{"id":"kiln-ai-kilntainers","name":"Kilntainers","af_score":52.2,"security_score":45.5,"reliability_score":22.5,"what_it_does":"Kilntainers is an MCP server that provides LLM agents isolated, ephemeral Linux-like execution sandboxes for running shell commands via a single MCP tool (sandbox_exec). It supports multiple backend runtimes including local OCI containers (Docker/Podman), cloud micro-VM sandboxes (Modal/E2B), and WebAssembly-based sandboxes (BusyBox/WASM).","best_when":"You want a simple MCP tool interface for command execution while isolating the execution environment per agent/session and optionally scaling across local and cloud backends.","avoid_when":"You need strong governance over exactly what commands can be executed (e.g., allowlists/denylists not described here), or you require a standardized REST/HTTP API surface instead of MCP.","last_evaluated":"2026-03-30T15:26:26.969382+00:00","has_mcp":true,"has_api":false,"auth_methods":["stdio transport (no network auth described)","HTTP transport (no auth described)","Modal backend: modal setup / modal-token-id & modal-token-secret","E2B backend: E2B API key via flag or E2B_API_KEY env var"],"has_free_tier":false,"known_gotchas":["sandbox_exec runs arbitrary Linux commands (within the sandbox). Agents may still generate expensive workloads (CPU/memory/output) unless limits are enforced.","Network access is optional and defaults to disabled; enabling --network changes risk profile and allowed behaviors.","Output is capped (output-limit default ~2 MiB); larger commands may truncate or fail depending on implementation.","Long-running commands: default exec timeout (120s) and per-backend sandbox lifetime settings may terminate jobs unexpectedly if not accounted for."],"error_quality":0.0}