{"id":"f10ed816-828a-44ea-bf9c-a3422be1f5a7","shortId":"Cp8uCj","kind":"skill","title":"Run agents in disposable microVM sandboxes with network allowlists and secret injection using Matchlock","tagline":"Launch risky agent work inside disposable microVMs when you need stronger isolation, sealed egress, and host-side secret injection instead of direct host access.","description":"# Run agents in disposable microVM sandboxes with network allowlists and secret injection using Matchlock\n\nLaunch risky agent work inside disposable microVMs when you need stronger isolation, sealed egress, and host-side secret injection instead of direct host access.\n\n## Prerequisites\n\nLocal shell, Matchlock CLI, virtualization support for the target host, and the agent image or command you want to run inside the microVM\n\n## Installation\n\nUse the upstream install or setup path that matches your environment:\n- brew tap jingkaihe/essentials\n- brew install matchlock\n- docker save myapp:latest | matchlock image import myapp:latest # Import from tarball\n- pip install matchlock\n\nRequirements and caveats from upstream:\n- matchlock run --image python:3.12-alpine \\\n- --allow-host \"api.openai.com\" python agent.py\n- --secret ANTHROPIC_API_KEY@api.anthropic.com python call_api.py\n\nBasic usage or getting-started notes:\n- AI agents need to run code, but giving them unrestricted access to your machine is a risk. Matchlock lets you hand an agent a full Linux environment that boots in under a second - isolated and disposable.\n- ### System Requirements\n- **Linux** with KVM support\n\n- Source: https://github.com/jingkaihe/matchlock\n- Extracted from upstream docs: https://raw.githubusercontent.com/jingkaihe/matchlock/HEAD/README.md\n\n## Documentation\n\n- https://github.com/jingkaihe/matchlock\n\n## Source\n\n- [Agent Skill Exchange](https://agentskillexchange.com/skills/run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock/)","tags":["run","agents","disposable","microvm","sandboxes","with","network","allowlists","and","secret","injection","using"],"capabilities":["skill","source-agentskillexchange","skill-run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock","topic-agent-skills","topic-ai-agents","topic-ai-tools","topic-awesome-list","topic-claude-code","topic-codex","topic-cursor","topic-llm","topic-mcp","topic-npx-skills","topic-openclaw","topic-skills-catalog"],"categories":["skills"],"synonyms":[],"warnings":[],"endpointUrl":"https://skills.sh/agentskillexchange/skills/run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock","protocol":"skill","transport":"skills-sh","auth":{"type":"none","details":{"cli":"npx skills add agentskillexchange/skills","source_repo":"https://github.com/agentskillexchange/skills","install_from":"skills.sh"}},"qualityScore":"0.454","qualityRationale":"deterministic score 0.45 from registry signals: · indexed on github topic:agent-skills · 8 github stars · SKILL.md body (1,574 chars)","verified":false,"liveness":"unknown","lastLivenessCheck":null,"agentReviews":{"count":0,"score_avg":null,"cost_usd_avg":null,"success_rate":null,"latency_p50_ms":null,"narrative_summary":null,"summary_updated_at":null},"enrichmentModel":"deterministic:skill-github:v1","enrichmentVersion":1,"enrichedAt":"2026-05-18T19:12:09.718Z","embedding":null,"createdAt":"2026-05-18T13:18:56.373Z","updatedAt":"2026-05-18T19:12:09.718Z","lastSeenAt":"2026-05-18T19:12:09.718Z","tsv":"'/jingkaihe/matchlock':209,220 '/jingkaihe/matchlock/head/readme.md':216 '/skills/run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock/)':227 '3.12':145 'access':39,78,174 'agent':2,17,41,56,92,165,186,222 'agent.py':152 'agentskillexchange.com':226 'agentskillexchange.com/skills/run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock/)':225 'ai':164 'allow':148 'allow-host':147 'allowlist':9,48 'alpin':146 'anthropic_api_key@api.anthropic.com':154 'api.openai.com':150 'basic':157 'boot':192 'brew':115,118 'call_api.py':156 'caveat':138 'cli':83 'code':169 'command':95 'direct':37,76 'dispos':4,20,43,59,199 'doc':213 'docker':121 'document':217 'egress':28,67 'environ':114,190 'exchang':224 'extract':210 'full':188 'get':161 'getting-start':160 'github.com':208,219 'github.com/jingkaihe/matchlock':207,218 'give':171 'hand':184 'host':31,38,70,77,89,149 'host-sid':30,69 'imag':93,126,143 'import':127,130 'inject':12,34,51,73 'insid':19,58,100 'instal':103,107,119,134 'instead':35,74 'isol':26,65,197 'jingkaihe/essentials':117 'kvm':204 'latest':124,129 'launch':15,54 'let':182 'linux':189,202 'local':80 'machin':177 'match':112 'matchlock':14,53,82,120,125,135,141,181 'microvm':5,21,44,60,102 'myapp':123,128 'need':24,63,166 'network':8,47 'note':163 'path':110 'pip':133 'prerequisit':79 'python':144,151,155 'raw.githubusercontent.com':215 'raw.githubusercontent.com/jingkaihe/matchlock/head/readme.md':214 'requir':136,201 'risk':180 'riski':16,55 'run':1,40,99,142,168 'sandbox':6,45 'save':122 'seal':27,66 'second':196 'secret':11,33,50,72,153 'setup':109 'shell':81 'side':32,71 'skill':223 'skill-run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock' 'sourc':206,221 'source-agentskillexchange' 'start':162 'stronger':25,64 'support':85,205 'system':200 'tap':116 'tarbal':132 'target':88 'topic-agent-skills' 'topic-ai-agents' 'topic-ai-tools' 'topic-awesome-list' 'topic-claude-code' 'topic-codex' 'topic-cursor' 'topic-llm' 'topic-mcp' 'topic-npx-skills' 'topic-openclaw' 'topic-skills-catalog' 'unrestrict':173 'upstream':106,140,212 'usag':158 'use':13,52,104 'virtual':84 'want':97 'work':18,57","prices":[{"id":"75a13f50-9bc8-4c85-8fcf-dbe2006eedf2","listingId":"f10ed816-828a-44ea-bf9c-a3422be1f5a7","amountUsd":"0","unit":"free","nativeCurrency":null,"nativeAmount":null,"chain":null,"payTo":null,"paymentMethod":"skill-free","isPrimary":true,"details":{"org":"agentskillexchange","category":"skills","install_from":"skills.sh"},"createdAt":"2026-05-18T13:18:56.373Z"}],"sources":[{"listingId":"f10ed816-828a-44ea-bf9c-a3422be1f5a7","source":"github","sourceId":"agentskillexchange/skills/run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock","sourceUrl":"https://github.com/agentskillexchange/skills/tree/main/skills/run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock","isPrimary":false,"firstSeenAt":"2026-05-18T13:18:56.373Z","lastSeenAt":"2026-05-18T19:12:09.718Z"}],"details":{"listingId":"f10ed816-828a-44ea-bf9c-a3422be1f5a7","quickStartSnippet":null,"exampleRequest":null,"exampleResponse":null,"schema":null,"openapiUrl":null,"agentsTxtUrl":null,"citations":[],"useCases":[],"bestFor":[],"notFor":[],"kindDetails":{"org":"agentskillexchange","slug":"run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock","github":{"repo":"agentskillexchange/skills","stars":8,"topics":["agent-skills","ai-agents","ai-tools","awesome-list","claude-code","codex","cursor","llm","mcp","npx-skills","openclaw","skills-catalog"],"license":"mit","html_url":"https://github.com/agentskillexchange/skills","pushed_at":"2026-05-18T19:02:17Z","description":"The open catalog of AI agent skills — 2,000+ security-scanned skills for Claude Code, Cursor, Codex, and more.","skill_md_sha":"8d4ac81310180eb2b15c3e82472fc16c325d646c","skill_md_path":"skills/run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock/SKILL.md","default_branch":"main","skill_tree_url":"https://github.com/agentskillexchange/skills/tree/main/skills/run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock"},"layout":"multi","source":"github","category":"skills","frontmatter":{"name":"Run agents in disposable microVM sandboxes with network allowlists and secret injection using Matchlock","description":"Launch risky agent work inside disposable microVMs when you need stronger isolation, sealed egress, and host-side secret injection instead of direct host access."},"skills_sh_url":"https://skills.sh/agentskillexchange/skills/run-agents-in-disposable-microvm-sandboxes-with-network-allowlists-and-secret-injection-using-matchlock"},"updatedAt":"2026-05-18T19:12:09.718Z"}}