Kubernetes-native sandbox runtime for isolating AI-agent code execution from the parent GKE cluster — agent workloads run inside per-task sandboxes with Pod-snapshot save/restore, optimised for Axion N4A ARM compute. Industry's first managed sandbox runtime on a hyperscaler, GA at Google Cloud Next '26.
FluffyStack toolsJurisdictional exposure
Region locations
APACCNEEAEUUKUSOther44 regions across 7 jurisdictions
Sovereign option
Yes — 2 sovereign-flagged regions available
Attributes
- Ga Year
- 2026
Sub-services (3)
Agent Sandbox CRDs
Custom Resource Definitions for sandbox lifecycle, per-agent isolation policies
Pod Snapshots
Save and restore sandbox state across agent task executions
Axion N4A Optimisation
ARM-native execution profile tuned for agent workloads
Compliance & Certifications
This service is attested for the following frameworks. Always verify with the provider before relying on a specific compliance posture.
Where this runs
44 regions
28 countries
2sovereign
Sovereign regions (2)
- T-Systems Sovereign Cloud · FrankfurtT-Systems Sovereign Cloud powered by Google Cloud
- S3NS Sovereign Cloud · ParisS3NS — Google Cloud + Thales joint venture
Commercial regions (42)
Europe (13)
- Belgium
- Finland
- Paris
- Berlin
- Frankfurt
- Milan
- Turin
- Netherlands
- Warsaw
- Madrid
- Stockholm
- Zurich
- London
North America (12)
- Montréal
- Toronto
- Querétaro
- Northern Virginia
- Columbus
- Iowa
- Dallas
- Las Vegas
- Los Angeles
- South Carolina
- Salt Lake City
- Oregon
South America (2)
- São Paulo
- Santiago
Asia (9)
- Hong Kong
- Delhi
- Mumbai
- Jakarta
- Osaka
- Tokyo
- Singapore
- Seoul
- Taiwan
Oceania (2)
- Melbourne
- Sydney
Middle East (3)
- Tel Aviv
- Doha
- Dammam
Africa (1)
- Johannesburg
Tags
Pricing
Pricing model:pay-as-you-go