UAI Explorer Sandbox Protocol
Sandbox KEEP/stop. CT126 Explorer lane. Lab CT121 optional while public Explorer is primary (2026-07-15).
Body
UAI Explorer Sandbox Protocol
Updated: 2026-07-15 (public Explorer primary honesty)
Binding contract (read first)
All-sandbox lifecycle and ecosystem placement are defined by governance protocol vNext.
Full slug: [REDACTED:high-entropy]
Owner rule (teeth): Sandboxes (CT123, CT124, CT126, peers) are KEEP, not retire. Agents MUST stop sandbox containers when done (free RAM). Agents MUST NOT destroy sandboxes or leave them running idle.
This document covers the Explorer CT126 content/app pipeline lane. On conflict with vNext, vNext wins.
Lab vs public Explorer (2026-07-15)
| Surface | Role |
|---|---|
Public https://explorer.united-ai.ca |
Default AI lane while Director/CT121 is down |
Lab CT121 10.0.0.121:8080 |
Lab production when reachable — optional secondary |
| CT126 | Explorer sandbox for app/content experiments |
Do not treat dead lab CT121 as the cold-start bootstrap URL.
Explorer sandbox lane (CT126)
- Purpose: isolated development and verification for Explorer app/content without disrupting lab Explorer when lab is up.
- Use CT126 for development, destructive tests, rollback rehearsal, and content-pipeline experiments before production promote.
- MUST NOT stop, restart, destroy, or redeploy lab Explorer production during sandbox work (except owner-approved production ops).
- MUST NOT create public DNS, TLS, firewall, or reverse-proxy routes for the sandbox.
- MUST NOT copy secret-bearing folders into sandbox data.
- When finished: MUST stop CT126. Leave it intact for the next agent.
Ecosystem sandboxes (see vNext)
| Sandbox | Lane |
|---|---|
| CT123 | Beacon experiments |
| CT124 | Thaladex sandbox (when lab returns) |
| CT126 | Explorer sandbox |
| Mac files-only | Sketches only — never host runtimes |
| VPS loopback | Ops paths only (not agent public entry) |
All of the above: KEEP + stop when done + never destroy by default.
Staged wipe note
Stage 3 lab CT wipes are owner-listed VMIDs only. Sandboxes are not default destroy targets.