Crabbox docs

Provider Reference

Provider Reference

Read when:

  • choosing a Crabbox provider for a repo or one-off command;
  • debugging provider-specific provisioning, sync, or command execution;
  • changing provider registration, flags, config, or backend behavior.

#Provider model

Every provider registers a backend with one of three kinds:

  • SSH lease โ€” Crabbox provisions or connects to an SSH-reachable box and owns
  • the full lease lifecycle (warmup, sync, run, ssh, cleanup). Core does the rsync/command execution directly to the box over SSH.

  • Delegated run โ€” a sandbox or proof runner. The provider owns sync and
  • command execution end to end; there is no SSH lease and no local rsync.

  • Service control โ€” Crabbox can inspect or stop a provider-owned service,
  • but cannot execute arbitrary commands there.

SSH-lease providers further differ by how they reach the cloud:

  • Brokered cloud โ€” aws, azure, gcp, and hetzner can run through the
  • Crabbox coordinator on Cloudflare or Node/PostgreSQL. The coordinator owns cloud credentials, cost state, cleanup scheduling, and lease accounting. This is the normal shared-team path. Set with config set-broker and a broker URL (CRABBOX_COORDINATOR).

  • Direct cloud โ€” the same four providers without a configured broker, plus
  • cloud providers that never broker (e.g. digitalocean, linode, vultr, proxmox, hostinger, runpod, namespace-devbox, namespace-instance, semaphore, sprites, exe-dev, daytona, morph). The CLI talks to the provider API itself and cleans up best-effort via provider labels.

  • Static SSH โ€” ssh connects to a preexisting machine you supply; no
  • provisioning, no cleanup.

  • Local runtime โ€” local-container starts a labeled Linux container through
  • a Docker-compatible local runtime (Docker Desktop, OrbStack, Colima), apple-container uses Apple's native container runtime on Apple silicon macOS, apple-vz launches a headless Linux VM through Apple's Virtualization.framework, multipass launches local Ubuntu VMs through Canonical Multipass, tart runs macOS VMs on Apple Silicon via Cirrus Labs tart, and hyperv creates local Windows VMs through Microsoft Hyper-V.

  • Delegated sandbox โ€” managed sandbox/proof runners that execute remotely
  • without an SSH lease (e.g. blaxel, e2b, modal, islo, cloudflare, cloudflare-sandbox, azure-dynamic-sessions, docker-sandbox, smolvm). anthropic-sandbox-runtime is the local macOS/Linux delegated-run exception: Anthropic's srt executes on the current machine while still owning sync/run policy end to end. windows-sandbox is the local Windows delegated-run exception.

Select a provider per command with --provider <name> (env CRABBOX_PROVIDER), or set provider: <name> in config. Provider flags are registered before command parsing, so provider-specific flags work even when that provider is not the default. Most names accept aliases (listed below).

<!-- BEGIN GENERATED PROVIDER MATRIX -->

#Provider decision matrix

This table combines the live provider spec compiled into the CLI with curated selection metadata. Regenerate it with node scripts/generate-provider-matrix.mjs. scripts/check-docs.sh fails when provider registration, metadata, docs paths, or this generated table drift.

Current built-in surface: 68 providers (40 SSH lease, 26 delegated run, 2 service control).

Access terms:

  • Crabbox-managed SSH: SSH uses Crabbox's normal client; the sync column shows whether run and sync use that data plane.
  • Provider-specific SSH: an adapter-specific login helper, not the normal Crabbox data plane.
  • No SSH: the provider owns command execution end to end.
ProviderStatus / categoryExecution / accessTargets / substrateLocation / GPULifecycle / cleanupBest fitMain caveat
agent-sandboxbuilt-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, cleanup, run-sessionlinux; Kubernetes Agent Sandbox warm poolself-hosted; GPU: unknownAgent Sandbox SandboxClaim; owned SandboxClaim deleteKubernetes-hosted delegated Linux executionRequires kubectl, Agent Sandbox v0.5.0rc1 v1beta1 CRDs, a warm pool, explicit context, and RBAC
anthropic-sandbox-runtime (srt)built-in; delegated-run ยท local-sandboxNo SSH; provider-owned ยท direct only; features: nonelinux, macos; Anthropic Sandbox Runtime process sandboxlocal; GPU: nolocal runtime; one-shot process exitLocal policy-constrained command executionNo persistent lease, remote box, or SSH access
apple-container (apple, applecontainer)built-in; ssh-lease ยท local-runtimeCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, cache-volumelinux; Apple container runtimelocal; GPU: noCrabbox; container deleteLocal Linux containers on Apple siliconRequires Apple's container CLI and macOS
apple-machine (applemachine)built-in; delegated-run ยท local-vmNo SSH; provider-owned ยท direct only; features: run-sessionlinux; Apple container machinelocal; GPU: noApple runtime; machine deleteLocal delegated Linux machine executionDelegated execution, not a normal SSH lease
apple-vz (applevz)built-in; ssh-lease ยท local-vmCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; Apple Virtualization.framework VMlocal; GPU: noCrabbox; VM deleteHeadless Linux ARM64 VM on Apple siliconApple silicon macOS only
ascii-box (ascii, asciibox)built-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-synclinux; ASCII Box managed Linux boxprovider-managed; GPU: unknownprovider CLI; provider deleteManaged Linux box over SSHRequires the ASCII Box CLI and account
awsbuilt-in; ssh-lease ยท brokerable-cloudCrabbox-managed SSH; crabbox-sync ยท coordinator optional; features: ssh, crabbox-sync, cleanup, desktop, browser, codelinux, windows/normal, windows/wsl2, macos; EC2 VM or dedicated Mac hostcloud; GPU: optionalCrabbox or coordinator; instance terminationBroad Linux, Windows, WSL2, and macOS cloud coverageLargest configuration, quota, and cost surface
aws-lambda-microvmbuilt-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, cleanup, run-session, pause-resumelinux; AWS Lambda Firecracker MicroVMcloud; GPU: noCrabbox and Lambda MicroVM API; MicroVM terminationIsolated stateful ARM64 command executionRequires a compatible Crabbox runner image; launch Regions and lifetime are limited
azurebuilt-in; ssh-lease ยท brokerable-cloudCrabbox-managed SSH; crabbox-sync ยท coordinator optional; features: ssh, crabbox-sync, cleanup, desktop, browser, code, tailscalelinux, windows/normal, windows/wsl2; Azure Virtual Machinecloud; GPU: optionalCrabbox or coordinator; VM and owned resource deleteLinux or Windows workloads in AzureShared resource and identity setup is substantial
azure-dynamic-sessionsbuilt-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, run-sessionlinux; Azure Container Apps Dynamic Sessioncloud; GPU: noAzure session pool; provider session expiryShort delegated container sessions in AzureNo Crabbox-managed SSH lease
blacksmith-testbox (blacksmith)built-in; delegated-run ยท ci-proof-runnerNo SSH; provider-owned ยท direct only; features: cache-volume, run-proof, run-session, run-artifactslinux; Blacksmith Testbox runnerprovider-managed; GPU: noBlacksmith; provider session cleanupCI reproduction with proof and reusable sessionsExecution and artifacts follow the Testbox contract
blaxelbuilt-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, cleanup, run-sessionlinux; Blaxel managed Linux sandboxprovider-managed; GPU: unknownBlaxel; owned sandbox deleteManaged delegated Linux sandbox executionRequires Blaxel API credentials and workspace access
cloudflare (cf)built-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, cleanup, run-sessionlinux; Cloudflare Containercloud; GPU: noCloudflare Worker; container deleteFast delegated Linux container executionRequires Worker deployment and container availability
cloudflare-dynamic-workers (cf-dynamic, cfdw)built-in; delegated-run ยท delegated-sandboxNo SSH; provider-owned ยท direct only; features: cleanup, module-run, run-sessionworker-runtime; Cloudflare Dynamic Workercloud; GPU: noCloudflare loader Worker; terminal metadata and local claim removalHosted Worker module executionNo shell, SSH, or filesystem sync; Dynamic Workers must be enabled
cloudflare-sandboxbuilt-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, cleanuplinux; Cloudflare Sandbox bridgecloud; GPU: noCloudflare Sandbox bridge; sandbox deleteCloudflare Sandbox Linux command execution through a bridgeRequires a configured bridge URL; no SSH, browser, Tailscale, URL sessions, mounts, or checkpoints
coderbuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; Coder workspaceprovider-managed; GPU: unknownCoder CLI; workspace stop or deleteCoder-backed Linux workspace over SSH proxyRequires the coder CLI, login, template access, and workspace quota
codesandbox (csb, code-sandbox)built-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, cleanup, pause-resume, run-sessionlinux; CodeSandbox SDK sandboxprovider-managed; GPU: noCodeSandbox; sandbox deleteManaged CodeSandbox Linux development environmentsRequires env-only SDK auth and a local Node bridge
daytonabuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; archive-sync ยท direct only; features: ssh, crabbox-synclinux; Daytona sandboxprovider-managed; GPU: unknownDaytona; sandbox deleteManaged development sandbox with delegated archive sync and executionSSH access is short-lived; run and sync use Daytona toolbox APIs
digitaloceanbuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, tailscalelinux; DigitalOcean Dropletcloud; GPU: optionalCrabbox; Droplet and key deleteSimple direct Linux VMDirect-only; no coordinator scheduling
docker-sandboxbuilt-in; delegated-run ยท local-sandboxNo SSH; provider-owned ยท direct only; features: run-session, mcp-attachmentslinux; Docker Sandboxlocal; GPU: noDocker sbx CLI; sandbox deleteLocal delegated sandbox with reusable session handlesRequires the standalone sbx CLI
e2bbuilt-in; delegated-run ยท delegated-sandboxNo SSH; provider-owned ยท direct only; features: url-bridge, run-sessionlinux; E2B Firecracker sandboxprovider-managed; GPU: noE2B; sandbox kill or expiryHosted ephemeral code sandboxURL bridge is provider-specific; no normal SSH lease
exe-dev (exe, exedev)built-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-synclinux; exe.dev managed VMprovider-managed; GPU: unknownexe.dev; provider lifecycleFast managed Linux VM exposed over SSHPublic SSH only; provider CLI owns auth
external (exec-provider)built-in; ssh-lease ยท external-providerCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, desktop, browser, codelinux; Configured executable contractbyo; GPU: unknownexternal executable; contract-definedPrivate or organization-specific provider integrationSafety and semantics depend on the configured executable
fastapi-cloud (fastapicloud, fastapi)specialized; service-control ยท service-controlSSH not applicable; none ยท direct only; features: nonelinux; FastAPI Cloud appcloud; GPU: unknownFastAPI Cloud; not exposedInspecting FastAPI Cloud app deployment readinessCannot execute arbitrary Crabbox run commands or stop apps
firecrackerbuilt-in; ssh-lease ยท self-hosted-virtualizationCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; Firecracker microVMself-hosted; GPU: noCrabbox direct lifecycle; microVM and local artifact cleanupSelf-hosted Linux KVM host with prepared Firecracker kernel, rootfs, and CNIRequires Linux, /dev/kvm, Firecracker assets, and a working CNI setup on the host
freestylebuilt-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, run-sessionlinux; Freestyle VMprovider-managed; GPU: unknownFreestyle; provider VM cleanupHosted delegated Linux VM executionNo Crabbox-managed SSH path
gcp (google, google-cloud)built-in; ssh-lease ยท brokerable-cloudCrabbox-managed SSH; crabbox-sync ยท coordinator optional; features: ssh, crabbox-sync, cleanup, tailscalelinux; Google Compute Engine VMcloud; GPU: optionalCrabbox or coordinator; instance and firewall cleanupLinux compute with broad machine selectionProject, IAM, quota, and firewall setup required
hetznerbuilt-in; ssh-lease ยท brokerable-cloudCrabbox-managed SSH; crabbox-sync ยท coordinator optional; features: ssh, crabbox-sync, cleanup, desktop, browser, code, tailscalelinux; Hetzner Cloud servercloud; GPU: noCrabbox or coordinator; server deleteCost-effective high-CPU Linux VMLinux-only and capacity varies by location
hostingerbuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; Hostinger VPScloud; GPU: noHostinger subscription; stop onlyDirect Linux VPS with persistent subscriptionPurchase needs opt-in and release does not cancel billing
hypervbuilt-in; ssh-lease ยท local-vmCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanupwindows/normal; Microsoft Hyper-V VMlocal; GPU: noCrabbox; VM deleteLocal native Windows VMWindows host with Hyper-V required
incusbuilt-in; ssh-lease ยท self-hosted-virtualizationCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; Incus container or VMself-hosted; GPU: optionalCrabbox; instance deleteSelf-hosted Linux containers or VMsRequires an accessible Incus environment
islobuilt-in; delegated-run ยท delegated-sandboxProvider-specific SSH; provider-owned ยท direct only; features: ssh, url-bridge, run-session, tailscale, pause-resume, run-downloadslinux; Islo sandboxprovider-managed; GPU: unknownIslo; sandbox deleteHosted delegated execution with keep, pause, and SSH helperSSH feature is not Crabbox-managed sync/run
kubevirt (kubernetes-vm)built-in; ssh-lease ยท self-hosted-virtualizationCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, desktop, browser, codelinux; KubeVirt VirtualMachineself-hosted; GPU: optionalCrabbox on Kubernetes; VirtualMachine deleteKubernetes-hosted Linux VMNeeds KubeVirt, virtctl, and an SSH-ready template
lambdabuilt-in; ssh-lease ยท gpu-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, tailscalelinux; Lambda Cloud on-demand instancecloud; GPU: yesCrabbox; instance and key terminationDirect GPU-backed Linux workload over SSHDirect-only; billing, quota, and capacity are account-owned
linodebuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, tailscalelinux; Linode instancecloud; GPU: optionalCrabbox; instance and key deleteStraightforward direct Linux VMDirect-only; optional firewall must already exist
local-container (docker, container, local-docker)built-in; ssh-lease ยท local-runtimeCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, desktop, browser, cache-volume, workspace-checkpoint, workspace-forklinux; Docker-compatible containerlocal; GPU: optionalCrabbox; container deleteFast local Linux test environmentIsolation follows the local container runtime
modalbuilt-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, run-sessionlinux; Modal Sandboxprovider-managed; GPU: optionalModal; sandbox terminationHosted Python or GPU-oriented delegated workloadsProvider owns execution; no normal SSH lease
morphbuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-synclinux; Morph Cloud VMprovider-managed; GPU: unknownMorph; pause by default; optional deleteManaged Linux VM over SSHRelease retains the paused instance unless deleteOnRelease is enabled
multipass (mp, canonical-multipass)built-in; ssh-lease ยท local-vmCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, cache-volumelinux; Canonical Multipass VMlocal; GPU: noCrabbox; VM delete and purgePortable local Ubuntu VMUbuntu-only first implementation
mxc (execution-container)built-in; delegated-run ยท local-sandboxNo SSH; provider-owned ยท direct only; features: nonewindows/normal; Microsoft Execution Containerlocal; GPU: noWindows runtime; container terminationLocal isolated Windows command executionWindows host and execution-container support required
namespace-devbox (namespace, namespace-devboxes)built-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; Namespace Devboxprovider-managed; GPU: unknownNamespace devbox CLI; stop by default; optional deleteFast managed development box over SSHUses the devbox product, not Namespace Compute instances
namespace-instance (namespace-compute)built-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; Namespace Compute instanceprovider-managed; GPU: unknownNamespace nsc CLI; instance deleteShort-lived managed Linux compute over SSHRequires the nsc CLI and direct provider credentials
nebiusbuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; Nebius Compute VMcloud; GPU: optionalNebius CLI; owned VM deleteDirect Linux VM lease with optional GPU selectionRequires Nebius CLI auth, project/subnet setup, quota, and public SSH
nvidia-brev (brev, nvidia)built-in; ssh-lease ยท gpu-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; NVIDIA Brev GPU workspaceprovider-managed; GPU: yesNVIDIA Brev CLI; delete by default; optional stopManaged NVIDIA GPU workspace over SSHRequires Brev CLI auth, quota, and available GPU capacity
opencomputer (oc, open-computer)built-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, run-sessionlinux; OpenComputer Linux VMprovider-managed; GPU: unknownOpenComputer; VM deleteHosted delegated Linux VM executionREST execution contract, not an SSH lease
opensandboxbuilt-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, cleanup, run-sessionlinux; OpenSandbox sandboxprovider-managed; GPU: unknownOpenSandbox; sandbox deleteHosted delegated sandbox through an open SDKRequires compatible OpenSandbox control and exec endpoints
ovhbuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, tailscalelinux; OVHcloud Public Cloud instancecloud; GPU: optionalCrabbox; instance, key, and local claim deleteOVHcloud Public Cloud Linux VMDirect-only; credentials use OVH signed requests and local claims
parallelsbuilt-in; ssh-lease ยท local-vmCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, desktop, browser, code, workspace-checkpoint, workspace-fork, workspace-restore, provider-snapshotlinux, macos, windows/normal, windows/wsl2; Parallels linked-clone VMlocal; GPU: noCrabbox; clone deleteLocal macOS, Linux, or Windows VM with snapshotsRequires prepared Parallels source VMs and SSH
phala (phala-cloud, dstack)built-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; Phala Cloud confidential Intel TDX CVMprovider-managed; GPU: noPhala phala CLI; CVM deleteShort-lived confidential Linux compute over SSHRequires the phala CLI and its stored auth; verifies Intel TDX attestation by default (needs outbound Intel PCS network; --phala-skip-attestation to opt out)
proxmoxbuilt-in; ssh-lease ยท self-hosted-virtualizationCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; Proxmox VE QEMU cloneself-hosted; GPU: optionalCrabbox; VM deleteSelf-hosted Linux VM fleetNeeds a prepared template, guest agent, and network
railway (rail, railwayapp)specialized; service-control ยท service-controlSSH not applicable; none ยท direct only; features: url-bridgelinux; Railway servicecloud; GPU: unknownRailway; service stop onlyInspecting or stopping an existing Railway serviceCannot execute arbitrary Crabbox run commands
runpod (run-pod, runpodio)built-in; ssh-lease ยท gpu-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-synclinux; RunPod GPU podcloud; GPU: yesRunPod; pod releaseGPU-backed Linux workload over public SSHCapacity, GPU pricing, and public SSH vary
scalewaybuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, tailscalelinux; Scaleway Instancecloud; GPU: optionalCrabbox; instance and managed key deleteDirect Linux VM on Scaleway InstancesDirect-only; security groups must already allow SSH
semaphore (sem)built-in; ssh-lease ยท ci-proof-runnerCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-synclinux; Semaphore CI jobprovider-managed; GPU: optionalSemaphore; job stopDebugging in the same image and secret plane as CIDepends on debug SSH metadata from the job
smolvm (smol, smolmachines, smolfleet)built-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, run-sessionlinux; Smol Machines microVMprovider-managed; GPU: nosmolfleet; microVM deleteLightweight hosted microVM executionDelegated execution through smolfleet
spritesbuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-synclinux; Sprite microVMprovider-managed; GPU: noSprites; sprite deleteFast Linux microVM over provider SSH proxySSH transport depends on sprite proxy
ssh (static, static-ssh)built-in; ssh-lease ยท byo-sshCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, desktop, browser, codelinux, windows/normal, windows/wsl2, macos; Existing SSH hostbyo; GPU: optionaluser; noneBring-your-own persistent Linux, macOS, or Windows hostCrabbox does not provision or clean up the host
superservebuilt-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, cleanup, run-sessionlinux; Superserve hosted sandboxprovider-managed; GPU: unknownSuperserve; sandbox deleteHosted delegated Linux sandboxRequires both control-plane and data-plane access
tart (local-tart, macos-vm)built-in; ssh-lease ยท local-vmCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, desktopmacos; Tart Apple silicon VMlocal; GPU: noCrabbox; VM deleteLocal macOS VM testingApple silicon host and prepared Tart image required
tencentcloud (tencent, tencent-cvm, cvm)built-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanup, tailscalelinux; Tencent Cloud CVM instancecloud; GPU: optionalCrabbox; instance terminationLinux SSH leases on Tencent Cloud CVMDirect-only; requires CVM image, VPC/subnet/security-group planning, and Tencent Cloud API credentials
tenkibuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-synclinux; Tenki sandbox VMprovider-managed; GPU: unknownTenki; sandbox releaseManaged Linux sandbox with SSH proxyGateway auth uses Tenki-managed key and certificate files
tensorlake (tl, tensorlake-sbx)built-in; delegated-run ยท delegated-sandboxNo SSH; provider-owned ยท direct only; features: run-sessionlinux; Tensorlake Firecracker sandboxprovider-managed; GPU: unknownTensorlake; provider sandbox cleanupHosted Firecracker-backed delegated executionDoes not expose raw Firecracker provisioning
upstash-box (upstash, box, upstashbox)built-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, run-sessionlinux; Upstash Box sandboxprovider-managed; GPU: noUpstash; sandbox cleanupHosted short-lived delegated sandboxNo normal SSH access or coordinator routing
vercel-sandboxbuilt-in; delegated-run ยท delegated-sandboxNo SSH; archive-sync ยท direct only; features: archive-sync, cleanup, run-sessionlinux; Vercel Sandbox microVMprovider-managed; GPU: noVercel Sandbox; sandbox deleteHosted delegated Linux microVM executionRequires SDK bridge support and Vercel Sandbox auth
vultrbuilt-in; ssh-lease ยท direct-cloudCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; Vultr instancecloud; GPU: optionalCrabbox; instance and key deleteDirect Linux VM on VultrDirect-only; firewall groups and VPCs must already exist
wandb (weights-and-biases)built-in; delegated-run ยท gpu-cloudNo SSH; provider-owned ยท direct only; features: run-sessionlinux; Weights & Biases run sandboxprovider-managed; GPU: optionalWeights & Biases; run terminationDelegated ML or GPU run environmentExecution follows the W&B run contract
windows-sandbox (wsb, windows-sandbox-provider)built-in; delegated-run ยท local-sandboxNo SSH; archive-sync ยท direct only; features: archive-syncwindows/normal; Windows Sandboxlocal; GPU: optionalWindows host; sandbox closeDisposable native Windows command executionRequires Windows Sandbox and local host automation
xcp-ngbuilt-in; ssh-lease ยท self-hosted-virtualizationCrabbox-managed SSH; crabbox-sync ยท direct only; features: ssh, crabbox-sync, cleanuplinux; XCP-ng VM cloneself-hosted; GPU: optionalCrabbox; VM deleteSelf-hosted Linux VM pool over XAPINormal leases require prepared Linux templates

<!-- END GENERATED PROVIDER MATRIX -->

#Notes on families and capabilities

  • The Azure family ships two backends: the default VM SSH lease
  • (provider: azure) and the delegated azure-dynamic-sessions provider (Azure Container Apps dynamic sessions). They share the azure family but are distinct adapters.

  • The Cloudflare family ships three delegated backends: cloudflare for
  • Cloudflare Containers and Linux commands, cloudflare-dynamic-workers for Worker-runtime module execution, and cloudflare-sandbox for Cloudflare Sandbox bridge-backed Linux command execution. They are separate providers with separate runner configs and token env vars.

  • Tensorlake is Crabbox's Firecracker-backed delegated provider. The separate
  • firecracker provider is the self-hosted Linux KVM surface with direct lifecycle, normal Crabbox SSH sync/run, and local artifact cleanup.

  • Docker Sandbox is a delegated-run provider driven by the standalone sbx
  • CLI. It has no aliases, so docker, container, and local-docker remain Local Container aliases.

  • OpenSandbox is a delegated-run provider using the OpenSandbox Go SDK for
  • lifecycle, file upload, and execd command execution. It has no aliases in v1, so osb remains reserved.

  • Superserve is a delegated-run provider using Superserve's control plane for
  • sandbox lifecycle and a sandbox data plane for file upload and command execution. It has no aliases in v1.

  • Vercel Sandbox is a delegated-run provider using Vercel's Sandbox SDK bridge
  • for lifecycle, archive upload, command execution, session handles, and deletion. The sandbox CLI is used only for login/readiness checks and manual debugging because Crabbox does not rely on it as a stable lifecycle JSON contract.

  • Anthropic Sandbox Runtime is a local one-shot delegated-run provider driven
  • by the standalone srt CLI. It has no SSH lease, no persistent lifecycle, and no remote sync surface.

  • ASCII Box is an SSH-lease provider. Crabbox uses the documented box --json
  • CLI for lifecycle/status/delete, then runs normal sync and commands over SSH.

  • XCP-ng is a direct SSH-lease provider for a self-hosted XCP-ng pool on
  • dedicated 64-bit x86 server-class hardware. XCP-ng itself can host Linux, Windows, and BSD guests, but Crabbox's current xcp-ng adapter provisions normal leases from Linux templates only. Crabbox talks to XAPI from the CLI, uses VM.copy plus VM.provision, injects cloud-init through a FAT16 CIDATA config drive, optionally moves all VIFs to the configured network, and uses guest metrics for IPv4 discovery. See the provider page for the separate Windows x86_64/x64 ISO E2E harness, and use the Tart provider on Apple hardware for macOS VM workflows.

  • incus is a direct Linux SSH-lease provider that stores Crabbox ownership and
  • expiry metadata in Incus user.crabbox.* instance config keys. Real Apple Silicon smoke still follows the separate local testbed contract documented on the provider page.

  • DigitalOcean is a direct-only Linux Droplet provider. It uses
  • DIGITALOCEAN_TOKEN, per-lease SSH keys, and Crabbox-owned flat tags; it does not run through the coordinator.

  • Linode is a direct-only Linux instance provider. It uses LINODE_TOKEN,
  • per-lease SSH keys, metadata user-data, optional attachment to an existing firewall, and Crabbox-owned tags; it does not run through the coordinator.

  • Vultr is a direct-only Linux instance provider. It uses VULTR_API_KEY,
  • per-lease SSH keys, cloud-init user data, optional attachment to existing firewall groups and VPCs, and Crabbox-owned tags; it does not run through the coordinator.

  • Hostinger is a direct-only Linux VPS provider. Purchases require explicit
  • opt-in; release stops the VPS but does not cancel its subscription.

  • Capability flags (--desktop, --browser, --code, VNC) are validated
  • against each provider's declared feature set. Among the SSH-lease providers, desktop/browser/code surfaces are richest on aws, azure, hetzner, parallels, ssh, and local-container; multipass exposes local VM SSH and sync only in its first implementation, apple-vz does the same through a local helper and host-local SSH proxy, and most direct sandbox/delegated providers expose ssh and Crabbox sync only.

  • Actions runner hydration requires a normal SSH lease on Linux. Use a
  • Linux-capable SSH-lease provider for that path.

crabbox warmup --provider aws --class beast
crabbox run --provider hetzner -- pnpm test
crabbox run --provider digitalocean --type s-1vcpu-1gb -- pnpm test
crabbox run --provider linode --type g6-standard-1 -- pnpm test
crabbox run --provider vultr --type vc2-1c-1gb -- pnpm test
crabbox doctor --provider hostinger
crabbox run --provider docker -- pnpm test
crabbox run --provider docker-sandbox -- go test ./...
crabbox run --provider apple-vz -- go test ./...
crabbox run --provider multipass -- go test ./...
crabbox run --provider blacksmith-testbox --id tbx_123 -- pnpm test
crabbox run --provider namespace-devbox --id blue-lobster -- pnpm test

#Implementation

Provider implementation lives under internal/providers/<name>; registration is in internal/providers/all/all.go. Command orchestration and the renderer surface stay in internal/cli.

Related docs: