Scoopfeeds — Intelligent news, curated.
Microsoft launches MXC, an OS-level sandbox for AI agents, with OpenAI and Nvidia already on board
ai

Microsoft launches MXC, an OS-level sandbox for AI agents, with OpenAI and Nvidia already on board

VentureBeat AI · Jun 2, 2026, 4:30 PM · Also reported by 4 other sources

Why this matters: a development in AI with implications for how people work, create, and decide.

For the past two years, the technology industry has raced to make AI agents more capable — teaching them to write code, navigate software interfaces, manage files, and orchestrate multi-step workflows with increasing autonomy. What the industry has not done, at least not with any consistency, is answer the question that keeps chief information security officers awake at night: what happens when an agent goes wrong?On Tuesday at its annual Build developer conference, Microsoft offered what may become the definitive answer. The company introduced Microsoft Execution Containers, or MXC — a policy-driven execution layer, built into the Windows operating system itself, that lets developers and IT administrators declare exactly what an AI agent can and cannot access, with those boundaries enforced at runtime by the OS kernel.The announcement, buried within a sweeping set of developer-focused updates, is arguably the most consequential platform move Microsoft made at Build this year, and it has the potential to reshape how every enterprise on Earth thinks about deploying autonomous AI software.MXC is not a product you buy. It is an SDK and a policy model — a foundational primitive embedded in Windows and the Windows Subsystem for Linux — that provides what Microsoft calls a "composable sandbox spectrum." That spectrum ranges from lightweight process isolation, already adopted by GitHub Copilot's command-line interface, all the way up to micro-virtual machines, Linux containers, and full cloud instances running on Windows 365.The system separates an agent's execution from the user's desktop, clipboard, user interface, and input devices. Critically, it binds every agent to a strong identity — either a local ID or a cloud-provisioned identity backed by Microsoft Entra — so that every action the agent takes can be attributed, audited, and governed.The implications are enormous. Until now, the enterprise deployment of AI agents has been stuck in a paradox: the mo

Article preview — originally published by VentureBeat AI. Full story at the source.
Read full story on VentureBeat AI → More top stories

Also covered by

CNET Microsoft Made a Bing for AI Agents 9to5Mac Microsoft CEO: We’re moving from OS and apps to agents instead Investing.com Microsoft launches AI assistant that acts as virtual employee Bloomberg Tech Microsoft Launches AI That Works Like an Executive Assistant

More in ai

TechCrunch AI
Martin Scorsese becomes the latest — and most unlikely — Hollywood voice for AI
TechCrunch AI
Microsoft launches Scout, an OpenClaw-inspired personal assistant
Wired
Meet Microsoft Scout, Your AI Coworker That Never Logs Off
Wired
Android Is Fighting Phone Scams With a New Feature to Prove Who's Calling
TechCrunch AI
Microsoft offers devs a better way to control AI agent behavior

Browse all ai coverage →

Aggregated and edited by the Scoop newsroom. We surface news from VentureBeat AI alongside other reporting so you can compare coverage in one place. Editorial policy · Corrections · About Scoop