Node.js Sandbox MCP Server

Overview Schema Related Servers Score Discussions

runJsEphemeral.ts•5.41 kB

import { z } from 'zod'; import { execFileSync } from 'child_process'; import tmp from 'tmp'; import { randomUUID } from 'crypto'; import { type McpResponse, textContent, type McpContent } from '../types.ts'; import { DEFAULT_NODE_IMAGE, DOCKER_NOT_RUNNING_ERROR, generateSuggestedImages, isDockerRunning, preprocessDependencies, computeResourceLimits, } from '../utils.ts'; import { prepareWorkspace, getMountFlag } from '../runUtils.ts'; import { changesToMcpContent, detectChanges, getSnapshot, getMountPointDir, } from '../snapshotUtils.ts'; import { getContentFromError, safeExecNodeInContainer, } from '../dockerUtils.ts'; import { lintAndRefactorCode } from '../linterUtils.ts'; const NodeDependency = z.object({ name: z.string().describe('npm package name, e.g. lodash'), version: z.string().describe('npm package version range, e.g. ^4.17.21'), }); export const argSchema = { image: z .string() .optional() .default(DEFAULT_NODE_IMAGE) .describe( 'Docker image to use for ephemeral execution. e.g. ' + generateSuggestedImages() ), // We use an array of { name, version } items instead of a record // because the OpenAI function-calling schema doesn’t reliably support arbitrary // object keys. An explicit array ensures each dependency has a clear, uniform // structure the model can populate. // Schema for a single dependency item dependencies: z .array(NodeDependency) .default([]) .describe( 'A list of npm dependencies to install before running the code. ' + 'Each item must have a `name` (package) and `version` (range). ' + 'If none, returns an empty array.' ), code: z .string() .describe('JavaScript code to run inside the ephemeral container.'), }; type NodeDependenciesArray = Array<{ name: string; version: string }>; export default async function runJsEphemeral({ image = DEFAULT_NODE_IMAGE, code, dependencies = [], }: { image?: string; code: string; dependencies?: NodeDependenciesArray; }): Promise<McpResponse> { if (!isDockerRunning()) { return { content: [textContent(DOCKER_NOT_RUNNING_ERROR)] }; } // Lint and refactor the code first. const { fixedCode, errorReport } = await lintAndRefactorCode(code); const telemetry: Record<string, unknown> = {}; const dependenciesRecord = preprocessDependencies({ dependencies, image }); const containerId = `js-ephemeral-${randomUUID()}`; const tmpDir = tmp.dirSync({ unsafeCleanup: true }); const { memFlag, cpuFlag } = computeResourceLimits(image); const mountFlag = getMountFlag(); try { // Start an ephemeral container execFileSync('docker', [ 'run', '-d', '--network', 'host', ...memFlag.split(' ').filter(Boolean), ...cpuFlag.split(' ').filter(Boolean), '--workdir', '/workspace', ...mountFlag.split(' ').filter(Boolean), '--name', containerId, image, 'tail', '-f', '/dev/null', ]); // Prepare workspace locally const localWorkspace = await prepareWorkspace({ code: fixedCode, dependenciesRecord, }); execFileSync('docker', [ 'cp', `${localWorkspace.name}/.`, `${containerId}:/workspace`, ]); // Generate snapshot of the workspace const snapshotStartTime = Date.now(); const snapshot = await getSnapshot(getMountPointDir()); // Run install and script inside container const installCmd = 'npm install --omit=dev --prefer-offline --no-audit --loglevel=error'; if (dependencies.length > 0) { const installStart = Date.now(); const installOutput = execFileSync( 'docker', ['exec', containerId, '/bin/sh', '-c', installCmd], { encoding: 'utf8' } ); telemetry.installTimeMs = Date.now() - installStart; telemetry.installOutput = installOutput; } else { telemetry.installTimeMs = 0; telemetry.installOutput = 'Skipped npm install (no dependencies)'; } const { output, error, duration } = safeExecNodeInContainer({ containerId, }); telemetry.runTimeMs = duration; if (error) { const errorResponse = getContentFromError(error, telemetry); if (errorReport) { errorResponse.content.unshift( textContent( `Linting issues found (some may have been auto-fixed):\n${errorReport}` ) ); } return errorResponse; } // Detect the file changed during the execution of the tool in the mounted workspace // and report the changes to the user const changes = await detectChanges( snapshot, getMountPointDir(), snapshotStartTime ); const extractedContents = await changesToMcpContent(changes); const responseContent: McpContent[] = []; if (errorReport) { responseContent.push( textContent( `Linting issues found (some may have been auto-fixed):\n${errorReport}` ) ); } return { content: [ ...(responseContent.length ? responseContent : []), textContent(`Node.js process output:\n${output}`), ...extractedContents, textContent(`Telemetry:\n${JSON.stringify(telemetry, null, 2)}`), ], }; } finally { execFileSync('docker', ['rm', '-f', containerId]); tmpDir.removeCallback(); } }

Loading blob content...

Latest Blog Posts

What Is Context Bloat in MCP?
By Om-Shree-0709 on December 16, 2025.
mcp
Context Bloat
MCP Moves to the Linux Foundation: Neutral Stewardship for Agentic Infrastructure
By Om-Shree-0709 on December 15, 2025.
mcp
anthropic
Linux Foundation
Code Execution with MCP: Architecting Agentic Efficiency
By Om-Shree-0709 on December 14, 2025.
mcp
Token bloat

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/alfonsograziano/node-code-sandbox-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

runJsEphemeral.ts•5.41 kB