OpenShell v0.0.41 🧩 agent-driven policy management 🎚️ sandbox resource flags in the CLI 🔒 custom CA support for OIDC TLS verification 📥 sandbox downloads with workspace-boundary checks 🔧 bug fixes and stability improvements Policy and resource control, directly from the shell. https://t.co/2UJiRU4n62
NVIDIA Hardens OpenShell With Agent-Driven Policies and Sandbox Resource Limits
NVIDIA· Updated
NVIDIA released OpenShell v0.0.41, adding agent-driven policy management and granular resource controls for its secure AI agent runtime. The update introduces workspace-boundary checks and custom certificate support to prevent sandbox escapes in enterprise environments.
As developers move to NVIDIA's agentic coding support, the risk of agents exceeding their authority increases. This update mirrors OpenAI's custom Windows sandbox by hardening boundaries between the agent's workspace and the host system. NVIDIA is positioning OpenShell as the standard infrastructure for running agents in regulated enterprise networks.
You can now implement stricter security protocols using new workspace-boundary checks for sandbox downloads and restricted database permissions. The update is available as a direct install or pre-built packages for Linux and macOS. This release follows the OpenShell v0.0.37 infrastructure shift and includes stability fixes.
Still wondering? A few quick answers below.
Every HeadsUpAI update is written based on its original source and reviewed before it's published. Read our editorial standards →



