Document scoped network policies for sbx#24978
Conversation
✅ Deploy Preview for docsdocker ready!
To edit notification comments on pull requests, go to your Netlify project configuration. |
dvdksn
force-pushed
the
docs/sbx-scoped-kit-policies
branch
2 times, most recently
from
373fd11 to
a12f5fd
Compare
Kit network policy docs did not cover sandbox-scoped rules or kit-level deniedDomains. Update the Sandboxes policy and kits pages with scoped policy examples, deniedDomains guidance, and a small policy page formatting fix. Co-Authored-By: Codex <noreply@openai.com>
dvdksn
force-pushed
the
docs/sbx-scoped-kit-policies
branch
from
a12f5fd to
dcffd19
Compare
docker-agent
left a comment
docker-agent
left a comment
There was a problem hiding this comment.
Assessment: 🔴 CRITICAL
The documentation changes in the markdown files look accurate and well-written — the new deniedDomains field, -g/--global flag, and sandbox-scoped policy examples are clearly documented. However, all four data/sbx_cli/*.yaml files modified in this PR are auto-generated CLI reference data (matching the data/*/*.yaml pattern flagged as auto-generated in the project guidelines). These files should be regenerated from the upstream CLI source rather than edited manually. See inline comments.
Findings summary:
- 🔴 4× HIGH —
data/sbx_cli/*.yamlfiles hand-edited (should be regenerated from upstream)
dvdksn
changed the title
docker-agent
left a comment
docker-agent
left a comment
There was a problem hiding this comment.
Assessment: 🟡 NEEDS ATTENTION
2 medium-severity documentation issues found in the new sbx policy ls output section. No high-severity issues, no vendored file edits flagged, no missing redirects.
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
4 participants
Summary
Document sandbox-scoped network policy behavior for Sandboxes kits, including kit-level
deniedDomains, scopedsbx policy [cmd] [sandbox]examples, and the updatedsbx policy lsoutput shape.Also fixes a small formatting issue in the policy reset section.
https://deploy-preview-24978--docsdocker.netlify.app/ai/sandboxes/security/policy/
Generated by Codex