Engineering teams are increasingly moving the agent control loop outside the sandbox to better manage multi-user environments and credentials. This architecture prevents credential leaks and allows for durable execution, ensuring that agent sessions survive server restarts and sandbox failures. By treating sandboxes as disposable resources, organizations can scale shared memories and skills without the complexities of distributed filesystems.