# Bashkit > Bashkit runs untrusted shell scripts from AI agents without spawning a single OS process. 156 reimplemented commands, substantial POSIX shell language coverage, a virtual filesystem, resource limits, and tool interfaces for agent frameworks — all in-memory, all sandboxed. Doc links below point at the Markdown representation of each page so it can be fetched and read directly; links under Optional may be HTML pages or external resources. For the full text of every guide inlined into one document, fetch /llms-full.txt. ## Quickstarts - [Rust: The core crate](https://bashkit.sh/index.md): `cargo add bashkit` - [Python: PyO3 wheel with direct Bash API](https://bashkit.sh/index.md): `pip install bashkit` - [TypeScript: NAPI-RS runtime for Node, Bun, Deno](https://bashkit.sh/index.md): `npm i @everruns/bashkit` ## Agent skill - Install the skill: Give your coding agent Bashkit-specific usage notes and examples. (`npx skills add everruns/bashkit`) - Ask agent to add it: Prompt your coding agent to wire Bashkit into the host project. (`Using bashkit, add support for a bash tool`) - Enjoy :): Use the new bash tool in your agent workflow. - [Agent Skills discovery index](https://bashkit.sh/.well-known/agent-skills/index.json): machine-readable skill manifest for coding agents. ## Getting started - [CLI](https://bashkit.sh/docs/cli.md): Run scripts with bashkit-cli: flags, exit codes, opt-in runtimes. - [Embedding](https://bashkit.sh/docs/embedding.md): Run Bashkit as a library in Rust, Python, or TypeScript. - [LLM tools](https://bashkit.sh/docs/llm-tools.md): Expose Bashkit as a sandboxed tool for agent frameworks. ## Reference - [Compatibility](https://bashkit.sh/docs/compatibility.md): Bash and builtin feature coverage, security exclusions, and known gaps. - [jq builtin](https://bashkit.sh/docs/jq.md): Supported jq flags, filters, variables, exit codes, and compatibility notes. ## Features - [Snapshotting](https://bashkit.sh/docs/snapshotting.md): Serialize interpreter state and restore it for checkpoint/resume flows. - [TypeScript builtin](https://bashkit.sh/docs/builtin_typescript.md): Embedded ZapCode TypeScript runtime shared with bash in-memory. ## Runtimes - [Python builtin](https://bashkit.sh/docs/python.md): Embedded Monty Python runtime, VFS bridging, limits, and caveats. - [SQLite builtin](https://bashkit.sh/docs/sqlite.md): Embedded Turso SQLite runtime, backends, output modes, and limits. - [SSH support](https://bashkit.sh/docs/ssh.md): Sandboxed ssh, scp, and sftp builtins with host allowlists. ## Extending - [Custom builtins](https://bashkit.sh/docs/custom-builtins.md): Implement Rust commands that run inside the Bashkit shell. - [Custom builtins (JavaScript)](https://bashkit.sh/docs/custom-builtins-js.md): Register JS callbacks as persistent bash builtins from Node, Deno, or Bun. - [Clap builtins](https://bashkit.sh/docs/clap-builtins.md): Use clap parser structs to build typed custom commands. - [Hooks](https://bashkit.sh/docs/hooks.md): Observe, modify, or cancel execution, builtin, lifecycle, and HTTP events. - [Live mounts](https://bashkit.sh/docs/live-mounts.md): Attach, detach, and hot-swap filesystems on a running interpreter. ## Operations - [Security](https://bashkit.sh/docs/security.md): Sandbox boundaries, threat model, and what scripts cannot do. - [Credential injection](https://bashkit.sh/docs/credential-injection.md): Inject outbound HTTP credentials without exposing secrets to scripts. - [Logging](https://bashkit.sh/docs/logging.md): Structured tracing setup, log targets, and redaction behavior. ## Optional - [All docs (Markdown index)](https://bashkit.sh/docs.md): grouped index of every guide. - [Full text](https://bashkit.sh/llms-full.txt): every guide inlined into one document. - [Builtins](https://bashkit.sh/builtins): the full sandboxed command surface. - [Rust API](https://docs.rs/bashkit): Core crate docs, builder options, limits, and shell semantics. - [Python](https://github.com/everruns/bashkit/blob/main/crates/bashkit-python/README.md): PyO3 package docs for direct Bash usage, snapshots, and builtins. - [TypeScript](https://github.com/everruns/bashkit/blob/main/crates/bashkit-js/README.md): Node, Bun, and Deno runtime docs for the NAPI bindings. - [Threat model](https://github.com/everruns/bashkit/blob/main/specs/threat-model.md): 268 documented threat cases across parser, VFS, network, and runtimes. - [Benches history](https://bashkit.sh/benches): Interactive trends across benchmarks, criterion benches, and evals. - [CLI reference](https://github.com/everruns/bashkit/blob/main/docs/cli.md): One-shot commands, script execution, and interactive shell usage. - [Examples](https://github.com/everruns/bashkit/tree/main/examples): Reference programs for Rust, Python, JavaScript, and tool flows.