Stop AI from hallucinating security holes into your production.

AI agents move faster than manual review. NeuraBox is a local governance layer that executes AI-generated code in an isolated Docker airlock to verify behavior before it touches your source tree.

View on GitHub

npm install -g neurabox

Required Setup

1. Environment (.env)

Create a .env in your project root. NeuraBox supports OpenAI-compatible APIs (DeepSeek, Groq, etc).

API_KEY="your_key_here"
AI_BASE_URL="https://api.deepseek.com"
AI_MODEL="deepseek-chat"

2. Infrastructure

Ensure Docker Desktop is running. NeuraBox uses local containers to "detonate" and audit code without network access.

Status:Local Execution Only

Workflow

1neurabox --init # Generates policy

2neurabox "add secure stripe webhook"

3[Airlock] Running checks... Safe: No internet calls.

nb-policy.yaml

checks:
  - cname: "no-internet"
    command: "curl -m 2 google.com || echo 'Safe'"
    
  - cname: "test-suite"
    command: "npm test"

blocks:
  - ".env"
  - "node_modules"

Ready to audit?

NeuraBox is in early beta. Download the binary or install via npm.

GITHUB NPM