Skip to content

docs: Docker recipe for sandboxed agents#372

Merged
tomasz-tomczyk merged 2 commits intomainfrom
docker-docs
Apr 28, 2026
Merged

docs: Docker recipe for sandboxed agents#372
tomasz-tomczyk merged 2 commits intomainfrom
docker-docs

Conversation

@tomasz-tomczyk
Copy link
Copy Markdown
Owner

@tomasz-tomczyk tomasz-tomczyk commented Apr 27, 2026

Summary

  • Adds integrations/docker/ with a working Dockerfile, entrypoint.sh, and recipe-style README.md for running crit alongside an AI coding agent (Claude Code, etc.) inside a container, with the review UI reachable from the host browser.
  • Preserves crit's 127.0.0.1-only bind. A socat bridge inside the container is the only thing exposed to docker -p forwarding — threat model unchanged.
  • Links the recipe from the Agent Integrations section of the main README.md.

The recipe targets the workflow where the agent is sandboxed in a container but the human still reviews from their host browser. Defaults: BRIDGE_PORT=8080 (host-facing), CRIT_PORT=8081 (loopback inside container). Multi-agent setups just bump host-side -p mappings.

Test plan

  • docker build -t crit-agent integrations/docker/ succeeds
  • docker run -p 8080:8080 crit-agent + running crit plan.md inside → host browser at http://localhost:8080 loads the review UI
  • claude --version works inside the container
  • Two containers on different host ports serve independent reviews

🤖 Generated with Claude Code

@tomasz-tomczyk @claude
docs: add Docker recipe for sandboxed agents
fa5f78b 
Adds integrations/docker/ with a Dockerfile, entrypoint.sh, and README
showing how to run crit alongside an AI agent inside a container while
keeping the review UI reachable from the host browser. Crit's 127.0.0.1
bind is preserved; a socat bridge in the entrypoint is the only thing
exposed to docker port forwarding.

Linked from the Agent Integrations section of the main README.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@codecov
Copy link
Copy Markdown

codecov Bot commented Apr 27, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 66.70%. Comparing base (91b0b31) to head (5120d43).
⚠️ Report is 3 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main     #372      +/-   ##
==========================================
+ Coverage   66.62%   66.70%   +0.07%     
==========================================
  Files          18       18              
  Lines        7964     7964              
==========================================
+ Hits         5306     5312       +6     
+ Misses       2259     2255       -4     
+ Partials      399      397       -2
Flag Coverage Δ
e2e 34.83% <ø> (+0.03%) ⬆️
unit 62.56% <ø> (+0.03%) ⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@tomasz-tomczyk @claude
docs: move Docker link to Other Install Methods
5120d43 
Better fit alongside Build from Source / Go / Nix / Download Binary
than under Agent Integrations.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@tomasz-tomczyk tomasz-tomczyk merged commit 8fba769 into main Apr 28, 2026
6 checks passed
@tomasz-tomczyk tomasz-tomczyk deleted the docker-docs branch April 28, 2026 16:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tomasz-tomczyk