Cloudflare Sandbox (github.com/janwilmake/sandbox) is a tool built by Jan_Wilmake in March 2026 that creates a cloud-based terminal environment where the user's stripe, git, gh (GitHub CLI), and wrangler (Cloudflare CLI) CLIs are all pre-authenticated and exposed as an AI tool via MCP. The sandbox uses Cloudflare's sandbox API with automatic sleeping when idle, keeping costs minimal.
Jan's question that prompted the build: "Can I have a Cloudflare sandbox where the user is logged in into their own stripe, git, gh and wrangler, then expose the terminal with all the commands as an AI tool with proper sleeping built-in when the tool isn't used?"
The answer was yes, and he shipped it the same day.
- git and gh: GitHub personal access token - wrangler: Cloudflare API token - stripe: Stripe CLI token
The implementation worked for gh, stripe, and wrangler on the first day.
The Cloudflare Sandbox provides the execution substrate for OpenPolsia — the open-source autonomous business manager. An AI agent managing multiple businesses needs to deploy code (wrangler), push to git, handle payments (stripe), and query/modify repositories (gh). The sandbox makes all of this available as a single, sleepable, pre-authenticated AI tool.
The sandbox addresses a recurring gap in agentic workflows: most AI tools either assume local CLI access (which requires a laptop to be running) or require complex authentication plumbing in each agent. By pre-authenticating at the sandbox level and exposing the terminal as a single MCP-compatible tool, agents can perform deployment, version control, and payment operations without human credential intervention.