vercel-sandbox
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: Executes shell commands and application scripts within an ephemeral Vercel Sandbox microVM to install system dependencies, manage Chromium, and perform browser automation tasks.
- [EXTERNAL_DOWNLOADS]: Fetches system libraries via the 'dnf' package manager and installs the 'agent-browser' utility from the npm registry inside the sandbox environment.
- [SAFE]: Accesses Vercel authentication tokens and project IDs through standard environment variables ('VERCEL_TOKEN', 'VERCEL_TEAM_ID', 'VERCEL_PROJECT_ID'), following secure practices for secret management rather than hardcoding credentials.
Audit Metadata