Built this because I wanted Claude Code to run untrusted snippets without touching my system, but Docker felt heavy. Uses jail.nix (bubblewrap) for isolation. Currently supports Python, Node, Bash with persistent REPL sessions. Would love feedback on the interface design.