Isorun Docs
Security

Runtime Supervisor

Preview design for policy-driven approval of sensitive runtime actions.

Runtime Supervisor is the policy layer for teams that need request-time approvals before high-risk operations run. It calls out to your webhook before letting a sensitive action proceed.

Preview design. For production controls today, use Network Filtering, Endpoint Rules, and Audit Trail.

Proposed sandbox config

TypeScript
import { Isorun } from 'isorun'

const isorun = new Isorun()
const sandbox = await isorun.create({
  image: 'python:3.12-slim',
  supervisor: {
    webhook: 'https://your-app.com/approve',
    events: ['network_request', 'file_write', 'exec'],
    decisionTimeoutMs: 3000,
    defaultAction: 'deny',
  },
})

Proposed webhook payload

JSON
{
  "event_id": "evt_01J9...",
  "event": "network_request",
  "sandbox_id": "run78cbccbab85efc28",
  "timestamp": "2026-05-26T12:03:20Z",
  "details": {
    "host": "api.openai.com",
    "method": "POST",
    "path": "/v1/chat/completions"
  }
}

Proposed webhook response

JSON
{ "approved": true, "reason": "policy matched: allow-openai-chat" }
JSON
{ "approved": false, "reason": "write operation blocked by policy" }

Design goals

  • Deterministic timeout behavior (defaultAction on webhook timeout).
  • Low-latency approval path.
  • Full auditability of allow/deny decisions.
  • Composable with host/method/path policy controls.

Next steps

Browser & computer use

Chromium with CDP and a live noVNC desktop inside a microVM. Drive it with Playwright or browser-use, watch it live, and run agent loops.

Network Filtering

Per-sandbox egress allow/deny lists. Block by default, allow what you trust.

On this page

Proposed sandbox configProposed webhook payloadProposed webhook responseDesign goalsNext steps