Multipart upload. The stored file can be referenced by its path in POST /run — it is bind-mounted read-only at /
| file required | string <binary> File content |
| path required | string Relative destination path (e.g. workspace/script.py) |
{- "path": "workspace/script.py"
}Pulls the image if not cached, constructs a hardened OCI bundle, and runs the command inside a gVisor sandbox.
Files listed in files must be uploaded first via POST /files; each is bind-mounted read-only at /
Execution parameters
| cmd required | Array of strings non-empty |
| cwd | string |
| env | Array of strings |
| files | Array of strings Files lists relative paths of files previously uploaded via POST /files.
Each file is bind-mounted read-only at / |
| image required | string |
object (config.ResourceLimits) | |
| network | string Default: "none" Enum: "none" "sandbox" "host" Network sets the container network mode: none (default, no access), sandbox (isolated NAT namespace), or host (shared host network). |
| persist | boolean Persist keeps uploaded input files and captured output files after the run. Default false: all files are deleted once the response is returned. |
{- "cmd": [
- "python3",
- "-c",
- "print('hello world')"
], - "cwd": "/app",
- "env": [
- "HOME=/root",
- "PYTHONPATH=/app"
], - "files": [
- "workspace/script.py",
- "workspace/data.json"
], - "image": "python:3.12-slim",
- "limits": {
- "cpu_cores": 0,
- "memory_mb": 0,
- "nofile": 0,
- "pids_limit": 0,
- "wall_clock_secs": 0
}, - "network": "none",
- "persist": true
}{- "exec_id": "boxer-abc123",
- "exit_code": 0,
- "stderr": "",
- "stdout": "hello world\n",
- "wall_ms": 342
}