Run AI Agents Inside MicroVM Sandboxes
A3S is a modular Rust ecosystem for production AI agents — VM-isolated execution, opt-in hardware attestation on capable hosts, privacy-aware security, and a full agent framework in one coherent stack.
The problems A3S solves
Most agent frameworks ignore the hard parts. A3S is built around them.
VM isolation by default
Run sensitive agents inside MicroVMs, and use SEV-SNP attestation when the host can prove it. Isolation is explicit instead of assumed.
Production-grade performance
Lane provides high-throughput priority scheduling, Box focuses on fast MicroVM startup, and Power can run local LLMs with RA-TLS-aware integration. All in Rust.
Composable, not monolithic
Use Code standalone, add Box for isolation, and compose only the modules you need. Every module has a trait interface — swap any piece without touching the rest.
Infrastructure that runs agents safely
VM-isolated sandbox — OCI images, Docker-like CLI, WarmPool, experimental CRI, hardware-gated TEE.
Privacy-preserving LLM inference — OpenAI-compatible API, TEE support, multi-backend, multi-GPU, tool calling.
15 middlewares, Knative autoscaling, HCL hot-reload, TLS/ACME.
Composable primitives
6 built-in lanes, retry/DLQ, rate limiting, persistent storage, 33k–50k ops/sec.
9-engine consensus ranking — DuckDuckGo, Brave, Google, Baidu, proxy rotation.
Episodic / semantic / procedural / working memory, atomic persistence, relevance decay scoring.
Quick Install
Available on crates.io, PyPI, npm, and Homebrew
cargo add a3s-code-corepip install a3s-code a3s-lane a3s-searchnpm install @a3s-lab/code @a3s-lab/lanebrew tap a3s-lab/tap && brew install a3s-search a3s-powerReady to build?
Start with the Code framework and add modules as you need them.