Sandboxing fundamentals — isolated ephemeral execution

The core safety concept for tool-using agents: code the agent generates should run
in an isolated, ephemeral environment that cannot affect the host, reach production
data, or consume unbounded resources. Students learn the threat model that makes
this non-negotiable — the executing code was not written by a human and cannot be
fully reviewed before it runs.