Skip to content
Nx Docs

Task Sandboxing

Task sandboxing monitors file system access during task execution and flags any reads or writes that fall outside the declared inputs and outputs in your project configuration (whether explicit or inferred). It doesn't block access to the rest of the file system, but undeclared dependencies have direct implications on caching correctness, from false cache hits serving stale results to missing output files after a cache restore.

Why hermeticity matters

Section titled “Why hermeticity matters”

A task is hermetic when it only reads from its declared inputs and only writes to its declared outputs. Hermetic tasks are safe to cache and replay because their behavior is fully described by their configuration.

Diagram showing declared inputs flowing into vite build, producing declared outputs, with a cache key derived from the input hash

Computation caching relies on declared inputs and outputs to determine when a cache entry is valid. If a task reads a file that isn't listed in its inputs, the cache has no way to know that file changed, and it'll serve a stale result. If a task writes files outside its declared outputs, those files won't be captured in the cache and will go missing on a cache hit.

Undeclared dependencies are difficult to catch through code review alone. A task might work correctly for months until an unrelated change to an undeclared input causes a cache-related failure that's hard to trace back to the root cause.

Example: undeclared input (false cache hit)

Section titled “Example: undeclared input (false cache hit)”

An API app reads app.yaml from the project root at startup to configure routes and middleware. If app.yaml isn't included in the target's inputs, changing the configuration won't invalidate the cache. The next CI run serves stale output built against the old configuration.

Sandboxing catches this because it sees the build process reading app.yaml even though it isn't declared. Add the file to the target's inputs in project.json to fix it:

{
  "targets": {
    "build": {
      "inputs": ["{projectRoot}/app.yaml"]
    }
  }
}

Example: undeclared output (missing artifacts on replay)

Section titled “Example: undeclared output (missing artifacts on replay)”

When using TypeScript *.d.ts generation (such as vite-plugin-dts) to emit type declarations outside of dist/, the build produces two output directories:

packages/
  my-package/
    dist/
    types/
    src/
    package.json

If the target's outputs only lists ["{projectRoot}/dist"], the types/ directory isn't stored in the remote cache. On a cache hit, dist/ is restored but the type declarations are missing, breaking downstream library consumers.

Sandboxing catches this because it sees writes to types/ that aren't covered by the declared outputs. Include both directories in outputs so they can be replayed from cache:

{
  "targets": {
    "build": {
      "outputs": ["{projectRoot}/dist", "{projectRoot}/types"]
    }
  }
}

How sandboxing works

Section titled “How sandboxing works”

Sandboxing runs each task in a monitored environment where all file system reads and writes are tracked. When a task accesses a file outside its declared inputs or writes to a path outside its declared outputs, Nx Cloud flags it.

You get an audit trail of every file each task touched during execution, warnings when tasks have undeclared dependencies, and confidence that your cache configuration is correct rather than just "working so far."

In Warning mode (recommended when getting started), violations are reported in the Nx Cloud UI but tasks continue to completion. In Strict mode, tasks fail immediately when a violation is detected. See Cloud settings to configure the enforcement mode.

Investigating violations

Section titled “Investigating violations”

When sandboxing detects undeclared file access, a warning banner appears on the CI Pipeline Execution (CIPE) page in Nx Cloud. Runs that contain violations are tagged with a "sandbox violation" badge.

CIPE page showing sandbox violations detected in 109 tasks, with a run tagged as sandbox violation

Click into a run to see which individual tasks have violations. Click the Sandbox violations button to filter the task list to only tasks with undeclared reads or writes.

Task list showing individual tasks with sandbox violation badges

Open the task details and switch to the Sandbox analysis tab. The process tree shows every process spawned during the task, along with the files each one read and wrote. Click a process to see its full file access list. Files flagged as "unexpected read" or "unexpected write" are the ones not covered by your declared inputs and outputs.

Sandbox analysis tab showing process tree with unexpected reads and writes highlighted

To export the raw trace data for further analysis, click View raw sandbox report to download the JSON report.

View raw sandbox report button

Inspecting inputs and outputs

Section titled “Inspecting inputs and outputs”

Check what your tasks currently declare before enabling sandboxing. Use nx show target to inspect a specific target's resolved inputs and outputs:

Terminal window
nx show target <project>:<target> --inputs --outputs

Add the --json flag for machine-readable output:

Terminal window
nx show target <project>:<target> --inputs --outputs --json

For a broader view of the full project configuration, run nx show project:

Terminal window
nx show project <project>

You can also use the project details view in Nx Console:

Project Details View

myapp

Root: apps/myapp

Type:application

Targets

  • build

    vite build

    Cacheable

The inputs and outputs arrays show exactly what the cache tracks. Sandboxing compares these declarations against what the task actually reads and writes at runtime and reports discrepancies.

Enabling sandboxing

Section titled “Enabling sandboxing”

Sandboxing is available for Nx Enterprise customers on single-tenant deployments using Nx Agents. It is not supported with manual distributed task execution. Contact your Nx Enterprise representative to enable sandboxing for your deployment.

Excluding paths

Section titled “Excluding paths”

Create a .nx/workflows/sandboxing-config.yaml file to exclude paths from sandboxing checks.

.nx/workflows/sandboxing-config.yaml
exclude-reads:
  - '**/vite.config.*.timestamp-*'


task-exclusions:
  - project: myapp
    target: build
    exclude-reads:
      - .next/cache/**
    exclude-writes:
      - logs/**
  - target: lint
    exclude-reads:
      - .eslintcache/**

Global exclude-reads and exclude-writes apply to all tasks. Use task-exclusions to scope exclusions to a specific project, target, or combination of both.

Patterns use glob syntax relative to the workspace root.

Cloud settings

Section titled “Cloud settings”

Enterprise customers with sandboxing enabled can configure the enforcement mode in the Nx Cloud workspace settings under Settings > General.

Nx Cloud settings sidebar showing General settings

Three enforcement modes are available:

  • Strict — tasks that violate sandbox isolation fail immediately.
  • Warning — tasks complete but violations are reported in the Nx Cloud UI.
  • Off — sandboxing is disabled.

Sandboxing enforcement mode setting with Strict, Warning, and Off options

Learn more

Section titled “Learn more”