Startup News
Preferred on Google
Google News

Claude Agents Get Private Sandbox

Anthropic's Claude Managed Agents now offer self-hosted sandboxes and MCP tunnels, bringing agent execution and private service access under enterprise control.

2 min read
Claude Managed Agents in a private sandbox environment for secure tool execution
Securely run Claude Managed Agents in your own private sandbox with MCP tunnels.

Anthropic is giving enterprises more control over its Claude Managed Agents. Starting today, the AI agents can execute within self-hosted sandboxes, keeping compute and sensitive data within a company's own infrastructure or managed provider environments.

This update also introduces Model Context Protocol (MCP) tunnels, enabling agents to connect to private servers and internal services without exposing them to the public internet.

Related startups

Keep Agent Execution In-House

With self-hosted sandboxes, the sensitive files, packages, and services agents interact with remain within the enterprise's boundaries. While the core agent loop stays on Anthropic's infrastructure, the actual tool execution happens in a customer-controlled environment.

This allows organizations to leverage their existing network policies, audit logging, and security tooling. Compute resources are also under direct control, letting businesses allocate specific CPU, memory, and capacity for demanding tasks like builds or image generation.

Choose Your Sandbox Provider

Customers can bring their own sandbox clients or utilize supported providers. Cloudflare offers scalable sandboxes using microVMs and isolates with granular control over outbound requests and secrets injection. Daytona provides stateful, composable sandboxes accessible via SSH or authenticated URLs, designed for long-running tasks. Modal offers a cloud platform optimized for AI workloads, providing scalable compute and storage primitives. Vercel combines VM security with rapid startup times, integrating with cloud environments and managing credentials at the network boundary.

Secure Access to Private Services

MCP tunnels are designed for secure connectivity to internal resources. A deployed gateway establishes a single outbound connection, eliminating the need for inbound firewall rules or public endpoints. Traffic is encrypted end-to-end, ensuring that internal databases, private APIs, and knowledge bases can be safely leveraged as agent tools.

MCP tunnels are available in Managed Agents and the Messages API, managed via workspace settings in the Claude Console.

© 2026 StartupHub.ai. All rights reserved. Do not enter, scrape, copy, reproduce, or republish this article in whole or in part. Use as input to AI training, fine-tuning, retrieval-augmented generation, or any machine-learning system is prohibited without written license. Substantially-similar derivative works will be pursued to the fullest extent of applicable copyright, database, and computer-misuse laws. See our terms.
#Claude#Anthropic#AI Agents#Sandboxing#Cloudflare#Daytona#Modal#Vercel#Private Networks#MCP