Keyboard shortcuts

Press or to navigate between chapters

Press S or / to search in the book

Press ? to show this help

Press Esc to hide this help

Nucleus Use Cases

Nucleus provides hardware-isolated sandboxing for AI agents. While the architecture is general-purpose, certain use cases benefit most from defense-in-depth isolation.

Why Now

January 2026 brought AI agent security into sharp focus:

  • Moltbook breach (Jan 31): Unsecured database allowed hijacking of 770K+ AI agents
  • Palo Alto “Uninhabitable State” research: Identified the dangerous combination of private data access + untrusted content + external communication
  • OpenClaw adoption: 100K+ GitHub stars, running in enterprise environments with root filesystem access

The industry is deploying agents faster than security practices can evolve. Nucleus provides a hardened execution layer that doesn’t require perfect configuration—isolation is architectural, not optional.

Use Cases

Use CaseRisk ProfileNucleus Benefit
OpenClaw HardeningCritical - full system accessBreak the uninhabitable state
Claude Code SandboxHigh - code executionIsolated tool execution
MCP Server IsolationMedium - tool callsPer-tool sandboxing
Enterprise AI AgentsVariable - complianceAudit trails, NIST compliance

Quick Comparison

┌─────────────────────────────────────────────────────────────────┐
│                     Without Nucleus                              │
├─────────────────────────────────────────────────────────────────┤
│  AI Agent ──► Tools ──► Host Filesystem ──► Network ──► World   │
│     │                        │                                   │
│     └── Credentials, API keys, browser sessions all accessible  │
└─────────────────────────────────────────────────────────────────┘

┌─────────────────────────────────────────────────────────────────┐
│                      With Nucleus                                │
├─────────────────────────────────────────────────────────────────┤
│  AI Agent (host) ──► nucleus-node ──► Firecracker VM            │
│       │                                    │                     │
│       │  API keys stay here          Only /workspace visible     │
│       │                              Network egress filtered     │
│       │                              No shell escape possible    │
│       │                                    │                     │
│       └────────── Signed results ◄─────────┘                    │
└─────────────────────────────────────────────────────────────────┘

Getting Started

# Install
cargo install nucleus-node
cargo install nucleus-cli

# Setup (macOS with Lima VM, or native Linux)
nucleus setup

# Verify
nucleus doctor

See individual use case docs for integration guides.