Uses Alpine Linux as the base container image for the secure execution environment
Provides a secure sandbox for executing code within isolated Docker containers, with resource limitations and security restrictions
Includes Mermaid diagram support for visualizing the MCP server architecture and workflow
Supports Python code execution in the Docker sandbox with dependency installation
A secure Docker-based code execution environment for the Model Context Protocol (MCP).
This project provides a secure sandbox for executing code through MCP (Model Context Protocol). It allows AI assistants to safely run code without requiring direct access to the host system, by executing all code within isolated Docker containers.
Secure Execution: Code runs in isolated Docker containers with strict security limitations
Multi-Language Support: Currently supports Python with easy extensibility for other languages
Resource Limitations: CPU and memory restrictions to prevent abuse
MCP Integration: Fully compatible with the Model Context Protocol
Automatic Setup: Handles container creation, dependency installation, and cleanup
Docker (Desktop or Engine)
Python 3.10+
MCP SDK (pip install mcp)
Docker Python SDK (pip install docker)
Clone this repository:
Create and activate a virtual environment:
Install dependencies:
Start the server by running:
You can connect this MCP server to AI assistants that support the Model Context Protocol:
In Cursor, add the following to your MCP settings:
Replace the paths with your actual file paths.
Similar to Cursor, add the configuration to Claude Desktop's MCP settings.
This MCP server exposes three main tools:
initialize_sandbox: Creates a new Docker container for code execution
execute_code: Runs code in the initialized sandbox
stop_sandbox: Stops and removes the container
When initialize_sandbox is called, the system:
Creates a Docker container based on Alpine Linux
Installs Python and other dependencies
Sets up security restrictions
When execute_code is called:
Code is executed within the isolated container
Standard output and errors are captured
Results are returned to the calling application
When stop_sandbox is called:
The container is stopped and removed
All resources are released
This sandbox implements several security measures:
Containers have restricted CPU and memory usage
Containers are run with minimal privileges
Network access is disabled by default
Containers are disposable and cleaned up after use
To add support for a new programming language, modify the run_code method in the DockerSandbox class to handle the new language.
Docker connection error:
Ensure Docker is running
Check that the DOCKER_HOST environment variable is correctly set for your Docker installation
Container creation fails:
Verify you have permission to create Docker containers
Ensure the specified base image is accessible
Code execution fails:
Check that the language runtime is properly installed in the container
Verify the code is valid for the specified language
This project uses the Model Context Protocol
Built with Docker SDK for Python
This server cannot be installed
hybrid server
The server is able to function both locally and remotely, depending on the configuration or use case.
A secure Docker-based environment that allows AI assistants to safely execute code without direct access to the host system by running all code within isolated containers.
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/svngoku/mcp-docker-code-interpreter'
If you have feedback or need assistance with the MCP directory API, please join our Discord server