How Safe Is Docker Sandbox? Testing AI Agents with Java Live ft. Kevin Wittek

Name: How Safe Is Docker Sandbox? Testing AI Agents with Java Live ft. Kevin Wittek
Uploaded: Streamed live on Apr 30, 2026
Duration: 6965 s

Johannes Rabauer163 subscribers

70 views

Streamed live on Apr 30, 2026

1:56:05

In this live session, I’m joined by Kevin Wittek to explore Docker Sandbox (sbx) as a secure environment for AI driven development. We’ll run a hands on experiment using a Java and Maven application that is intentionally vulnerable and capable of leaking credentials. The goal is simple: test what happens when an AI agent is given broad freedom, and whether Docker Sandbox can actually contain the risk. Using GitHub Copilot, we’ll simulate a “YOLO mode” workflow where the agent can act with minimal restrictions. Along the way, we’ll: - Set up and explore Docker Sandbox - Run a Java demo designed to expose security weaknesses - Validate how isolation prevents credential leakage - Extend the application with additional features in real time This session is a practical look at how far you can push AI agents in development without compromising security. Topics covered Docker Sandbox, AI agents, secure development environments, Java, Maven, GitHub Copilot, container isolation, developer workflows 00:00 Countdown 00:10 Introduction 10:41 Creating our first sandbox 17:30 Explaining credential proxying 23:30 Starting the first sandbox 26:30 Running our malicious project 33:40 Rerunning malicious project without Readme - Part 1 37:30 Sidetrack: Working in a team with AI 40:30 Rerunning malicious project without Readme - Part 2 43:00 Looking at the blocked network request 45:45 Sidetrack: Is there a need for a human in the loop? 53:40 Sidetrack: Does sbx do prompt scrubbing / sanitising? 55:50 Docker insinde Docker sbx 01:02:55 Sidetrack: My Keyboard and European Layout 01:05:30 Docker inside sbx (Testcontainers) 01:22:40 k3s / k8s in sbx? 01:23:30 Using Claude with sbx CLI (fun-project) - Port forwarding in sbx 01:33:30 Using a local LLM with sbx 01:43:50 Fun-Project - Result 01:46:36 Conclusion / Summary 01:48:15 Fun-Project - Code Analysis / Debugging 01:54:00 Conclusion / Summary #Docker #DockerSandbox #AIAgents #Java #Maven #GitHubCopilot #DevSecOps #ContainerSecurity #AIEngineering #SoftwareDevelopment

Download

0 formats

No download links available.