React Native Sandbox: The Isolation Tool Developers Need
Stop risking your entire app when running third-party React Native code. Every developer knows the nightmare: a crashing plugin, a memory leak in a widget, or a security vulnerability in external code that brings down your whole application. What if you could isolate these risks completely? React Native Sandbox is the revolutionary solution that lets you run multiple, completely isolated React Native instances within a single application—no native code required, bulletproof security built-in.
In this deep dive, you'll discover how Callstack's breakthrough library transforms mobile architecture, explore real-world code examples from the repository, and learn step-by-step implementation strategies. Whether you're building a plugin marketplace, implementing feature flags, or integrating third-party components, this guide gives you everything needed to master micro-app isolation today.
What is React Native Sandbox?
React Native Sandbox is a cutting-edge library developed by Callstack Incubator that enables developers to execute multiple, fully isolated React Native instances within a single mobile application. Born from the critical need to safely run untrusted third-party code, this tool creates secure "micro-apps" that cannot interfere with your host application's state, memory, or functionality.
The project emerged from real-world enterprise challenges where companies needed to embed external React Native bundles—think app marketplaces, white-label features, or A/B testing variants—without compromising core application stability. Traditional approaches either relied on risky code cohabitation or cumbersome WebView solutions that broke the native experience. React Native Sandbox solves this by providing a component-based API that requires zero native code from developers while delivering true process-level isolation.
Currently trending in the React Native ecosystem for its elegant architecture, the library supports React Native 0.78+ and iOS (with Android support on the roadmap). It leverages React Native's new architecture capabilities to create sandboxed environments where each instance operates with its own JavaScript context, preventing global variable collisions, memory leaks, and unauthorized data access. The communication between host and sandboxes happens exclusively through a secure postMessage/onMessage API—similar to web workers—ensuring that only serializable data crosses the isolation boundary.
This isn't just another React Native library; it's a fundamental shift in how we think about mobile app composition, enabling true micro-frontend architectures on mobile without the security trade-offs.
Key Features That Make It Revolutionary
True JavaScript Isolation Each sandbox instance runs in a completely separate JavaScript context. This means global variables, prototype pollution, and memory leaks in one sandbox cannot affect the host app or other sandboxes. The isolation is enforced at the React Native runtime level, not just through JavaScript scoping tricks.
Zero Native Code Required Unlike traditional brownfield solutions or custom native integrations, React Native Sandbox provides a pure JavaScript/TypeScript API. You import a component, pass props, and you're done. The library handles all native complexity internally, saving weeks of native development time.
Secure postMessage/onMessage Communication
The API mirrors the web's Window.postMessage standard, but with mobile-specific optimizations. Only JSON-serializable data can pass between host and sandbox—functions, native objects, and class instances are automatically blocked. This prevents malicious code from accessing host APIs or injecting behavior.
Component-Based Architecture
Integration is as simple as rendering <SandboxReactNativeView /> in your JSX. The component accepts props for bundle source, component name, and message handlers, fitting naturally into React's declarative paradigm. Refs provide imperative control when needed.
Comprehensive Error Boundaries
Sandbox crashes don't crash your host app. The onError prop captures JavaScript errors, native exceptions, and unresponsiveness from within the sandbox, allowing graceful degradation and user-friendly fallbacks.
Inter-Sandbox Communication The library supports peer-to-peer messaging between sandbox instances, enabling complex architectures like plugin-to-plugin communication without host mediation. This is perfect for building extensible systems where add-ons need to coordinate.
Performance Optimized Despite running multiple React Native instances, the library minimizes overhead through intelligent resource sharing and lazy initialization. Sandboxes only consume significant resources when actively rendering, making it viable for apps with dozens of embedded micro-apps.
Developer Experience First With TypeScript support, comprehensive examples, and a monorepo structure that includes demo apps for every use case, the library prioritizes developer productivity. The API is intentionally minimal—most developers can implement their first sandbox in under 30 minutes.
Real-World Use Cases Where It Shines
1. In-App Plugin Marketplaces
Imagine building a Shopify-style marketplace where third-party developers submit React Native plugins for your e-commerce app. Without isolation, one poorly written plugin could steal user data, crash the checkout flow, or corrupt shared state. React Native Sandbox lets each plugin run in its own secure container, accessing only the data you explicitly pass via postMessage. You can revoke permissions, monitor resource usage, and prevent plugins from accessing competitor code.
2. Enterprise White-Label Solutions
Large organizations often need to deploy customized app variants for different clients or departments. Instead of maintaining separate codebases, host a core app and load client-specific features as sandboxed bundles. Each white-label instance gets isolated branding, logic, and data access while sharing the underlying infrastructure. Updating a client's features becomes as simple as deploying a new JavaScript bundle.
3. A/B Testing at Feature Level
Traditional A/B testing frameworks inject variant code directly into your app, risking contamination between test groups. With React Native Sandbox, each variant runs in complete isolation. Test the new checkout flow, user onboarding, or dashboard layout without worrying that Variant A's memory leak affects Variant B's performance metrics. The postMessage API ensures clean data collection and prevents test pollution.
4. Third-Party Widget Integration
Financial apps integrating stock tickers, news feeds, or social features from external providers need bulletproof security. A compromised widget shouldn't access banking data. Sandboxing these widgets ensures they can only receive market data you approve and cannot inspect the host app's memory or network traffic. This is critical for fintech, healthcare, and enterprise applications with strict compliance requirements.
5. Progressive Feature Rollouts
Roll out features gradually to user segments, with the ability to instantly disable them if issues arise. Since each feature is a separate bundle, you can deploy, activate, and rollback independently of the main app release cycle. This enables true continuous deployment for mobile apps, reducing App Store review bottlenecks.
Step-by-Step Installation & Setup Guide
Prerequisites
Before installing, ensure your environment meets these requirements:
- React Native 0.78 or higher (new architecture required)
- iOS 13.0+ target deployment
- Node.js 18+ and npm 8+ or bun
- Xcode 14+ for iOS development
- Basic familiarity with React Native's new architecture (Fabric/TurboModules)
Installation
Install the library using your preferred package manager:
npm install @callstack/react-native-sandbox
For iOS, install native dependencies:
cd ios && pod install
Project Structure Setup
Organize your project to separate host and sandbox code:
MyApp/
├── src/
│ ├── host/ # Host application code
│ │ └── App.tsx
│ └── sandbox/ # Sandbox micro-apps
│ ├── SandboxApp.tsx
│ └── index.js # Bundle entry point
├── ios/
├── android/
└── package.json
Basic Configuration
- Configure Metro Bundler: Update
metro.config.jsto build sandbox bundles:
module.exports = {
transformer: {
getTransformOptions: async () => ({
transform: {
experimentalImportSupport: false,
inlineRequires: true,
},
}),
},
// Add separate entry points for sandboxes
resolver: {
sourceExts: ['js', 'jsx', 'ts', 'tsx'],
},
};
- Create Sandbox Bundle Entry: In
src/sandbox/index.js:
import { AppRegistry } from 'react-native';
import SandboxApp from './SandboxApp';
AppRegistry.registerComponent('SandboxApp', () => SandboxApp);
- Build the Sandbox Bundle:
npx react-native bundle \
--entry-file src/sandbox/index.js \
--bundle-output ios/main.jsbundle \
--platform ios \
--dev false
Running the Examples
The monorepo includes several demo applications. To run them:
# Clone and setup
git clone https://github.com/callstackincubator/react-native-sandbox.git
cd react-native-sandbox
bun install
# Run a specific example
cd apps/side-by-side
bun install
bun ios
This launches an app demonstrating two sandbox instances running simultaneously—perfect for understanding the isolation model.
REAL Code Examples from the Repository
Example 1: Host Application Integration
This code shows exactly how to embed a sandbox in your host app, taken directly from the repository's API example:
import React, { useRef } from 'react';
import { View, Button } from 'react-native';
import SandboxReactNativeView, { SandboxReactNativeViewRef } from 'react-native-sandbox';
function HostApp() {
// Create a ref to interact with the sandbox imperatively
const sandboxRef = useRef<SandboxReactNativeViewRef>(null);
// Handle messages from the sandboxed micro-app
const handleMessage = (message) => {
console.log("Message received from sandbox:", message);
// Process sandbox data, update host state, or trigger actions
};
// Capture and handle sandbox errors without crashing the host
const handleError = (error) => {
console.error("Error in sandbox:", error);
// Implement fallback UI, alert users, or disable the sandbox
};
// Send data to the sandbox via the postMessage API
const sendMessageToSandbox = () => {
sandboxRef.current?.postMessage({
data: "Hello from the host!",
timestamp: Date.now(),
action: "update"
});
};
return (
<View style={{ flex: 1 }}>
{/* Host UI controls */}
<Button
onPress={sendMessageToSandbox}
title="Send to Sandbox"
/>
{/* The sandboxed React Native instance */}
<SandboxReactNativeView
ref={sandboxRef}
jsBundleSource={"sandbox"} // References pre-built bundle
componentName={"SandboxApp"} // Must match AppRegistry name
onMessage={handleMessage} // Receives serializable data only
onError={handleError} // Error boundary for isolation
style={{ flex: 1, width: '100%' }} // Standard View styles
/>
</View>
);
}
Key Implementation Details:
- The
SandboxReactNativeViewRefprovides imperative methods likepostMessage() jsBundleSourcecan be a local file name or remote URL for dynamic loadingcomponentNamemust exactly match the string used inAppRegistry.registerComponent()- The
onMessagehandler only receives JSON-serializable data—no functions or native objects - Errors are completely contained; the host app continues running even if the sandbox crashes
Example 2: Sandboxed Application Code
This is the code that runs inside the sandbox, demonstrating how micro-apps communicate with the host:
import React, { useState, useEffect, useCallback } from 'react';
import { View, Button, Text } from 'react-native';
// Global API is injected by the sandbox runtime—no import needed
declare global {
var postMessage: (message: object) => void;
var setOnMessage: (handler: (payload: object) => void) => void;
}
function SandboxApp() {
const [data, setData] = useState<string | undefined>();
// Use useCallback to memoize the message handler
const onMessage = useCallback((payload: unknown) => {
// Only serializable data arrives here—safe from injection attacks
setData(JSON.stringify(payload, null, 2));
// React to specific messages from host
if (typeof payload === 'object' && payload?.action === 'update') {
// Trigger updates, fetch data, or modify sandbox state
console.log('Host requested update');
}
}, []);
// Register message listener on mount
useEffect(() => {
globalThis.setOnMessage(onMessage);
// Cleanup on unmount
return () => {
globalThis.setOnMessage(() => {});
};
}, [onMessage]);
// Send messages back to the host application
const postMessageToHost = () => {
globalThis.postMessage({
data: 'Hello from the Sandbox!',
type: 'greeting',
metrics: {
renderTime: performance.now()
}
});
};
return (
<View style={{ padding: 20 }}>
<Button
onPress={postMessageToHost}
title="Send Data to Host"
/>
<Text style={{ marginTop: 20, fontFamily: 'monospace' }}>
Received: {data}
</Text>
</View>
);
}
// CRITICAL: Must match componentName prop in host
AppRegistry.registerComponent("SandboxApp", () => SandboxApp);
Critical Security Notes:
- No imports needed for
postMessage/setOnMessage—they're injected globals - The sandbox cannot access host imports, state, or native modules unless explicitly proxied
- All communication is asynchronous and serialized, preventing synchronous attacks
- The
AppRegistryname must be identical on both host and sandbox sides
Example 3: Building and Running Sandboxes
From the repository's example scripts, here's how to manage sandbox bundles:
# Install dependencies for the entire monorepo
bun install
# Navigate to a specific example
cd apps/side-by-side
bun install
# Run the example on iOS simulator
bun ios
# For production, build sandbox bundles separately
npx react-native bundle \
--entry-file src/sandbox/index.js \
--bundle-output ios/sandbox.jsbundle \
--platform ios \
--dev false \
--minify true \
--reset-cache
This demonstrates the monorepo structure where examples are self-contained apps that showcase different isolation patterns. The side-by-side example is particularly valuable as it renders two independent sandboxes simultaneously, proving there's no shared state leakage.
Advanced Usage & Best Practices
Bundle Splitting and Dynamic Loading
For large applications, split your sandbox bundles by feature:
const loadSandbox = async (feature: string) => {
const bundleUrl = `https://cdn.example.com/sandboxes/${feature}.jsbundle`;
// Verify bundle integrity (critical for security)
const signature = await fetch(`${bundleUrl}.sig`);
const isValid = await verifySignature(await signature.text());
if (!isValid) throw new Error('Bundle signature invalid');
return bundleUrl;
};
<SandboxReactNativeView
jsBundleSource={await loadSandbox('analytics-dashboard')}
componentName="Dashboard"
/>
Memory Management
Sandboxes consume memory. Implement lifecycle management:
const [sandboxVisible, setSandboxVisible] = useState(false);
// Only mount sandbox when needed
{sandboxVisible && (
<SandboxReactNativeView
key="unique-sandbox-id" // Important: changing key unmounts/remounts
jsBundleSource="..."
componentName="..."
/>
)}
Security Hardening
Never pass sensitive data directly. Use tokenization:
// Instead of passing user data
sandboxRef.current?.postMessage({
userId: '123',
token: getSecureToken(), // Short-lived, scoped token
action: 'fetchUserData'
});
// Sandbox uses token to call your secure API, not access host data
Error Recovery
Implement sandbox restart logic:
const handleError = (error) => {
console.error('Sandbox crashed:', error);
// Log crash for monitoring
crashlytics().recordError(error);
// Attempt graceful recovery
setSandboxKey(prev => prev + 1); // Forces remount
};
Comparison with Alternatives
| Feature | React Native Sandbox | WebView Bridge | Native Modules | Micro-Frontend |
|---|---|---|---|---|
| True Isolation | ✅ Full JS context isolation | ⚠️ Limited (still shared process) | ❌ No (native code has full access) | ⚠️ Depends on implementation |
| Native Performance | ✅ Native UI, no web overhead | ❌ WebView performance penalty | ✅ Full native speed | ✅ Native performance |
| Security | ✅ postMessage-only API | ⚠️ XSS vulnerabilities possible | ❌ No built-in sandboxing | ⚠️ Manual security required |
| Development Speed | ✅ No native code needed | ✅ Web tech familiarity | ❌ Requires native expertise | ⚠️ Complex setup |
| Bundle Size | ✅ Minimal overhead | ⚠️ WebView adds ~15MB | ✅ No overhead | ⚠️ Can be large |
| iOS Support | ✅ Full support (RN 0.78+) | ✅ Good | ✅ Excellent | ⚠️ Varies |
| Android Support | 🚧 On roadmap | ✅ Excellent | ✅ Excellent | ⚠️ Varies |
| Communication | ✅ Structured postMessage | ⚠️ Brittle bridge calls | ✅ Direct but risky | ⚠️ Complex orchestration |
Why Choose React Native Sandbox? It uniquely combines true isolation with native performance and zero native development. While WebViews are easier but slower, and native modules are powerful but dangerous, the Sandbox gives you the best of both worlds: security without compromise.
Frequently Asked Questions
Q: What React Native versions are compatible? A: React Native Sandbox requires 0.78 or higher because it depends on the new architecture's TurboModules and Fabric renderer for proper isolation. Older versions lack the necessary runtime capabilities.
Q: How does isolation actually work? A: Each sandbox creates a separate JavaScript runtime context with its own global scope, module cache, and React tree. The host app communicates via a controlled bridge that only accepts serialized messages, preventing direct object references or function calls.
Q: Can sandboxes access device features like camera or GPS?
A: Not directly. Sandboxes must request access through the host app via postMessage. The host can then proxy native module calls, applying permission checks and data sanitization. This is a security feature, not a limitation.
Q: What's the performance overhead of multiple instances? A: Each sandbox adds ~20-30MB of memory overhead and minimal CPU usage when idle. The library shares React Native runtime code between instances, so the marginal cost decreases with each additional sandbox. For most apps, 3-5 simultaneous sandboxes perform excellently.
Q: When will Android support be available? A: Android support is the top roadmap priority. The team is actively working on it, targeting Q2 2024. The delay is due to Android's different process model requiring additional native implementation.
Q: How is this different from React Native WebView? A: WebViews run JavaScript in a web engine (JavaScriptCore/V8), not React Native. They can't render native components, have slower performance, and limited native integration. React Native Sandbox runs actual React Native code with full native UI capabilities.
Q: Can I share Redux stores between host and sandboxes?
A: No, and that's intentional for security. Instead, use the postMessage API to dispatch actions or sync state slices. For complex scenarios, consider a message broker pattern where the host manages state and pushes updates to sandboxes.
Conclusion
React Native Sandbox isn't just a library—it's a paradigm shift for mobile development. By delivering true isolation without sacrificing performance or developer experience, Callstack has solved one of React Native's most pressing enterprise challenges. The component-based API, secure communication model, and zero native code requirement make it accessible to any React Native team.
Whether you're building a plugin ecosystem, implementing bulletproof third-party integrations, or architecting the next generation of white-label apps, this tool belongs in your arsenal. The active roadmap promises Android support, RE.Pack integration, and enhanced security features, making now the perfect time to adopt.
Don't let third-party code jeopardize your app. Start sandboxing today. Visit the official repository, run the examples, and join the growing community of developers building safer, more modular mobile applications. Your future self—and your users—will thank you.
Install now: npm install @callstack/react-native-sandbox and transform how you build React Native apps forever.
