Container Configuration
The [container] section in aibox.toml controls per-project container settings.
Container Identity
[container]
name = "my-project" # Container name (used by compose)
hostname = "my-project" # Container hostname
user = "aibox" # Container user (default: aibox)
The user field determines the non-root user inside the container. The default aibox user (UID 1000) is recommended. Set user = "root" only if needed for specific tools.
aibox apply generates a Compose file with an explicit top-level project name,
an explicit service image, and container_name = [container].name. Docker
Desktop, OrbStack, and Compose UIs therefore group aibox projects by their
project/container names instead of under a generic devcontainer identity.
The generated main service also sets Compose init: true. Compose starts a
small init process as PID 1 so orphaned child processes are reaped correctly
while the service still runs command: sleep infinity as its long-lived
container command. This prevents zombie buildup from tools that spawn helper
processes, including bubblewrap-based sandbox helpers.
init: true is part of the Compose Specification. Docker Compose and modern
Compose-spec providers support it. podman compose delegates to an external
Compose provider, so support depends on the configured provider; if an older
provider rejects the key, upgrade the provider rather than removing the reaper
from generated projects.
Use the configured container name when writing Compose overrides:
services:
my-project:
ports:
- "8080:80"
Post-Create Command
Run a command after the container is first created:
[container]
post_create_command = "npm install"
This maps to devcontainer.json's postCreateCommand.
Network Keepalive
Prevent OrbStack/VM NAT from dropping idle connections:
[container]
keepalive = true
This sends a lightweight DNS lookup every 2 minutes via the devcontainer postStartCommand.
Custom Packages, Ports, Volumes, and Environment Variables
Container customizations such as extra packages, port forwarding, volume mounts, and environment variables are handled through standard Docker mechanisms rather than aibox.toml.
Extra Packages — Dockerfile.local
Install additional apt packages by adding them to .devcontainer/Dockerfile.local, which is appended to the generated Dockerfile at build time:
RUN apt-get update && apt-get install -y --no-install-recommends \
universal-ctags graphviz postgresql-client \
&& rm -rf /var/lib/apt/lists/*
Ports, Volumes, and Environment Variables — docker-compose.override.yml
Use .devcontainer/docker-compose.override.yml to add port mappings, volume mounts, and environment variables:
services:
my-project: # must match [container] name in aibox.toml
ports:
- "8080:80"
- "5432:5432"
volumes:
- /host/data:/container/data:ro
environment:
DATABASE_URL: "postgres://localhost/mydb"
NODE_ENV: "development"
Both Dockerfile.local and docker-compose.override.yml are scaffolded by aibox init and are never overwritten by aibox apply.
Compose Override
For project-specific services (databases, sidecars, test companions), use Docker Compose's standard override mechanism. During aibox init, an empty .devcontainer/docker-compose.override.yml is scaffolded with example usage.
Docker Compose automatically merges the override file with the generated docker-compose.yml using a strategic merge — maps (services, environment) are deep-merged by key, lists (ports, volumes) are appended, and scalars (image, command) are replaced.
When aibox apply detects the override file, it wires both files into devcontainer.json so VS Code picks them up.
Example — add a PostgreSQL sidecar:
services:
postgres:
image: postgres:16
environment:
POSTGRES_PASSWORD: dev
ports:
- "5432:5432"
Example — add depends_on to the main service:
services:
my-project: # must match [container] name in aibox.toml
depends_on:
- postgres
The override file is never overwritten by aibox apply — you own it, just like Dockerfile.local.