generated: '2026-07-15' method: generated source: openapi/codesandbox-sdk-openapi.yml description: Recommended x-agentic-access execution contracts, classified heuristically from the OpenAPI. A governance starting point for exposing this API to AI agents — review and bind audience per deployment. See research/curity/agentic-governance/. summary: operations: 27 by_action_class: connected: 7 acting: 20 by_consequence: read: 7 write: 18 safety-critical: 2 human_in_the_loop_required: 2 operations: - path: /meta/info method: get operationId: meta/info x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /org/workspace method: post operationId: workspace/create x-agentic-access: action-class: acting consequence: write subject: required scope: - workspace:create audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /org/workspace/{team_id}/tokens method: post operationId: token/create x-agentic-access: action-class: acting consequence: write subject: required scope: - token:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /org/workspace/{team_id}/tokens/{token_id} method: patch operationId: token/update x-agentic-access: action-class: acting consequence: write subject: required scope: - token:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /sandbox method: get operationId: sandbox/list x-agentic-access: action-class: connected consequence: read subject: optional scope: - sandbox:read token: max-ttl: 3600 audit: none - path: /sandbox method: post operationId: sandbox/create x-agentic-access: action-class: acting consequence: write subject: required scope: - sandbox:create audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /sandbox/{id} method: get operationId: sandbox/get x-agentic-access: action-class: connected consequence: read subject: optional scope: - sandbox:read token: max-ttl: 3600 audit: none - path: /sandbox/{id}/fork method: post operationId: sandbox/fork x-agentic-access: action-class: acting consequence: write subject: required scope: - sandbox:create audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /sandbox/{id}/tokens method: get operationId: preview_token/list x-agentic-access: action-class: connected consequence: read subject: optional scope: - preview_token:manage token: max-ttl: 3600 audit: none - path: /sandbox/{id}/tokens method: post operationId: preview_token/create x-agentic-access: action-class: acting consequence: write subject: required scope: - preview_token:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /sandbox/{id}/tokens method: delete operationId: preview_token/revoke_all x-agentic-access: action-class: acting consequence: safety-critical subject: required scope: - preview_token:manage audience: null token: max-ttl: 120 exchange: true purpose-required: true proof-of-possession: true escalation: human-in-the-loop: required audit: required - path: /sandbox/{id}/tokens/{token_id} method: patch operationId: preview_token/update x-agentic-access: action-class: acting consequence: write subject: required scope: - preview_token:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /templates method: post operationId: templates/create x-agentic-access: action-class: acting consequence: write subject: required scope: - template:create audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /vm/alias/{namespace}/{alias} method: put operationId: vm/assign_tag_alias x-agentic-access: action-class: acting consequence: write subject: required scope: - vm:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /vm/clusters method: get operationId: vm/list_clusters x-agentic-access: action-class: connected consequence: read subject: optional scope: - vm:manage token: max-ttl: 3600 audit: none - path: /vm/running method: get operationId: vm/list_running_vms x-agentic-access: action-class: connected consequence: read subject: optional scope: - vm:manage token: max-ttl: 3600 audit: none - path: /vm/tag method: post operationId: vm/create_tag x-agentic-access: action-class: acting consequence: write subject: required scope: - vm:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /vm/{id} method: delete operationId: vm/delete x-agentic-access: action-class: acting consequence: write subject: required scope: - vm:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /vm/{id}/hibernate method: post operationId: vm/hibernate x-agentic-access: action-class: acting consequence: write subject: required scope: - vm:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /vm/{id}/hibernation_timeout method: put operationId: vm/update_hibernation_timeout x-agentic-access: action-class: acting consequence: write subject: required scope: - vm:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /vm/{id}/sessions method: post operationId: vm/create_session x-agentic-access: action-class: acting consequence: write subject: required scope: - vm:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /vm/{id}/shutdown method: post operationId: vm/shutdown x-agentic-access: action-class: acting consequence: safety-critical subject: required scope: - vm:manage audience: null token: max-ttl: 120 exchange: true purpose-required: true proof-of-possession: true escalation: human-in-the-loop: required audit: required - path: /vm/{id}/specs method: put operationId: vm/update_specs x-agentic-access: action-class: acting consequence: write subject: required scope: - vm:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /vm/{id}/start method: post operationId: vm/start x-agentic-access: action-class: acting consequence: write subject: required scope: - sandbox:read - vm:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /workspace/preview_hosts method: get operationId: preview_host/list x-agentic-access: action-class: connected consequence: read subject: optional scope: - vm:manage token: max-ttl: 3600 audit: none - path: /workspace/preview_hosts method: post operationId: preview_host/create x-agentic-access: action-class: acting consequence: write subject: required scope: - vm:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /workspace/preview_hosts method: put operationId: preview_host/update x-agentic-access: action-class: acting consequence: write subject: required scope: - vm:manage audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required