We created OpenShell to make AI agents safe for enterprises. Built in open source so any company can adopt and trust it, this secure sandbox controls what agents can access, share, and send. Our CEO, Jensen, explains 👇 https://t.co/7EiIsxr0CG
NVIDIA Open-Sources OpenShell to Secure Enterprise AI Agents with Kernel-Level Isolation
NVIDIA· Updated
NVIDIA released OpenShell, an open-source security runtime that wraps autonomous AI agents in isolated sandboxes to prevent unauthorized data access or system actions. By using kernel-level isolation and declarative YAML policies, the tool provides the security layer required for production-grade enterprise agent deployments.
As AI shifts from chatbots to agents that use computers, security is the primary bottleneck for enterprise adoption. Without isolated execution, agents risk leaking credentials or damaging production systems. OpenShell moves security to the infrastructure layer, mirroring OpenAI's Vercel Sandbox integration and Cloudflare's isolated environments.
You can adopt OpenShell under the Apache 2.0 license to build agents that comply with enterprise IT standards. Security policies are managed through declarative YAML files, defining what an agent can access or send. The runtime is compatible with the NVIDIA NemoClaw reference stack.
Still wondering? A few quick answers below.
Every HeadsUpAI update is written based on its original source and reviewed before it's published. Read our editorial standards →




