Epiloop Docker Setup (Safe Mode)

Run epiloop in Docker with your code mounted read-only. Agents can read your code but all changes are isolated to Docker volumes.

Quick Start

# 1. Copy env template
cp .env.example .env

# 2. Generate gateway token
echo "EPILOOP_GATEWAY_TOKEN=$(openssl rand -hex 32)" >> .env

# 3. Add your API key (at least one)
echo "ANTHROPIC_API_KEY=your-key-here" >> .env

# 4. Set your epiloop source path
echo "EPILOOP_SOURCE_PATH=/Users/jialiang.wu/Documents/Projects/epiloop" >> .env

# 5. Build and run
docker compose up -d --build

# 6. Get dashboard URL with token
docker compose run --rm --profile cli epiloop-cli dashboard --no-open

How It Works

Your Mac (safe)                     Docker (isolated)
─────────────────                   ─────────────────────
/Users/.../epiloop ──(read-only)──► /source
                                    /workspace ◄── Agent writes here
                                    /home/node/.epiloop ◄── Config

✅ Agents can read your epiloop source code
✅ Agents can write to /workspace (Docker volume)
❌ Agents cannot modify your source code
❌ Agents cannot access other files on your Mac

LLM Provider Support

Provider	API Key Variable	Models
Anthropic	`ANTHROPIC_API_KEY`	Claude Opus/Sonnet/Haiku
OpenAI	`OPENAI_API_KEY`	GPT-4, GPT-4o, Codex
Google	`GOOGLE_API_KEY`	Gemini Pro, Gemini Flash
OpenRouter	`OPENROUTER_API_KEY`	100+ models (Qwen, Kimi, DeepSeek, etc.)

Using Qwen, Kimi, or Other Models

Use OpenRouter to access models not directly supported:

# Add OpenRouter key
echo "OPENROUTER_API_KEY=sk-or-..." >> .env

Available via OpenRouter:

qwen/qwen-2.5-coder - Qwen 2.5 Coder
deepseek/deepseek-coder - DeepSeek Coder
01-ai/yi-large - Yi Large
mistralai/codestral-latest - Codestral

Commands

# Start gateway (background)
docker compose up -d

# View logs
docker compose logs -f

# Run CLI commands
docker compose run --rm --profile cli epiloop-cli agent --message "hello"

# Start autonomous coding
docker compose run --rm --profile cli epiloop-cli epiloop start "Add feature X"

# Check status
docker compose run --rm --profile cli epiloop-cli epiloop status

# Stop
docker compose down

# Full reset (delete volumes)
docker compose down -v

Retrieving Agent Output

Agent-generated files are in the epiloop-workspace volume:

# List workspace contents
docker compose run --rm --profile cli epiloop-cli exec ls -la /workspace

# Copy files out of container
docker cp $(docker compose ps -q epiloop-gateway):/workspace/my-feature ./my-feature

# Or mount workspace to a host folder (edit docker-compose.yml):
# - ./agent-output:/workspace

Safety Settings

Default sandbox config (in ~/.epiloop/config/agents.json):

{
  "agents": {
    "defaults": {
      "sandbox": {
        "mode": "all",
        "scope": "agent",
        "workspaceAccess": "ro",
        "docker": {
          "readOnlyRoot": true,
          "network": "none",
          "capDrop": ["ALL"]
        }
      }
    }
  }
}

Troubleshooting

"Permission denied" on workspace

docker compose run --rm --profile cli epiloop-cli exec chown -R 1000:1000 /workspace

Container won't start

docker compose logs epiloop-gateway

Need to rebuild after code changes

docker compose build --no-cache
docker compose up -d

Name		Name	Last commit message	Last commit date
Latest commit History 7,863 Commits
.agent		.agent
.claude-loop		.claude-loop
.github		.github
Swabble		Swabble
agents		agents
apps		apps
assets		assets
dist/control-ui		dist/control-ui
docs		docs
extensions		extensions
git-hooks		git-hooks
lib		lib
patches		patches
prds/active		prds/active
scripts		scripts
skills		skills
src		src
test		test
ui		ui
vendor/a2ui		vendor/a2ui
.claude-loop-config.yaml		.claude-loop-config.yaml
.detect-secrets.cfg		.detect-secrets.cfg
.dockerignore		.dockerignore
.env.example		.env.example
.execution-pid		.execution-pid
.gitattributes		.gitattributes
.gitignore		.gitignore
.last-branch		.last-branch
.npmrc		.npmrc
.oxfmtrc.jsonc		.oxfmtrc.jsonc
.oxlintrc.json		.oxlintrc.json
.prettierignore		.prettierignore
.secrets.baseline		.secrets.baseline
.swiftformat		.swiftformat
.swiftlint.yml		.swiftlint.yml
AGENTS.md		AGENTS.md
AUTONOMOUS_EXECUTION_LIVE.md		AUTONOMOUS_EXECUTION_LIVE.md
AUTONOMOUS_EXECUTION_STATUS.md		AUTONOMOUS_EXECUTION_STATUS.md
CHANGELOG.md		CHANGELOG.md
CLAUDE.md		CLAUDE.md
CLEAN_STATUS.md		CLEAN_STATUS.md
CONTINUOUS_EXECUTION.sh		CONTINUOUS_EXECUTION.sh
CONTRIBUTING.md		CONTRIBUTING.md
Dockerfile		Dockerfile
Dockerfile.sandbox		Dockerfile.sandbox
Dockerfile.sandbox-browser		Dockerfile.sandbox-browser
EPILOOP_FORK.md		EPILOOP_FORK.md
EXECUTION_MODE_UPDATE.md		EXECUTION_MODE_UPDATE.md
EXECUTION_STATUS.md		EXECUTION_STATUS.md
EXECUTION_TRACKER.md		EXECUTION_TRACKER.md
FAILURE_LOG.md		FAILURE_LOG.md
FINAL_EXECUTION_STATUS.md		FINAL_EXECUTION_STATUS.md
FINAL_INTEGRATION_REPORT.md		FINAL_INTEGRATION_REPORT.md
FINAL_STATUS_REPORT.md		FINAL_STATUS_REPORT.md
FIRST_SYNC_GUIDE.md		FIRST_SYNC_GUIDE.md
IMPROVEMENT_TICKETS.md		IMPROVEMENT_TICKETS.md
INSTALL_DOCKER_MAC.md		INSTALL_DOCKER_MAC.md
INTEGRATION_LOG.md		INTEGRATION_LOG.md
INTEGRATION_SUMMARY.md		INTEGRATION_SUMMARY.md
INVESTIGATION_RESULTS.md		INVESTIGATION_RESULTS.md
LICENSE		LICENSE
LLM_COMPATIBILITY.md		LLM_COMPATIBILITY.md
MONITOR.sh		MONITOR.sh
PROGRESS_CHECK.sh		PROGRESS_CHECK.sh
README-header.png		README-header.png
README.md		README.md
REALTIME_STATUS.md		REALTIME_STATUS.md
RGTDD_STATUS.md		RGTDD_STATUS.md
SECURITY.md		SECURITY.md
START_EXECUTION.sh		START_EXECUTION.sh
START_FINAL_RGTDD.sh		START_FINAL_RGTDD.sh
START_WITH_RGTDD.sh		START_WITH_RGTDD.sh
SYNC_QUICKREF.md		SYNC_QUICKREF.md
WATCH_PROGRESS.sh		WATCH_PROGRESS.sh
appcast.xml		appcast.xml
claude-loop.sh		claude-loop.sh
docker-compose.yml		docker-compose.yml
docker-setup.sh		docker-setup.sh
docs.acp.md		docs.acp.md
execution-final.log		execution-final.log
execution-main.log		execution-main.log
execution-rgtdd.log		execution-rgtdd.log
fly.toml		fly.toml
install-mac.sh		install-mac.sh
integration-execution-run2.log		integration-execution-run2.log
integration-execution-run3.log		integration-execution-run3.log
integration-execution.log		integration-execution.log
package.json		package.json
pnpm-lock.yaml		pnpm-lock.yaml
pnpm-workspace.yaml		pnpm-workspace.yaml
prompt.md		prompt.md
rename-to-epiloop.sh		rename-to-epiloop.sh
requirements.txt		requirements.txt
tsconfig.json		tsconfig.json
vitest.config.ts		vitest.config.ts
vitest.e2e.config.ts		vitest.e2e.config.ts
vitest.extensions.config.ts		vitest.extensions.config.ts
vitest.gateway.config.ts		vitest.gateway.config.ts
vitest.live.config.ts		vitest.live.config.ts
vitest.unit.config.ts		vitest.unit.config.ts

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Epiloop Docker Setup (Safe Mode)

Quick Start

How It Works

LLM Provider Support

Using Qwen, Kimi, or Other Models

Commands

Retrieving Agent Output

Safety Settings

Troubleshooting

"Permission denied" on workspace

Container won't start

Need to rebuild after code changes

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

Epiloop Docker Setup (Safe Mode)

Quick Start

How It Works

LLM Provider Support

Using Qwen, Kimi, or Other Models

Commands

Retrieving Agent Output

Safety Settings

Troubleshooting

"Permission denied" on workspace

Container won't start

Need to rebuild after code changes

About

Resources

License

Contributing

Security policy

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages