by dredozubov · Agent Tool · ★ 122
Hazmat Run AI coding agents with full autonomy on macOS without giving them your real account. User isolation + kernel sandbox + firewall + rollback I built Hazmat because manual approval mode was the worst of both worlds. It broke agent flow, and it still was not a real security boundary. If an agent gets prompt-injected, runs a poisoned dependency, or follows malicious repo instructions, the important question is not whether it asked politely. The important question is what it can reach. Hazmat changes that blast radius.
| Stars | 122 |
| Forks | 4 |
| Language | Go |
| Category | Agent Tool |
| License | MIT |
| Quality Score | 63.1749801541083/100 |
| Open Issues | 2 |
| Last Updated | 2026-07-05 |
| Created | 2026-03-27 |
| Platforms | claude-code, cli, go |
| Est. Tokens | ~18k |
These tools work well together with hazmat for enhanced workflows:
Explore other popular agent tool tools:
hazmat is Containment for AI agents - user isolation, sandboxed execution, network controls, backup/rollback. TLA+ verified.. It is categorized as a Agent Tool with 122 GitHub stars.
hazmat is primarily written in Go. It covers topics such as ai-agents, claude-code, cli.
You can find installation instructions and usage details in the hazmat GitHub repository at github.com/dredozubov/hazmat. The project has 122 stars and 4 forks, indicating an active community.
hazmat is released under the MIT license, making it free to use and modify according to the license terms.