Love the security-first approach with Docker sandboxing - that's often an afterthought in agent wrappers. The BYOK model is compelling too for teams with compliance requirements.

Curious: how are you thinking about policy enforcement for what the agent can actually do within the sandbox? Like limiting which MCP tools it can call or what parameters are valid?

We're working on governance/guardrails for MCP pipelines at keypost.ai - would be interested to explore if there's complementary overlap. Congrats on shipping!

[dead]