddr args) #f #f #f #f #f '() '() #f #f))
((and (> (length args) 2) (equal? (cadr args) "--logs"))
(service-cmd "logs" (caddr args) #f #f #f #f #f '() '() #f #f))
((and (> (length args) 2) (equal? (cadr args) "--freeze"))
(service-cmd "sleep" (caddr args) #f #f #f #f #f '() '() #f #f))
((and (> (length args) 2) (equal? (cadr args) "--unfreeze"))
(service-cmd "wake" (caddr args) #f #f #f #f #f '() '() #f #f))
((and (> (length args) 2) (equal? (cadr args) "--destroy"))
(service-cmd "destroy" (caddr args) #f #f #f #f #f '() '() #f #f))
((and (> (length args) 2) (equal? (cadr args) "--resize"))
;; Parse --resize ID -v N
(let* ((resize-id (caddr args))
(rest-args (cdddr args))
(vcpu-val #f))
;; Look for -v or --vcpu
(let loop ((args rest-args))
(when (pair? args)
(cond
((and (or (equal? (car args) "-v") (equal? (car args) "--vcpu")) (pair? (cdr args)))
(set! vcpu-val (string->number (cadr args)))
(loop (cddr args)))
(else (loop (cdr args))))))
(service-cmd "resize" resize-id #f #f #f #f #f '() '() #f vcpu-val)))
((and (> (length args) 3) (equal? (cadr args) "--set-unfreeze-on-demand"))
;; Parse --set-unfreeze-on-demand ID true/false
(let* ((service-id (caddr args))
(enabled-val (list-ref args 3)))
(service-cmd "set-unfreeze-on-demand" service-id #f #f enabled-val #f #f '() '() #f #f)))
((and (> (length args) 3) (equal? (cadr args) "--execute"))
(service-cmd "execute" (caddr args) #f #f (list-ref args 3) #f #f '() '() #f #f))
((and (> (length args) 3) (equal? (cadr args) "--dump-bootstrap"))
(service-cmd "dump-bootstrap" (caddr args) #f #f #f #f (list-ref args 3) '() '() #f #f))
((and (> (length args) 2) (equal? (cadr args) "--dump-bootstrap"))
(service-cmd "dump-bootstrap" (caddr args) #f #f #f #f #f '() '() #f #f))
;; Service env subcommand: service env <action> <id> [options]
((and (> (length args) 1) (equal? (cadr args) "env"))
(if (< (length args) 4)
(begin
(display "Usage: un.scm service env <status|set|export|delete> <service_id> [options]\n" (current-error-port))
(exit 1))
(let* ((env-action (caddr args))
(service-id (list-ref args 3))
(rest-args (if (> (length args) 4) (list-tail args 4) '())))
(cond
((equal? env-action "status")
(service-cmd "env-status" service-id #f #f #f #f #f '() '() #f #f))
((equal? env-action "set")
;; Parse -e and --env-file from rest-args
(let loop ((args rest-args) (env-vars '()) (env-file #f))
(if (null? args)
(service-cmd "env-set" service-id #f #f #f #f #f '() env-vars env-file #f)
(cond
((and (equal? (car args) "-e") (pair? (cdr args)))
(loop (cddr args) (cons (cadr args) env-vars) env-file))
((and (equal? (car args) "--env-file") (pair? (cdr args)))
(loop (cddr args) env-vars (cadr args)))
(else (loop (cdr args) env-vars env-file))))))
((equal? env-action "export")
(service-cmd "env-export" service-id #f #f #f #f #f '() '() #f #f))
((equal? env-action "delete")
(service-cmd "env-delete" service-id #f #f #f #f #f '() '() #f #f))
(else
(format (current-error-port) "~aUnknown env action: ~a~a\n" red env-action reset)
(exit 1))))))
((and (> (length args) 2) (equal? (cadr args) "--name"))
(let* ((name (caddr args))
(rest-args (cdddr args))
(ports #f)
(bootstrap #f)
(bootstrap-file #f)
(type #f)
(env-vars '())
(env-file #f)
(unfreeze-on-demand-flag #f)
(input-files (parse-input-files rest-args)))
;; Parse remaining args
(let loop ((args rest-args))
(when (pair? args)
(cond
((and (pair? (cdr args)) (equal? (car args) "--ports"))
(set! ports (cadr args))
(loop (cddr args)))
((and (pair? (cdr args)) (equal? (car args) "--bootstrap"))
(set! bootstrap (cadr args))
(loop (cddr args)))
((and (pair? (cdr args)) (equal? (car args) "--bootstrap-file"))
(set! bootstrap-file (cadr args))
(loop (cddr args)))
((and (pair? (cdr args)) (equal? (car args) "--type"))
(set! type (cadr args))
(loop (cddr args)))
((and (pair? (cdr args)) (equal? (car args) "-e"))
(set! env-vars (cons (cadr args) env-vars))
(loop (cddr args)))
((and (pair? (cdr args)) (equal? (car args) "--env-file"))
(set! env-file (cadr args))
(loop (cddr args)))
((equal? (car args) "--unfreeze-on-demand")
(set! unfreeze-on-demand-flag #t)
(loop (cdr args)))
((equal? (car args) "-f")
(loop (cddr args))) ; skip -f, already parsed
(else (loop (cdr args))))))
(service-cmd "create" #f name ports bootstrap bootstrap-file type input-files env-vars env-file #f unfreeze-on-demand-flag)))
(else
(display "Error: Invalid service command\n" (current-error-port))
(exit 1))))
(else
(execute-cmd (car args))))))
(define (strip-account-flag args)
"Remove --account N from args list, setting *account-index* as side-effect."
(let loop ((in args) (out '()))
(cond
((null? in) (reverse out))
((and (equal? (car in) "--account") (pair? (cdr in)))
(let ((n (string->number (cadr in))))
(set! *account-index* (if (number? n) (inexact->exact n) #f))
(loop (cddr in) out)))
(else (loop (cdr in) (cons (car in) out))))))
(main (strip-account-flag (cdr (command-line))))
Esclarecimentos de documentação
Dependências
C Binary (un1) — requer libcurl e libwebsockets:
sudo apt install build-essential libcurl4-openssl-dev libwebsockets-dev
wget unsandbox.com/downloads/un.c && gcc -O2 -o un un.c -lcurl -lwebsocketsImplementações SDK — a maioria usa apenas stdlib (Ruby, JS, Go, etc). Alguns requerem dependências mínimas:
pip install requests # PythonExecutar Código
Executar um script
./un hello.py
./un app.js
./un main.rsCom variáveis de ambiente
./un -e DEBUG=1 -e NAME=World script.pyCom arquivos de entrada (teletransportar arquivos para sandbox)
./un -f data.csv -f config.json process.pyObter binário compilado
./un -a -o ./bin main.cSessões interativas
Iniciar uma sessão de shell
# Default bash shell
./un session
# Choose your shell
./un session --shell zsh
./un session --shell fish
# Jump into a REPL
./un session --shell python3
./un session --shell node
./un session --shell juliaSessão com acesso à rede
./un session -n semitrustedAuditoria de sessão (gravação completa do terminal)
# Record everything (including vim, interactive programs)
./un session --audit -o ./logs
# Replay session later
zcat session.log*.gz | less -RColetar artefatos da sessão
# Files in /tmp/artifacts/ are collected on exit
./un session -a -o ./outputsPersistência de sessão (tmux/screen)
# Default: session terminates on disconnect (clean exit)
./un session
# With tmux: session persists, can reconnect later
./un session --tmux
# Press Ctrl+b then d to detach
# With screen: alternative multiplexer
./un session --screen
# Press Ctrl+a then d to detachListar Trabalhos Ativos
./un session --list
# Output:
# Active sessions: 2
#
# SESSION ID CONTAINER SHELL TTL STATUS
# abc123... unsb-vm-12345 python3 45m30s active
# def456... unsb-vm-67890 bash 1h2m activeReconectar à sessão existente
# Reconnect by container name (requires --tmux or --screen)
./un session --attach unsb-vm-12345
# Use exit to terminate session, or detach to keep it runningEncerrar uma sessão
./un session --kill unsb-vm-12345Shells e REPLs disponíveis
Shells: bash, dash, sh, zsh, fish, ksh, tcsh, csh, elvish, xonsh, ash
REPLs: python3, bpython, ipython # Python
node # JavaScript
ruby, irb # Ruby
lua # Lua
php # PHP
perl # Perl
guile, scheme # Scheme
ghci # Haskell
erl, iex # Erlang/Elixir
sbcl, clisp # Common Lisp
r # R
julia # Julia
clojure # ClojureGerenciamento de Chave API
Verificar Status do Pagamento
# Check if your API key is valid
./un key
# Output:
# Valid: key expires in 30 daysEstender Chave Expirada
# Open the portal to extend an expired key
./un key --extend
# This opens the unsandbox.com portal where you can
# add more credits to extend your key's expirationAutenticação
As credenciais são carregadas em ordem de prioridade (maior primeiro):
# 1. CLI flags (highest priority)
./un -p unsb-pk-xxxx -k unsb-sk-xxxxx script.py
# 2. Environment variables
export UNSANDBOX_PUBLIC_KEY=unsb-pk-xxxx-xxxx-xxxx-xxxx
export UNSANDBOX_SECRET_KEY=unsb-sk-xxxxx-xxxxx-xxxxx-xxxxx
./un script.py
# 3. Config file (lowest priority)
# ~/.unsandbox/accounts.csv format: public_key,secret_key
mkdir -p ~/.unsandbox
echo "unsb-pk-xxxx-xxxx-xxxx-xxxx,unsb-sk-xxxxx-xxxxx-xxxxx-xxxxx" > ~/.unsandbox/accounts.csv
./un script.pyAs requisições são assinadas com HMAC-SHA256. O token bearer contém apenas a chave pública; a chave secreta calcula a assinatura (nunca é transmitida).
Escalonamento de Recursos
Definir Quantidade de vCPU
# Default: 1 vCPU, 2GB RAM
./un script.py
# Scale up: 4 vCPUs, 8GB RAM
./un -v 4 script.py
# Maximum: 8 vCPUs, 16GB RAM
./un --vcpu 8 heavy_compute.pyReforço de Sessão Ao Vivo
# Boost a running session to 2 vCPU, 4GB RAM
./un session --boost sandbox-abc
# Boost to specific vCPU count (4 vCPU, 8GB RAM)
./un session --boost sandbox-abc --boost-vcpu 4
# Return to base resources (1 vCPU, 2GB RAM)
./un session --unboost sandbox-abcCongelar/Descongelar Sessão
Congelar e Descongelar Sessões
# Freeze a session (stop billing, preserve state)
./un session --freeze sandbox-abc
# Unfreeze a frozen session
./un session --unfreeze sandbox-abc
# Note: Requires --tmux or --screen for persistenceServiços Persistentes
Criar um Serviço
# Web server with ports
./un service --name web --ports 80,443 --bootstrap "python -m http.server 80"
# With custom domains
./un service --name blog --ports 8000 --domains blog.example.com
# Game server with SRV records
./un service --name mc --type minecraft --bootstrap ./setup.sh
# Deploy app tarball with bootstrap script
./un service --name app --ports 8000 -f app.tar.gz --bootstrap-file ./setup.sh
# setup.sh: cd /tmp && tar xzf app.tar.gz && ./app/start.shGerenciar Serviços
# List all services
./un service --list
# Get service details
./un service --info abc123
# View bootstrap logs
./un service --logs abc123
./un service --tail abc123 # last 9000 lines
# Execute command in running service
./un service --execute abc123 'journalctl -u myapp -n 50'
# Dump bootstrap script (for migrations)
./un service --dump-bootstrap abc123
./un service --dump-bootstrap abc123 backup.sh
# Freeze/unfreeze service
./un service --freeze abc123
./un service --unfreeze abc123
# Service settings (auto-wake, freeze page display)
./un service --auto-unfreeze abc123 # enable auto-wake on HTTP
./un service --no-auto-unfreeze abc123 # disable auto-wake
./un service --show-freeze-page abc123 # show HTML payment page (default)
./un service --no-show-freeze-page abc123 # return JSON error instead
# Redeploy with new bootstrap
./un service --redeploy abc123 --bootstrap ./new-setup.sh
# Destroy service
./un service --destroy abc123Snapshots
Listar Snapshots
./un snapshot --list
# Output:
# Snapshots: 3
#
# SNAPSHOT ID NAME SOURCE SIZE CREATED
# unsb-snapshot-a1b2-c3d4-e5f6-g7h8 before-upgrade session 512 MB 2h ago
# unsb-snapshot-i9j0-k1l2-m3n4-o5p6 stable-v1.0 service 1.2 GB 1d agoCriar Snapshot da Sessão
# Snapshot with name
./un session --snapshot unsb-vm-12345 --name "before upgrade"
# Quick snapshot (auto-generated name)
./un session --snapshot unsb-vm-12345Criar Snapshot do Serviço
# Standard snapshot (pauses container briefly)
./un service --snapshot unsb-service-abc123 --name "stable v1.0"
# Hot snapshot (no pause, may be inconsistent)
./un service --snapshot unsb-service-abc123 --hotRestaurar a partir do Snapshot
# Restore session from snapshot
./un session --restore unsb-snapshot-a1b2-c3d4-e5f6-g7h8
# Restore service from snapshot
./un service --restore unsb-snapshot-i9j0-k1l2-m3n4-o5p6Excluir Snapshot
./un snapshot --delete unsb-snapshot-a1b2-c3d4-e5f6-g7h8Imagens
Imagens são imagens de container independentes e transferíveis que sobrevivem à exclusão do container. Diferente dos snapshots (que permanecem com seu container), imagens podem ser compartilhadas com outros usuários, transferidas entre chaves de API ou tornadas públicas no marketplace.
Listar Imagens
# List all images (owned + shared + public)
./un image --list
# List only your images
./un image --list owned
# List images shared with you
./un image --list shared
# List public marketplace images
./un image --list public
# Get image details
./un image --info unsb-image-xxxx-xxxx-xxxx-xxxxPublicar Imagens
# Publish from a stopped or frozen service
./un image --publish-service unsb-service-abc123 \
--name "My App v1.0" --description "Production snapshot"
# Publish from a snapshot
./un image --publish-snapshot unsb-snapshot-xxxx-xxxx-xxxx-xxxx \
--name "Stable Release"
# Note: Cannot publish from running containers - stop or freeze firstCriar Serviços a partir de Imagens
# Spawn a new service from an image
./un image --spawn unsb-image-xxxx-xxxx-xxxx-xxxx \
--name new-service --ports 80,443
# Clone an image (creates a copy you own)
./un image --clone unsb-image-xxxx-xxxx-xxxx-xxxxProteção de Imagem
# Lock image to prevent accidental deletion
./un image --lock unsb-image-xxxx-xxxx-xxxx-xxxx
# Unlock image to allow deletion
./un image --unlock unsb-image-xxxx-xxxx-xxxx-xxxx
# Delete image (must be unlocked)
./un image --delete unsb-image-xxxx-xxxx-xxxx-xxxxVisibilidade e Compartilhamento
# Set visibility level
./un image --visibility unsb-image-xxxx-xxxx-xxxx-xxxx private # owner only (default)
./un image --visibility unsb-image-xxxx-xxxx-xxxx-xxxx unlisted # can be shared
./un image --visibility unsb-image-xxxx-xxxx-xxxx-xxxx public # marketplace
# Share with specific user
./un image --grant unsb-image-xxxx-xxxx-xxxx-xxxx \
--key unsb-pk-friend-friend-friend-friend
# Revoke access
./un image --revoke unsb-image-xxxx-xxxx-xxxx-xxxx \
--key unsb-pk-friend-friend-friend-friend
# List who has access
./un image --trusted unsb-image-xxxx-xxxx-xxxx-xxxxTransferir Propriedade
# Transfer image to another API key
./un image --transfer unsb-image-xxxx-xxxx-xxxx-xxxx \
--to unsb-pk-newowner-newowner-newowner-newownerReferência de uso
Usage: ./un [options] <source_file>
./un session [options]
./un service [options]
./un snapshot [options]
./un image [options]
./un key
Commands:
(default) Execute source file in sandbox
session Open interactive shell/REPL session
service Manage persistent services
snapshot Manage container snapshots
image Manage container images (publish, share, transfer)
key Check API key validity and expiration
Options:
-e KEY=VALUE Set environment variable (can use multiple times)
-f FILE Add input file (can use multiple times)
-a Return and save artifacts from /tmp/artifacts/
-o DIR Output directory for artifacts (default: current dir)
-p KEY Public key (or set UNSANDBOX_PUBLIC_KEY env var)
-k KEY Secret key (or set UNSANDBOX_SECRET_KEY env var)
-n MODE Network mode: zerotrust (default) or semitrusted
-v N, --vcpu N vCPU count 1-8, each vCPU gets 2GB RAM (default: 1)
-y Skip confirmation for large uploads (>1GB)
-h Show this help
Authentication (priority order):
1. -p and -k flags (public and secret key)
2. UNSANDBOX_PUBLIC_KEY + UNSANDBOX_SECRET_KEY env vars
3. ~/.unsandbox/accounts.csv (format: public_key,secret_key per line)
Session options:
-s, --shell SHELL Shell/REPL to use (default: bash)
-l, --list List active sessions
--attach ID Reconnect to existing session (ID or container name)
--kill ID Terminate a session (ID or container name)
--freeze ID Freeze a session (requires --tmux/--screen)
--unfreeze ID Unfreeze a frozen session
--boost ID Boost session resources (2 vCPU, 4GB RAM)
--boost-vcpu N Specify vCPU count for boost (1-8)
--unboost ID Return to base resources
--audit Record full session for auditing
--tmux Enable session persistence with tmux (allows reconnect)
--screen Enable session persistence with screen (allows reconnect)
Service options:
--name NAME Service name (creates new service)
--ports PORTS Comma-separated ports (e.g., 80,443)
--domains DOMAINS Custom domains (e.g., example.com,www.example.com)
--type TYPE Service type: minecraft, mumble, teamspeak, source, tcp, udp
--bootstrap CMD Bootstrap command/file/URL to run on startup
-f FILE Upload file to /tmp/ (can use multiple times)
-l, --list List all services
--info ID Get service details
--tail ID Get last 9000 lines of bootstrap logs
--logs ID Get all bootstrap logs
--freeze ID Freeze a service
--unfreeze ID Unfreeze a service
--auto-unfreeze ID Enable auto-wake on HTTP request
--no-auto-unfreeze ID Disable auto-wake on HTTP request
--show-freeze-page ID Show HTML payment page when frozen (default)
--no-show-freeze-page ID Return JSON error when frozen
--destroy ID Destroy a service
--redeploy ID Re-run bootstrap script (requires --bootstrap)
--execute ID CMD Run a command in a running service
--dump-bootstrap ID [FILE] Dump bootstrap script (for migrations)
--snapshot ID Create snapshot of session or service
--snapshot-name User-friendly name for snapshot
--hot Create snapshot without pausing (may be inconsistent)
--restore ID Restore session/service from snapshot ID
Snapshot options:
-l, --list List all snapshots
--info ID Get snapshot details
--delete ID Delete a snapshot permanently
Image options:
-l, --list [owned|shared|public] List images (all, owned, shared, or public)
--info ID Get image details
--publish-service ID Publish image from stopped/frozen service
--publish-snapshot ID Publish image from snapshot
--name NAME Name for published image
--description DESC Description for published image
--delete ID Delete image (must be unlocked)
--clone ID Clone image (creates copy you own)
--spawn ID Create service from image (requires --name)
--lock ID Lock image to prevent deletion
--unlock ID Unlock image to allow deletion
--visibility ID LEVEL Set visibility (private|unlisted|public)
--grant ID --key KEY Grant access to another API key
--revoke ID --key KEY Revoke access from API key
--transfer ID --to KEY Transfer ownership to API key
--trusted ID List API keys with access
Key options:
(no options) Check API key validity
--extend Open portal to extend an expired key
Examples:
./un script.py # execute Python script
./un -e DEBUG=1 script.py # with environment variable
./un -f data.csv process.py # with input file
./un -a -o ./bin main.c # save compiled artifacts
./un -v 4 heavy.py # with 4 vCPUs, 8GB RAM
./un session # interactive bash session
./un session --tmux # bash with reconnect support
./un session --list # list active sessions
./un session --attach unsb-vm-12345 # reconnect to session
./un session --kill unsb-vm-12345 # terminate a session
./un session --freeze unsb-vm-12345 # freeze session
./un session --unfreeze unsb-vm-12345 # unfreeze session
./un session --boost unsb-vm-12345 # boost resources
./un session --unboost unsb-vm-12345 # return to base
./un session --shell python3 # Python REPL
./un session --shell node # Node.js REPL
./un session -n semitrusted # session with network access
./un session --audit -o ./logs # record session for auditing
./un service --name web --ports 80 # create web service
./un service --list # list all services
./un service --logs abc123 # view bootstrap logs
./un key # check API key
./un key --extend # extend expired key
./un snapshot --list # list all snapshots
./un session --snapshot unsb-vm-123 # snapshot a session
./un service --snapshot abc123 # snapshot a service
./un session --restore unsb-snapshot-xxxx # restore from snapshot
./un image --list # list all images
./un image --list owned # list your images
./un image --publish-service abc # publish image from service
./un image --spawn img123 --name x # create service from image
./un image --grant img --key pk # share image with userCLI Inception
O UN CLI foi implementado em 42 linguagens de programação, demonstrando que a API do unsandbox pode ser acessada de praticamente qualquer ambiente.
Ver Todas as 42 Implementações →
Licença
DOMÍNIO PÚBLICO - SEM LICENÇA, SEM GARANTIA
Este é software gratuito de domínio público para o bem público de um permacomputador hospedado
em permacomputer.com - um computador sempre ativo pelo povo, para o povo. Um que é
durável, fácil de reparar e distribuído como água da torneira para inteligência de
aprendizado de máquina.
O permacomputador é infraestrutura de propriedade comunitária otimizada em torno de quatro valores:
VERDADE - Primeiros princípios, matemática & ciência, código aberto distribuído livremente
LIBERDADE - Parcerias voluntárias, liberdade da tirania e controle corporativo
HARMONIA - Desperdício mínimo, sistemas auto-renováveis com diversas conexões prósperas
AMOR - Seja você mesmo sem ferir os outros, cooperação através da lei natural
Este software contribui para essa visão ao permitir a execução de código em mais de 42
linguagens de programação através de uma interface unificada, acessível a todos. Código são
sementes que brotam em qualquer tecnologia abandonada.
Saiba mais: https://www.permacomputer.com
Qualquer pessoa é livre para copiar, modificar, publicar, usar, compilar, vender ou distribuir
este software, seja em forma de código-fonte ou como binário compilado, para qualquer propósito,
comercial ou não comercial, e por qualquer meio.
SEM GARANTIA. O SOFTWARE É FORNECIDO "COMO ESTÁ" SEM GARANTIA DE QUALQUER TIPO.
Dito isso, a camada de membrana digital do nosso permacomputador executa continuamente testes
unitários, de integração e funcionais em todo o seu próprio software - com nosso permacomputador
monitorando a si mesmo, reparando a si mesmo, com orientação humana mínima no ciclo.
Nossos agentes fazem o seu melhor.
Copyright 2025 TimeHexOn & foxhop & russell@unturf
https://www.timehexon.com
https://www.foxhop.net
https://www.unturf.com/software