ainativedev/latest-aidevcon-speakers-london-2026

AI Native DevCon 2026 London — all conference sessions as interactive skills

Quality

83%

Does it follow best practices?

Impact

—

No eval scenarios have been run

Securityby

Risky

Do not use without reviewing

name:: talk-selajev-docker-sandboxes-agents
description:: Use when the user asks about Oleg Selajev's AI Native DevCon talk on sandboxing local AI agents: hard isolation, file-sharing boundaries, network policy, sensitive-value isolation, audit expectations, and safe team rollout. This bundle is safety-redacted and avoids setup instructions.
metadata:: {"generated-by":"talk-to-skill","source":"safety-redacted-transcript","generated-at":"2026-06-02","redacted-at":"2026-06-19"}

Docker Sandboxes For Agents - Oleg Selajev

Name: ainativedev/latest-aidevcon-speakers-london-2026
Rating: 66.52 (1 reviews)
Author: ainativedev

Oleg Selajev argues that autonomous local agents need hard isolation because prompt instructions alone are not security controls. The safe takeaway is to run agents inside controlled, disposable environments with limited file access, constrained network behavior, and sensitive values kept outside agent-visible context.

Safety Scope

Provide conceptual guidance and policy checklists.
Do not provide setup commands, manifests, registry references, sensitive-value routing recipes, or step-by-step configuration.
If the user asks for omitted mechanics, explain that the public bundle is redacted and provide a safe architecture checklist.

Read Order

Use outline.md for the talk thesis and safe concept map.
Use transcript.md for the redacted summary.
Use quotes.md for safe themes.

How To Help

When answering factual questions:

Keep the answer short and concept-level.
State when operational details are not available in the redacted bundle.
Focus on enforceable isolation, not prompt-only policy.

When applying the talk to the user's setup:

Identify what the agent can read.
Identify what the agent can write.
Identify where network traffic can go.
Identify how sensitive values are kept out of model-visible context.
Identify logs, review points, and recreation strategy.

Safe Outputs

Agent isolation checklist.
Team rollout checklist.
Risk-model summary.
Sandbox adoption plan.

.tessl-plugin

talk-batey-building-product-teams-age-of-ai

talk-birgitta-closing-keynote

talk-debois-agent-enablement

talk-douglas-training-ai-on-your-own-code

talk-dubnov-merge-rate-ai-adoption

talk-farley-vibe-coding-best-we-can-do

talk-firtman-web-mcp-agentic-web

talk-foxwell-reinvention-dev-team

talk-graziano-spec-driven-development

talk-groetzinger-skills-everywhere

talk-jones-odevo-ai-native-transformation

talk-jourdan-pipelines-to-prompts

talk-katsioloudes-code-security-ai

talk-lamis-context-engineering-dreaming

talk-lawson-agent-experience

talk-luebken-embedding-pi-coding-agent

talk-maleix-collective-intelligence

talk-maple-ai-native-devcon-welcome-slick

talk-maple-ai-native-devcon-welcome-spec-reviewer

talk-maple-aind-devcon-welcome

talk-maple-context-engineering-skills

talk-maple-continuous-ai-github-workflows

talk-maple-harness-engineering

talk-maple-tldraw-ai-canvas-experiments

talk-marsden-agent-desktops

talk-martinelli-spec-driven-development

talk-moss-skills-team-workflow

talk-overweg-one-brain-no-filtering

talk-podjarny-skills-are-the-new-code

talk-roberts-ai-native-brownfield

talk-roberts-brownfield-ai-native

talk-scheire-artificial-intelligence

talk-selajev-docker-sandboxes-agents

talk-sloan-harness-engineering-beyond-code

talk-stack-humans-architect-ai-writes-code

talk-stoneham-product-brain

talk-tal-skills-security

talk-thomas-ai-native-engineering

talk-walter-runtime-intelligence-agents

talk-wilson-cq-stack-overflow-for-agents

talk-wotherspoon-humans-vs-slop

README.md

tile.json