Eclipse Enclave

<p>Eclipse Enclave defines and implements a vendor-neutral runtime for executing AI agents in isolated, policy-controlled environments. The project provides container-based sandboxes for individual agent sessions, network egress policy enforcement, persistent and auditable session lifecycle management, and dashboards for operating many agents across many projects.</p><p>In scope:</p><ul><li data-list-item-id="e3b53cdb538e07671a20f29f0ef7e73c6">Isolation backends for agent execution, starting with Docker containers and potentially extending toward additional mechanisms such as microVMs, rootless runtimes, and Kubernetes-based orchestration.</li><li data-list-item-id="e034a5ee4797917c9a5db624301fc904c">Network isolation and policy enforcement, including DNS allowlisting, transparent egress filtering, and request/dependency logging.</li><li data-list-item-id="ecda8961cc41720449b53d52d5e75fcb7">Per-session filesystem and workspace isolation, including integration with source control mechanisms such as Git worktrees.</li><li data-list-item-id="e6ae22dcb8ba90b3841d6033779632229">Authentication, secret, and credential handling that keeps sensitive material out of agent-visible scope where possible.</li><li data-list-item-id="e63c6681edfa20cced2c469b8a80e7578">Session lifecycle management: create, pause, resume, attach to, inspect, and clean up agent sessions.</li><li data-list-item-id="e4c157e1973a1055840128cc38437d9fb">A desktop and/or web control center for managing multiple agents working across multiple projects in parallel.</li><li data-list-item-id="e282a4e69381c1732d6e9bf14a02ee7d9">Telemetry, audit trails, and reporting formats that support governance obligations including the EU AI Act and the EU Cyber Resilience Act.</li><li data-list-item-id="e7e02c55ae5dc456afa480fd60e1f7db4">Extension points for integrating third-party AI agents, IDEs, and editors, including but not limited to those at the Eclipse Foundation.</li></ul><p>Out of scope:</p><ul><li data-list-item-id="e6bfb4a5133a2c222d204b29da50637d7">Developing AI agents or large language models. Eclipse Enclave integrates with existing agents (such as Claude Code, Codex CLI, Gemini CLI, OpenCode, Eclipse Theia AI, and others) but does not produce its own.</li><li data-list-item-id="e19f8c778627ba7ab94dd6d9e8b967073">Developing an IDE or editor. Eclipse Enclave integrates with editors and IDEs including potential integration with Eclipse Theia, but does not build a new one.</li></ul>