packages/core/src/services/sandboxManagerFactory.ts

/**
 * @license
 * Copyright 2026 Google LLC
 * SPDX-License-Identifier: Apache-2.0
 */

import os from 'node:os';
import {
  type SandboxManager,
  NoopSandboxManager,
  LocalSandboxManager,
} from './sandboxManager.js';
import { LinuxSandboxManager } from '../sandbox/linux/LinuxSandboxManager.js';
import { MacOsSandboxManager } from '../sandbox/macos/MacOsSandboxManager.js';
import { WindowsSandboxManager } from './windowsSandboxManager.js';
import type { SandboxConfig } from '../config/config.js';
import { type SandboxPolicyManager } from '../policy/sandboxPolicyManager.js';

/**
 * Creates a sandbox manager based on the provided settings.
 */
export function createSandboxManager(
  sandbox: SandboxConfig | undefined,
  workspace: string,
  policyManager?: SandboxPolicyManager,
  approvalMode?: string,
): SandboxManager {
  if (approvalMode === 'yolo') {
    return new NoopSandboxManager();
  }

  const isWindows = os.platform() === 'win32';

  if (
    isWindows &&
    (sandbox?.enabled || sandbox?.command === 'windows-native')
  ) {
    return new WindowsSandboxManager({ workspace });
  }

  if (sandbox?.enabled) {
    if (os.platform() === 'linux') {
      return new LinuxSandboxManager({ workspace });
    }
    if (os.platform() === 'darwin') {
      const modeConfig =
        policyManager && approvalMode
          ? policyManager.getModeConfig(approvalMode)
          : undefined;
      return new MacOsSandboxManager({
        workspace,
        modeConfig,
        policyManager,
      });
    }
    return new LocalSandboxManager();
  }

  return new NoopSandboxManager();
}
feat(core): implement native Windows sandboxing (#21807) 2026-03-19 15:25:22 -07:00			`/**`
			`* @license`
			`* Copyright 2026 Google LLC`
			`* SPDX-License-Identifier: Apache-2.0`
			`*/`

			`import os from 'node:os';`
			`import {`
			`type SandboxManager,`
			`NoopSandboxManager,`
			`LocalSandboxManager,`
			`} from './sandboxManager.js';`
			`import { LinuxSandboxManager } from '../sandbox/linux/LinuxSandboxManager.js';`
			`import { MacOsSandboxManager } from '../sandbox/macos/MacOsSandboxManager.js';`
			`import { WindowsSandboxManager } from './windowsSandboxManager.js';`
			`import type { SandboxConfig } from '../config/config.js';`
feat(sandbox): dynamic macOS sandbox expansion and worktree support (#23301) 2026-03-23 21:48:13 -07:00			`import { type SandboxPolicyManager } from '../policy/sandboxPolicyManager.js';`
feat(core): implement native Windows sandboxing (#21807) 2026-03-19 15:25:22 -07:00
			`/**`
			`* Creates a sandbox manager based on the provided settings.`
			`*/`
			`export function createSandboxManager(`
			`sandbox: SandboxConfig \| undefined,`
			`workspace: string,`
feat(sandbox): dynamic macOS sandbox expansion and worktree support (#23301) 2026-03-23 21:48:13 -07:00			`policyManager?: SandboxPolicyManager,`
			`approvalMode?: string,`
feat(core): implement native Windows sandboxing (#21807) 2026-03-19 15:25:22 -07:00			`): SandboxManager {`
feat(sandbox): dynamic macOS sandbox expansion and worktree support (#23301) 2026-03-23 21:48:13 -07:00			`if (approvalMode === 'yolo') {`
			`return new NoopSandboxManager();`
			`}`

feat(core): implement native Windows sandboxing (#21807) 2026-03-19 15:25:22 -07:00			`const isWindows = os.platform() === 'win32';`

			`if (`
			`isWindows &&`
			`(sandbox?.enabled \|\| sandbox?.command === 'windows-native')`
			`) {`
feat(core): refactor SandboxManager to a stateless architecture and introduce explicit Deny interface (#23141) 2026-03-23 11:43:58 -04:00			`return new WindowsSandboxManager({ workspace });`
feat(core): implement native Windows sandboxing (#21807) 2026-03-19 15:25:22 -07:00			`}`

			`if (sandbox?.enabled) {`
			`if (os.platform() === 'linux') {`
			`return new LinuxSandboxManager({ workspace });`
			`}`
			`if (os.platform() === 'darwin') {`
feat(sandbox): dynamic macOS sandbox expansion and worktree support (#23301) 2026-03-23 21:48:13 -07:00			`const modeConfig =`
			`policyManager && approvalMode`
			`? policyManager.getModeConfig(approvalMode)`
			`: undefined;`
			`return new MacOsSandboxManager({`
			`workspace,`
			`modeConfig,`
			`policyManager,`
			`});`
feat(core): implement native Windows sandboxing (#21807) 2026-03-19 15:25:22 -07:00			`}`
			`return new LocalSandboxManager();`
			`}`

			`return new NoopSandboxManager();`
			`}`