Run AI agents in isolated microVMs from your desktop. Local-only — no cloud, credentials stay in your OS keychain.

Download v0.1.0 View on GitHub →

What It Is

Sandboxed AI agents

Each agent session runs inside a Docker Sandbox microVM with hypervisor-level isolation. Agents read and modify your project files, but cannot reach outside their declared network policy.

Unified management

Create personas for Claude Code, Codex, GitHub Copilot, Kiro, Cursor, Gemini, and custom agents. Configure workspaces, network policies, per-agent memory, and MCP server integrations from one UI.

Credential security

API keys and OAuth tokens are stored in your OS keychain via sbx secret — never written to disk or the application database. Beachead never sees your credentials in plaintext.

Download

Latest release: v0.1.0
Note: Binaries for v0.1.0 are not code-signed. On macOS, right-click the .dmg and choose Open to bypass Gatekeeper. On Windows, click "More info → Run anyway" if Defender SmartScreen appears. Linux binaries have no signing requirement.

No release assets found. Check the GitHub Releases page for the latest downloads.

Verify your download

macOS / Linux

echo "<sha256>  <filename>" | sha256sum --check

Windows (PowerShell)

Get-FileHash <filename> | Format-List

Prefer to build yourself? Build from source →

Requirements

Dependency Purpose Install
Docker Engine Container runtime for sandboxes and memory containers docs.docker.com
Docker Sandboxes (sbx) CLI for managing sandbox microVMs github.com/docker/sbx-releases
Git optional Required for Repo Sync features git-scm.com