I built deepagents-sandbox — a native Linux sandbox backend for Deep Agents. No Docker. No VM. Agents get a writable /workspace, blocked network by default, memory/PID limits, and timeout enforcement. It uses bubblewrap + cgroups v2 to isolate agent code execution with resource limits, blocked network by default, writable /workspace, timeouts, and adversarial tests. Video timestamps: 00:00 - 02:23 → Overview 02:24 - 04:28 → Sandbox internals 04:29 - 06:30 → Code walkthrough 06:30 - 11:03 → Demo GitHub: https://github.com/john221wick/deepagents-sandbox