OpenAI's Agents SDK gets sandboxing and harness support for safer long-horizon tasks

OpenAI has pushed a meaningful update to its Agents SDK, adding sandboxed execution environments and an in-distribution harness for frontier models. The goal: give enterprises a safer, more structured way to deploy agents that can handle complex, multi-step work without going off the rails.

What's new

The two headline additions are sandboxing and harness support. Sandboxing lets agents operate inside controlled compute environments — isolated workspaces where they can only touch specific files and tools, keeping the rest of the system out of reach. This matters because unsupervised agents can and do behave unpredictably, and containment is a practical mitigation rather than just a checkbox. The harness feature gives developers a structured wrapper around the model itself — the surrounding components that handle deployment, testing, and tool access — enabling agents to work with approved resources within a given workspace. According to OpenAI's Karan Sharma, the point is compatibility: the updated SDK works with existing sandbox providers rather than locking users into OpenAI's own infrastructure.

Why it matters

Long-horizon agents — the kind that execute multi-step workflows autonomously over extended periods — are where the enterprise money is right now. But they're also where the risk is highest. Sandboxing and standardized harnesses are table-stakes safety infrastructure for any serious production deployment. OpenAI is essentially acknowledging that raw model capability isn't enough; the scaffolding around the model is what determines whether an enterprise will actually ship. Anthropic has been making similar moves with its own tooling, and the SDK arms race is quietly becoming as competitive as the model arms race.

What to watch

The initial release is Python-only, with TypeScript support listed as forthcoming — a notable gap for frontend-heavy teams. OpenAI says it will continue expanding the SDK over time, but specifics beyond sandboxing and harness support weren't disclosed. Watch for how tightly these features integrate with OpenAI's broader operator and compliance tooling as enterprise deals get larger and audit requirements get stricter.