devcontainer-mcp: Give AI Agents Their Own Dev Environment, Not Yours
devcontainer-mcp is an MCP server that lets AI coding agents (Copilot, Claude, Cursor, any MCP client) create, manage, and work inside dev containers across three backends: local Docker, DevPod, and GitHub Codespaces. The agent builds, tests, and ships code in an isolated container — your laptop stays clean.
The Problem
When AI agents write code, they run it on your host machine, causing:
- Host contamination — agents install packages, modify PATH, leave build artifacts
- "Works on my machine" — agents assume your local toolchain matches production
- No isolation — one project's dependencies break another
- Security risk — agents run arbitrary commands with your user privileges
- Hardware constraints — you're limited to your local machine's resources
The Solution
The devcontainer spec already defines reproducible, container-based dev environments. devcontainer-mcp exposes 45 MCP tools (across auth, devcontainer CLI, DevPod, and Codespaces backends) that let any AI agent:
- Spin up a dev container from any repo — locally, on a cloud VM, or in Codespaces
- Run commands inside the container — builds, tests, linting, anything
- Manage the lifecycle — stop, restart, delete when done
- Authenticate against cloud providers (GitHub, AWS, Azure, GCP) without ever seeing a raw token
Quick Install
Linux / macOS:
curl -fsSL https://raw.githubusercontent.com/aniongithub/devcontainer-mcp/main/install.sh | bashWindows (via WSL):
Invoke-RestMethod https://github.com/aniongithub/devcontainer-mcp/releases/latest/download/install.ps1 | Invoke-ExpressionThe binary runs inside WSL; MCP clients on Windows launch it via wsl ~/.local/bin/devcontainer-mcp serve. WSL 2 is required.
Backend CLIs (devpod, devcontainer, gh) are detected at runtime — if one is missing, the MCP server returns a helpful error with install instructions. Binaries available for linux-x64, linux-arm64, darwin-x64, darwin-arm64.
Three Backends, One Interface
| Backend | Best for | Requires | Auth needed? |
|---|---|---|---|
| devcontainer CLI | Local Docker — fast, simple | @devcontainers/cli + Docker | No |
| DevPod | Multi-cloud: Docker, K8s, AWS, Azure, GCP | DevPod CLI | Optional |
| Codespaces | GitHub-hosted cloud environments | gh CLI | Yes |
Auth Broker
The agent never sees raw tokens. Instead:
auth_status(provider)— list available accounts and scopesauth_login(provider, scopes?)— initiate login, opens browser, handles device codesauth_select(id)— switch the active accountauth_logout(id)— revoke credentials
Supported providers: GitHub, AWS, Azure, GCP, Kubernetes. Codespaces tools require an auth handle (e.g. github-aniongithub); the MCP server resolves it to the real token on each call via the CLI's native keyring.
Example Workflow
Agent: "Let me build this project..."
auth_status("github")→ picks accountcodespaces_create(auth: "github-you", repo: "your/repo")codespaces_ssh(auth: "github-you", codespace: "...", command: "cargo build")- ✅ Built in the cloud. Your laptop did nothing.
📖 Read the full source: HN AI Agents
👀 See Also
Nudge: A local-first app that surfaces Claude-generated plans via contextual triggers
Nudge is a free, local-first iOS/Android app that lets you paste markdown plans (from Claude, ChatGPT, Notes) and attach triggers like time, location, Wi-Fi, inactivity, or one-time to surface them via local notifications.
ProofShot: CLI for AI Agents to Verify UI Code with Browser Recording
ProofShot is a CLI tool that lets AI coding agents open a browser, interact with pages, record sessions, and collect errors, then bundles everything into a self-contained HTML file for review. It works with any AI agent via shell commands and is packaged as a skill.
Sandra: open-source persistent graph memory MCP for Claude
Sandra is a graph + vector memory backend with a native MCP server that gives Claude persistent structured memory across sessions, supporting exact, fuzzy, and semantic search.
ModelFitAI: Deploy AI Agents Without VPS Setup, Built with Claude Code
ModelFitAI is a platform that lets developers deploy AI agents directly on its infrastructure, eliminating VPS setup, Docker configuration, and SSH sessions. The entire platform was built using Claude Code by a solo founder.