Agent Boundaries are process-level firewalls that restrict and audit what autonomous programs, such as AI agents, can access and use.

Example of Agent Boundaries blocking a process.

Example of Agent Boundaries blocking a process.

The easiest way to use Agent Boundaries is through existing Coder modules, such as the[Claude Code module](https://registry.coder.com/modules/coder/claude-code). It can also be ran directly in the terminal by installing the[CLI](https://github.com/coder/boundary).

CoderBoundary supports the securing of any terminal-based agent, including your own custom agents.

Boundary supports the securing of any terminal-based agent, including your own custom agents.

-_Network policy enforcement_: block domains, subnets, or HTTP verbs to prevent exfiltration

-_Audit-ready_: centralize logs, exportable for compliance, with full visibility into agent actions

For Early Access, users can use Agent Boundaries through its[open source CLI](https://github.com/coder/boundary), which can be run to wrap any process or invoked through rules in a YAML file.

Eventually, users of Coder Premium can enable Agent Boundaries simply by updating to the latest versions of their preferred coding agent modules, which integrate with Coder with just a few lines of Terraform. Once configured by platform admins, developers get agent-ready environments automatically - no extra setup required.

Users can also run Boundary directly in your workspace and configure it per template or per script. While free tier users won't get centralized policy management or the deeper, "strong isolation," they can still enforce per workspace network rules and log decisions locally.

There are two ways to integrate the open source Boundary CLI into a workspace.

1. Install the[binary](https://github.com/coder/boundary) into the workspace image or at start-up. You can do so with the following command: