Let AI agents run free…
without letting them run wild.
npm install -g @colony2/shai Read-only workspace, network filtering, and container isolation protect your system from unintended agent actions.
Establish clear boundaries and guardrails. Agents can read all workspace code for context but only modify designated areas, preventing scope creep and overreach.
Resource sets, application rules, and selective elevation provide fine-grained access control.
Compatible with Claude Code, Codex, Gemini CLI and any other CLI-based AI coding agent.
HTTP/HTTPS allowlists control exactly which APIs and services your agents can access. Block unwanted connections by default.
Each session runs in a fresh container. No persistent modifications to your system. Exit and it’s gone.