When LLMs write code, database queries, or trigger APIs, there is a risk of prompt injection executing malicious commands.
Sandboxing isolates execution environments using secure microVMs (like AWS Firecracker or WASM) and enforces strict input/output schemas to prevent data leaks or host system compromise.