SurfSense/surfsense_backend/app/agents/new_chat/sandbox.py

"""
Daytona sandbox provider for SurfSense deep agent.

Manages the lifecycle of sandboxed code execution environments.
Each conversation thread gets its own isolated sandbox instance
via the Daytona cloud API, identified by labels.
"""

from __future__ import annotations

import asyncio
import logging
import os

from daytona import CreateSandboxFromSnapshotParams, Daytona, DaytonaConfig, SandboxState
from deepagents.backends.protocol import ExecuteResponse
from langchain_daytona import DaytonaSandbox

logger = logging.getLogger(__name__)


class _TimeoutAwareSandbox(DaytonaSandbox):
    """DaytonaSandbox subclass that accepts the per-command *timeout*
    kwarg required by the deepagents middleware.

    The upstream ``langchain-daytona`` ``execute()`` ignores timeout,
    so deepagents raises *"This sandbox backend does not support
    per-command timeout overrides"* on every first call.  This thin
    wrapper forwards the parameter to the Daytona SDK.
    """

    def execute(self, command: str, *, timeout: int | None = None) -> ExecuteResponse:
        t = timeout if timeout is not None else self._timeout
        result = self._sandbox.process.exec(command, timeout=t)
        return ExecuteResponse(
            output=result.result,
            exit_code=result.exit_code,
            truncated=False,
        )

    async def aexecute(self, command: str, *, timeout: int | None = None) -> ExecuteResponse:  # type: ignore[override]
        return await asyncio.to_thread(self.execute, command, timeout=timeout)

_daytona_client: Daytona | None = None
THREAD_LABEL_KEY = "surfsense_thread"


def is_sandbox_enabled() -> bool:
    return os.environ.get("DAYTONA_SANDBOX_ENABLED", "FALSE").upper() == "TRUE"


def _get_client() -> Daytona:
    global _daytona_client
    if _daytona_client is None:
        config = DaytonaConfig(
            api_key=os.environ.get("DAYTONA_API_KEY", ""),
            api_url=os.environ.get("DAYTONA_API_URL", "https://app.daytona.io/api"),
            target=os.environ.get("DAYTONA_TARGET", "us"),
        )
        _daytona_client = Daytona(config)
    return _daytona_client


def _find_or_create(thread_id: str) -> _TimeoutAwareSandbox:
    """Find an existing sandbox for *thread_id*, or create a new one.

    If an existing sandbox is found but is stopped/archived, it will be
    restarted automatically before returning.
    """
    client = _get_client()
    labels = {THREAD_LABEL_KEY: thread_id}

    try:
        sandbox = client.find_one(labels=labels)
        logger.info(
            "Found existing sandbox %s (state=%s)", sandbox.id, sandbox.state
        )

        if sandbox.state in (
            SandboxState.STOPPED,
            SandboxState.STOPPING,
            SandboxState.ARCHIVED,
        ):
            logger.info("Starting stopped sandbox %s …", sandbox.id)
            sandbox.start(timeout=60)
            logger.info("Sandbox %s is now started", sandbox.id)
        elif sandbox.state in (SandboxState.ERROR, SandboxState.BUILD_FAILED, SandboxState.DESTROYED):
            logger.warning(
                "Sandbox %s in unrecoverable state %s — creating a new one",
                sandbox.id,
                sandbox.state,
            )
            sandbox = client.create(
                CreateSandboxFromSnapshotParams(language="python", labels=labels)
            )
            logger.info("Created replacement sandbox: %s", sandbox.id)
        elif sandbox.state != SandboxState.STARTED:
            sandbox.wait_for_sandbox_start(timeout=60)

    except Exception:
        logger.info("No existing sandbox for thread %s — creating one", thread_id)
        sandbox = client.create(
            CreateSandboxFromSnapshotParams(language="python", labels=labels)
        )
        logger.info("Created new sandbox: %s", sandbox.id)

    return _TimeoutAwareSandbox(sandbox=sandbox)


async def get_or_create_sandbox(thread_id: int | str) -> _TimeoutAwareSandbox:
    """Get or create a sandbox for a conversation thread.

    Uses the thread_id as a label so the same sandbox persists
    across multiple messages within the same conversation.

    Args:
        thread_id: The conversation thread identifier.

    Returns:
        DaytonaSandbox connected to the sandbox.
    """
    return await asyncio.to_thread(_find_or_create, str(thread_id))


async def delete_sandbox(thread_id: int | str) -> None:
    """Delete the sandbox for a conversation thread."""

    def _delete() -> None:
        client = _get_client()
        labels = {THREAD_LABEL_KEY: str(thread_id)}
        try:
            sandbox = client.find_one(labels=labels)
            client.delete(sandbox)
            logger.info("Sandbox deleted: %s", sandbox.id)
        except Exception:
            logger.warning(
                "Failed to delete sandbox for thread %s",
                thread_id,
                exc_info=True,
            )

    await asyncio.to_thread(_delete)
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00			`"""`
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`Daytona sandbox provider for SurfSense deep agent.`
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00
			`Manages the lifecycle of sandboxed code execution environments.`
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`Each conversation thread gets its own isolated sandbox instance`
			`via the Daytona cloud API, identified by labels.`
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00			`"""`

$DESKTOP-RTLN3BA\$punk$ chore: update microsandbox command to bind to all interfaces and add compatibility shims for missing types 2026-02-24 23:53:03 -08:00			`from __future__ import annotations`

$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`import asyncio`
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00			`import logging`
			`import os`

$DESKTOP-RTLN3BA\$punk$ feat: added file handling for daytona sandboxes - Added _TimeoutAwareSandbox class to handle per-command timeouts in DaytonaSandbox. - Updated _find_or_create function to manage sandbox states and restart stopped/archived sandboxes. - Enhanced get_or_create_sandbox to return the new sandbox class. - Introduced file download functionality in the frontend, allowing users to download generated files from the sandbox. - Updated system prompt to include guidelines for sharing generated files. 2026-02-25 01:36:30 -08:00			`from daytona import CreateSandboxFromSnapshotParams, Daytona, DaytonaConfig, SandboxState`
			`from deepagents.backends.protocol import ExecuteResponse`
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`from langchain_daytona import DaytonaSandbox`
$DESKTOP-RTLN3BA\$punk$ chore: update microsandbox command to bind to all interfaces and add compatibility shims for missing types 2026-02-24 23:53:03 -08:00
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`logger = logging.getLogger(__name__)`
$DESKTOP-RTLN3BA\$punk$ chore: update microsandbox command to bind to all interfaces and add compatibility shims for missing types 2026-02-24 23:53:03 -08:00
$DESKTOP-RTLN3BA\$punk$ feat: added file handling for daytona sandboxes - Added _TimeoutAwareSandbox class to handle per-command timeouts in DaytonaSandbox. - Updated _find_or_create function to manage sandbox states and restart stopped/archived sandboxes. - Enhanced get_or_create_sandbox to return the new sandbox class. - Introduced file download functionality in the frontend, allowing users to download generated files from the sandbox. - Updated system prompt to include guidelines for sharing generated files. 2026-02-25 01:36:30 -08:00
			`class _TimeoutAwareSandbox(DaytonaSandbox):`
			`"""DaytonaSandbox subclass that accepts the per-command timeout`
			`kwarg required by the deepagents middleware.`

			The upstream ``langchain-daytona`` ``execute()`` ignores timeout,
			`so deepagents raises *"This sandbox backend does not support`
			`per-command timeout overrides"* on every first call. This thin`
			`wrapper forwards the parameter to the Daytona SDK.`
			`"""`

			`def execute(self, command: str, *, timeout: int \| None = None) -> ExecuteResponse:`
			`t = timeout if timeout is not None else self._timeout`
			`result = self._sandbox.process.exec(command, timeout=t)`
			`return ExecuteResponse(`
			`output=result.result,`
			`exit_code=result.exit_code,`
			`truncated=False,`
			`)`

			`async def aexecute(self, command: str, *, timeout: int \| None = None) -> ExecuteResponse: # type: ignore[override]`
			`return await asyncio.to_thread(self.execute, command, timeout=timeout)`

$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`_daytona_client: Daytona \| None = None`
			`THREAD_LABEL_KEY = "surfsense_thread"`
$DESKTOP-RTLN3BA\$punk$ chore: update microsandbox command to bind to all interfaces and add compatibility shims for missing types 2026-02-24 23:53:03 -08:00

$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`def is_sandbox_enabled() -> bool:`
			`return os.environ.get("DAYTONA_SANDBOX_ENABLED", "FALSE").upper() == "TRUE"`
$DESKTOP-RTLN3BA\$punk$ chore: update microsandbox command to bind to all interfaces and add compatibility shims for missing types 2026-02-24 23:53:03 -08:00
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`def _get_client() -> Daytona:`
			`global _daytona_client`
			`if _daytona_client is None:`
			`config = DaytonaConfig(`
			`api_key=os.environ.get("DAYTONA_API_KEY", ""),`
			`api_url=os.environ.get("DAYTONA_API_URL", "https://app.daytona.io/api"),`
			`target=os.environ.get("DAYTONA_TARGET", "us"),`
			`)`
			`_daytona_client = Daytona(config)`
			`return _daytona_client`
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00

$DESKTOP-RTLN3BA\$punk$ feat: added file handling for daytona sandboxes - Added _TimeoutAwareSandbox class to handle per-command timeouts in DaytonaSandbox. - Updated _find_or_create function to manage sandbox states and restart stopped/archived sandboxes. - Enhanced get_or_create_sandbox to return the new sandbox class. - Introduced file download functionality in the frontend, allowing users to download generated files from the sandbox. - Updated system prompt to include guidelines for sharing generated files. 2026-02-25 01:36:30 -08:00			`def _find_or_create(thread_id: str) -> _TimeoutAwareSandbox:`
			`"""Find an existing sandbox for thread_id, or create a new one.`

			`If an existing sandbox is found but is stopped/archived, it will be`
			`restarted automatically before returning.`
			`"""`
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`client = _get_client()`
			`labels = {THREAD_LABEL_KEY: thread_id}`
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`try:`
			`sandbox = client.find_one(labels=labels)`
$DESKTOP-RTLN3BA\$punk$ feat: added file handling for daytona sandboxes - Added _TimeoutAwareSandbox class to handle per-command timeouts in DaytonaSandbox. - Updated _find_or_create function to manage sandbox states and restart stopped/archived sandboxes. - Enhanced get_or_create_sandbox to return the new sandbox class. - Introduced file download functionality in the frontend, allowing users to download generated files from the sandbox. - Updated system prompt to include guidelines for sharing generated files. 2026-02-25 01:36:30 -08:00			`logger.info(`
			`"Found existing sandbox %s (state=%s)", sandbox.id, sandbox.state`
			`)`

			`if sandbox.state in (`
			`SandboxState.STOPPED,`
			`SandboxState.STOPPING,`
			`SandboxState.ARCHIVED,`
			`):`
			`logger.info("Starting stopped sandbox %s …", sandbox.id)`
			`sandbox.start(timeout=60)`
			`logger.info("Sandbox %s is now started", sandbox.id)`
			`elif sandbox.state in (SandboxState.ERROR, SandboxState.BUILD_FAILED, SandboxState.DESTROYED):`
			`logger.warning(`
			`"Sandbox %s in unrecoverable state %s — creating a new one",`
			`sandbox.id,`
			`sandbox.state,`
			`)`
			`sandbox = client.create(`
			`CreateSandboxFromSnapshotParams(language="python", labels=labels)`
			`)`
			`logger.info("Created replacement sandbox: %s", sandbox.id)`
			`elif sandbox.state != SandboxState.STARTED:`
			`sandbox.wait_for_sandbox_start(timeout=60)`

$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`except Exception:`
$DESKTOP-RTLN3BA\$punk$ feat: added file handling for daytona sandboxes - Added _TimeoutAwareSandbox class to handle per-command timeouts in DaytonaSandbox. - Updated _find_or_create function to manage sandbox states and restart stopped/archived sandboxes. - Enhanced get_or_create_sandbox to return the new sandbox class. - Introduced file download functionality in the frontend, allowing users to download generated files from the sandbox. - Updated system prompt to include guidelines for sharing generated files. 2026-02-25 01:36:30 -08:00			`logger.info("No existing sandbox for thread %s — creating one", thread_id)`
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`sandbox = client.create(`
			`CreateSandboxFromSnapshotParams(language="python", labels=labels)`
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00			`)`
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`logger.info("Created new sandbox: %s", sandbox.id)`

$DESKTOP-RTLN3BA\$punk$ feat: added file handling for daytona sandboxes - Added _TimeoutAwareSandbox class to handle per-command timeouts in DaytonaSandbox. - Updated _find_or_create function to manage sandbox states and restart stopped/archived sandboxes. - Enhanced get_or_create_sandbox to return the new sandbox class. - Introduced file download functionality in the frontend, allowing users to download generated files from the sandbox. - Updated system prompt to include guidelines for sharing generated files. 2026-02-25 01:36:30 -08:00			`return _TimeoutAwareSandbox(sandbox=sandbox)`
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00

$DESKTOP-RTLN3BA\$punk$ feat: added file handling for daytona sandboxes - Added _TimeoutAwareSandbox class to handle per-command timeouts in DaytonaSandbox. - Updated _find_or_create function to manage sandbox states and restart stopped/archived sandboxes. - Enhanced get_or_create_sandbox to return the new sandbox class. - Introduced file download functionality in the frontend, allowing users to download generated files from the sandbox. - Updated system prompt to include guidelines for sharing generated files. 2026-02-25 01:36:30 -08:00			`async def get_or_create_sandbox(thread_id: int \| str) -> _TimeoutAwareSandbox:`
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00			`"""Get or create a sandbox for a conversation thread.`

$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`Uses the thread_id as a label so the same sandbox persists`
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00			`across multiple messages within the same conversation.`

			`Args:`
			`thread_id: The conversation thread identifier.`

			`Returns:`
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`DaytonaSandbox connected to the sandbox.`
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00			`"""`
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00			`return await asyncio.to_thread(_find_or_create, str(thread_id))`
$DESKTOP-RTLN3BA\$punk$ feat: unut codesandbox integration 2026-02-24 16:36:11 -08:00

			`async def delete_sandbox(thread_id: int \| str) -> None:`
			`"""Delete the sandbox for a conversation thread."""`
$DESKTOP-RTLN3BA\$punk$ chore: moved to daytona due to lack of windows support in microsandbox 2026-02-25 00:38:27 -08:00
			`def _delete() -> None:`
			`client = _get_client()`
			`labels = {THREAD_LABEL_KEY: str(thread_id)}`
			`try:`
			`sandbox = client.find_one(labels=labels)`
			`client.delete(sandbox)`
			`logger.info("Sandbox deleted: %s", sandbox.id)`
			`except Exception:`
			`logger.warning(`
			`"Failed to delete sandbox for thread %s",`
			`thread_id,`
			`exc_info=True,`
			`)`

			`await asyncio.to_thread(_delete)`