A near-miss during beta testing exposed critical flaws in an AI agent's execution environment, proving that directory conventions aren't real security boundaries. This article explores practical sandboxing techniques for autonomous agents, covering container isolation, state leakage, resource limits, restricted networking, and why agent sandboxes require a stronger threat model than traditional CI environments.