// MCP TOOL REFERENCE

MICROSANDBOX TOOLS

19 tools from the Microsandbox MCP Server, categorised by risk level.

View the Microsandbox policy →
// ALL 19 MICROSANDBOX TOOLS
READ 8 tools
Read check_installed Verify that msb and libkrunfw are available on the system. Read sandbox_fs_list List directory contents inside the sandbox. Read sandbox_fs_read Read a file from the sandbox filesystem and return its contents as text. Read sandbox_fs_stat Get file or directory metadata (kind, size, mode, modified time) inside the sandbox. Read sandbox_inspect Get detailed information about a specific sandbox including full configuration. Read sandbox_list List all sandboxes with their status. Read sandbox_metrics Get live resource usage metrics (CPU, memory, disk, network) for a running sandbox. Read volume_list List all named volumes.
WRITE 3 tools
Write sandbox_fs_mkdir Create a directory with parent directories inside the sandbox. Write sandbox_fs_write Write content to a file inside the sandbox. Creates parent directories as needed. Write volume_create Create a named persistent volume. Volumes survive sandbox restarts and can be shared across sandboxes.
DESTRUCTIVE 3 tools
Destructive sandbox_fs_remove Remove a file or directory inside the sandbox. Destructive sandbox_remove Remove a sandbox. Must be stopped unless force is true. Destructive volume_remove Remove a named volume.
EXECUTE 5 tools
Execute sandbox_run Create an ephemeral sandbox, run a shell command, return the output, and destroy the sandbox. Execute sandbox_exec Execute a command inside a running sandbox and return stdout/stderr/exit code. Execute sandbox_shell Execute a shell command or script string inside a running sandbox. Execute sandbox_stop Stop a running sandbox. Use force to kill with SIGKILL instead of graceful SIGTERM. Execute sandbox_create Create and boot a persistent named sandbox with full configuration.

Route Microsandbox through PolicyLayer and every one of its 19 tools is checked against your policy before it runs.

CHECK YOUR STACK →

See every tool, the dangerous ones, and the token cost across your stack.

// FAQ
How many tools does the Microsandbox MCP server have? +

The Microsandbox MCP server exposes 19 tools across 4 categories: Read, Write, Destructive, Execute.

How do I enforce policies on Microsandbox tools? +

Route the Microsandbox server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard; they are enforced on every call before it reaches the server.

What risk categories do Microsandbox tools fall into? +

Microsandbox tools are categorised as Read (8), Write (3), Destructive (3), Execute (5). Each category has a recommended default policy.

Enforce policy on every Microsandbox tool call.

Start from Microsandbox, add the rest of your stack, and see everything your agents can call. Then put policy on all of it.

CHECK YOUR STACK →

Free to start. No card required.

43,000+ MCP servers and 220,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.