CodeRunner provides a secure MCP (Model Context Protocol) code execution server that runs inside a sandboxed environment on your Mac, powered by Apple's native containers. It allows you to safely execute code generated by AI models like Claude, OpenAI GPT, or Ollama.
Leverage powerful remote LLMs (like ChatGPT or Claude Sonnet 4) to work with your local files—such as videos—securely on your Mac. The LLM runs in a sandboxed environment where it can install external libraries, generate code, and execute it locally without uploading your data to the cloud.
With CodeRunner, you can achieve the following examples and more:
- trim and combine video segments using
ffmpegwithout manual installation. - generate prime numbers simply
- visualize cryptocurrency trends by generating a chart for the last four days of ETH prices using matplotlib, all within a secure, sandboxed environment.
This guide shows you how to use the pre-built CodeRunner sandbox.
- Mac with preferably macOS 26.0 (currently in Developer beta) or later and Apple Silicon (M1/M2/M3/M4 series)
- Apple
containerTool - Download installer - Python 3.10+
Run these commands once to configure the .local domain:
sudo container system dns create local
container system dns default set localThis command downloads and runs the CodeRunner sandbox from Docker Hub:
# Run the container and make it available at http://coderunner.local:8222/sse
container run \
--name coderunner \
--detach --rm --cpus 8 --memory 4g \
instavm/coderunnerMCP server will be available at:
git clone https://github.com/BandarLabs/coderunner.git
cd coderunnerpip install -r examples/requirements.txtConfigure Claude Desktop to use CodeRunner as an MCP server:
-
Copy the example configuration:
cd examples cp claude_desktop/claude_desktop_config.example.json claude_desktop/claude_desktop_config.json -
Edit the configuration file and replace the placeholder paths:
- Replace
/path/to/your/pythonwith your actual Python path (e.g.,/usr/bin/python3or/opt/homebrew/bin/python3) - Replace
/path/to/coderunnerwith the actual path to your cloned repository
Example after editing:
{ "mcpServers": { "coderunner": { "command": "/opt/homebrew/bin/python3", "args": ["/Users/yourname/coderunner/examples/claude_desktop/mcpproxy.py"] } } } - Replace
-
Update Claude Desktop configuration:
- Open Claude Desktop
- Go to Settings → Developer
- Add the MCP server configuration
- Restart Claude Desktop
-
Start using CodeRunner in Claude: You can now ask Claude to execute code, and it will run safely in the sandbox!
Use CodeRunner with OpenAI's Python agents library:
-
Set your OpenAI API key:
export OPENAI_API_KEY="your-openai-api-key-here"
-
Run the client:
python examples/openai_agents/openai_client.py
-
Start coding: Enter prompts like "write python code to generate 100 prime numbers" and watch it execute safely in the sandbox!
All code runs in an isolated container environment, ensuring your host system remains secure.
From @apple/container documentation -
Security: Each container has the isolation properties of a full VM, using a minimal set of core utilities and dynamic libraries to reduce resource utilization and attack surface.
CodeRunner consists of:
- Sandbox Container: Isolated execution environment with Jupyter kernel
- MCP Server: Handles communication between AI models and the sandbox
- Proxy Layer: Manages connections and security
The examples/ directory contains:
openai-agents- Example OpenAI agents integrationclaude-desktop- Example Claude Desktop integration
We welcome contributions! Please see CONTRIBUTING.md for guidelines.
This project is licensed under the MIT License - see the LICENSE file for details.
