feat(api): add PATCH /sandboxes/{id}/metadata

packages/api/internal/handlers/sandbox_metadata_patch.go

@@ -0,0 +1,48 @@
+package handlers
+
+import (
+	"fmt"
+	"net/http"
+
+	"github.com/gin-gonic/gin"
+
+	"github.com/e2b-dev/infra/packages/api/internal/api"
+	"github.com/e2b-dev/infra/packages/api/internal/utils"
+	"github.com/e2b-dev/infra/packages/auth/pkg/auth"
+	"github.com/e2b-dev/infra/packages/shared/pkg/ginutils"
+	"github.com/e2b-dev/infra/packages/shared/pkg/telemetry"
+)
+
+func (a *APIStore) PatchSandboxesSandboxIDMetadata(
+	c *gin.Context,
+	sandboxID string,
+) {
+	ctx := c.Request.Context()
+
+	var err error
+	sandboxID, err = utils.ShortID(sandboxID)
+	if err != nil {
+		a.sendAPIStoreError(c, http.StatusBadRequest, "Invalid sandbox ID")
+
+		return
+	}
+
+	team := auth.MustGetTeamInfo(c)
+
+	body, err := ginutils.ParseBody[api.PatchSandboxesSandboxIDMetadataJSONRequestBody](ctx, c)
+	if err != nil {
+		a.sendAPIStoreError(c, http.StatusBadRequest, fmt.Sprintf("Error when parsing request: %s", err))
+		telemetry.ReportCriticalError(ctx, "error when parsing request", err)
+
+		return
+	}
+
+	if apiErr := a.orchestrator.PatchSandboxMetadata(ctx, team.ID, sandboxID, body); apiErr != nil {
+		telemetry.ReportErrorByCode(ctx, apiErr.Code, "error patching sandbox metadata", apiErr.Err)
+		a.sendAPIStoreError(c, apiErr.Code, apiErr.ClientMsg)
+
+		return
+	}
+
+	c.Status(http.StatusNoContent)
+}

packages/api/internal/orchestrator/nodemanager/sandboxes.go

@@ -99,7 +99,7 @@ func (n *Node) GetSandboxes(ctx context.Context) ([]sandbox.Sandbox, error) {
 				config.GetExecutionId(),
 				teamID,
 				buildID,
-				config.GetMetadata(),
+				sbx.GetMetadata(),
 				time.Duration(config.GetMaxSandboxLength())*time.Hour,
 				sbx.GetStartTime().AsTime(),
 				sbx.GetEndTime().AsTime(),

packages/api/internal/orchestrator/patch_metadata.go

@@ -0,0 +1,121 @@
+package orchestrator
+
+import (
+	"context"
+	"errors"
+	"fmt"
+	"maps"
+	"net/http"
+
+	"github.com/google/uuid"
+	"go.opentelemetry.io/otel/attribute"
+	"go.opentelemetry.io/otel/trace"
+	"google.golang.org/grpc/codes"
+	"google.golang.org/grpc/status"
+
+	"github.com/e2b-dev/infra/packages/api/internal/api"
+	"github.com/e2b-dev/infra/packages/api/internal/sandbox"
+	"github.com/e2b-dev/infra/packages/api/internal/utils"
+	orchestratorgrpc "github.com/e2b-dev/infra/packages/shared/pkg/grpc/orchestrator"
+	"github.com/e2b-dev/infra/packages/shared/pkg/telemetry"
+)
+
+// PatchSandboxMetadata applies a JSON-Merge-Patch-style update: non-nil values
+// upsert the key, a nil pointer (or empty string) removes it, and absent keys
+// are left alone.
+func (o *Orchestrator) PatchSandboxMetadata(
+	ctx context.Context,
+	teamID uuid.UUID,
+	sandboxID string,
+	patch map[string]*string,
+) *api.APIError {
+	var merged map[string]string
+
+	updateFunc := func(sbx sandbox.Sandbox) (sandbox.Sandbox, error) {
+		if sbx.State != sandbox.StateRunning {
+			return sbx, &sandbox.NotRunningError{SandboxID: sandboxID, State: sbx.State}
+		}
+
+		merged = applyMetadataPatch(sbx.Metadata, patch)
+		sbx.Metadata = merged
+
+		return sbx, nil
+	}
+
+	var sbxNotRunningErr *sandbox.NotRunningError
+
+	sbx, err := o.sandboxStore.Update(ctx, teamID, sandboxID, updateFunc)
+	if err != nil {
+		switch {
+		case errors.As(err, &sbxNotRunningErr):
+			return &api.APIError{Code: http.StatusConflict, ClientMsg: utils.SandboxChangingStateMsg(sandboxID, sbxNotRunningErr.State), Err: err}
+		case errors.Is(err, sandbox.ErrNotFound):
+			return &api.APIError{Code: http.StatusNotFound, ClientMsg: utils.SandboxNotFoundMsg(sandboxID), Err: err}
+		default:
+			return &api.APIError{Code: http.StatusInternalServerError, ClientMsg: "Error patching sandbox metadata", Err: err}
+		}
+	}
+
+	return o.patchSandboxMetadataOnNode(ctx, sbx, merged)
+}
+
+func applyMetadataPatch(current map[string]string, patch map[string]*string) map[string]string {
+	out := make(map[string]string, len(current)+len(patch))
+	maps.Copy(out, current)
+	for k, v := range patch {
+		if v == nil || *v == "" {
+			delete(out, k)
+		} else {
+			out[k] = *v
+		}
+	}
+
+	return out
+}
+
+func (o *Orchestrator) patchSandboxMetadataOnNode(
+	ctx context.Context,
+	sbx sandbox.Sandbox,
+	metadata map[string]string,
+) *api.APIError {
+	ctx, span := tracer.Start(ctx, "patch-sandbox-metadata-on-node",
+		trace.WithAttributes(
+			attribute.String("instance.id", sbx.SandboxID),
+		),
+	)
+	defer span.End()
+
+	node := o.getOrConnectNode(ctx, sbx.ClusterID, sbx.NodeID)
+	if node == nil {
+		return &api.APIError{
+			Code:      http.StatusInternalServerError,
+			ClientMsg: fmt.Sprintf("Node hosting sandbox '%s' not found", sbx.SandboxID),
+			Err:       fmt.Errorf("node '%s' not found for cluster '%s'", sbx.NodeID, sbx.ClusterID),
+		}
+	}
+
+	client, ctx := node.GetClient(ctx)
+	_, err := client.Sandbox.Update(ctx, &orchestratorgrpc.SandboxUpdateRequest{
+		SandboxId: sbx.SandboxID,
+		Metadata:  &orchestratorgrpc.SandboxMetadataUpdate{Entries: metadata},
+	})
+	if err != nil {
+		grpcErr, ok := status.FromError(err)
+		if ok && grpcErr.Code() == codes.NotFound {
+			return &api.APIError{Code: http.StatusNotFound, ClientMsg: utils.SandboxNotFoundMsg(sbx.SandboxID), Err: err}
+		}
+
+		err = utils.UnwrapGRPCError(err)
+		telemetry.ReportCriticalError(ctx, "failed to patch sandbox metadata on node", err)
+
+		return &api.APIError{
+			Code:      http.StatusInternalServerError,
+			ClientMsg: "Error applying metadata to sandbox",
+			Err:       fmt.Errorf("failed to patch sandbox metadata on node: %w", err),
+		}
+	}
+
+	telemetry.ReportEvent(ctx, "Patched sandbox metadata on node")
+
+	return nil
+}

packages/orchestrator/orchestrator.proto

@@ -101,6 +101,11 @@ message SandboxUpdateRequest {
   // All fields are optional — only set fields are applied.
   optional google.protobuf.Timestamp end_time = 2;
   optional SandboxNetworkEgressConfig egress = 3;
+  optional SandboxMetadataUpdate metadata = 4;
+}
+
+message SandboxMetadataUpdate {
+  map<string, string> entries = 1;
 }
 
 message SandboxDeleteRequest {
@@ -127,6 +132,10 @@ message RunningSandbox {
 
   google.protobuf.Timestamp start_time = 3;
   google.protobuf.Timestamp end_time = 4;
+
+  // Live user-facing metadata tags. Authoritative over config.metadata, which
+  // reflects only the create-time snapshot.
+  map<string, string> metadata = 5;
 }
 
 message SandboxListResponse {

packages/orchestrator/pkg/sandbox/sandbox.go

@@ -182,9 +182,10 @@ type Metadata struct {
 	Config         *Config
 	Runtime        RuntimeMetadata
 
-	rwmu      sync.RWMutex // protects startedAt, endAt
-	startedAt time.Time
-	endAt     time.Time
+	rwmu        sync.RWMutex // protects startedAt, endAt, apiMetadata
+	startedAt   time.Time
+	endAt       time.Time
+	apiMetadata map[string]string
 }
 
 // GetEndAt returns the sandbox end time in a thread-safe manner.
@@ -203,6 +204,28 @@ func (m *Metadata) SetEndAt(t time.Time) {
 	m.endAt = t
 }
 
+// GetAPIMetadata returns the user-facing sandbox metadata tags. Callers must
+// not mutate the map.
+func (m *Metadata) GetAPIMetadata() map[string]string {
+	m.rwmu.RLock()
+	defer m.rwmu.RUnlock()
+
+	return m.apiMetadata
+}
+
+// SetAPIMetadata replaces the user-facing metadata. Callers must not mutate the
+// map after handing it over.
+func (m *Metadata) SetAPIMetadata(metadata map[string]string) {
+	if metadata == nil {
+		metadata = map[string]string{}
+	}
+
+	m.rwmu.Lock()
+	defer m.rwmu.Unlock()
+
+	m.apiMetadata = metadata
+}
+
 type Sandbox struct {
 	*Resources
 	*Metadata
@@ -456,8 +479,9 @@ func (f *Factory) CreateSandbox(
 		Config:  config,
 		Runtime: runtime,
 
-		startedAt: time.Now(),
-		endAt:     time.Now().Add(sandboxTimeout),
+		startedAt:   time.Now(),
+		endAt:       time.Now().Add(sandboxTimeout),
+		apiMetadata: apiConfigToStore.GetMetadata(),
 	}
 
 	sbx := &Sandbox{
@@ -803,8 +827,9 @@ func (f *Factory) ResumeSandbox(
 		Config:  config,
 		Runtime: runtime,
 
-		startedAt: startedAt,
-		endAt:     endAt,
+		startedAt:   startedAt,
+		endAt:       endAt,
+		apiMetadata: apiConfigToStore.GetMetadata(),
 	}
 
 	sbx := &Sandbox{

packages/orchestrator/pkg/server/sandboxes.go

@@ -336,6 +336,17 @@
 		})
 	}
 
+	if req.GetMetadata() != nil {
+		updates = append(updates, func(_ context.Context) (func(context.Context), error) {
+			oldMetadata := sbx.GetAPIMetadata()
+			sbx.SetAPIMetadata(req.GetMetadata().GetEntries())
+
+			return func(_ context.Context) {
+				sbx.SetAPIMetadata(oldMetadata)
+			}, nil
+		})
+	}
+
 	if err := utils.ApplyAllOrNone(ctx, updates); err != nil {
 		telemetry.ReportCriticalError(ctx, "failed to update sandbox", err)
 
@@ -355,7 +366,6 @@
 				"allowed_domains": egress.GetAllowedDomains(),
 			}
 		}
-
 		go s.sbxEventsService.Publish(
 			context.WithoutCancel(ctx),
 			teamID,
@@ -401,6 +411,7 @@
 			ClientId:  s.info.ClientId,
 			StartTime: timestamppb.New(startedAt),
 			EndTime:   timestamppb.New(sbx.GetEndAt()),
+			Metadata:  sbx.GetAPIMetadata(),
 		})
 	}
 
@@ -629,12 +640,15 @@
 	)
 	if err != nil {
 		telemetry.ReportCriticalError(ctx, "error resuming sandbox after checkpoint", err, telemetry.WithSandboxID(in.GetSandboxId()))
 
 		return nil, status.Errorf(codes.Internal, "error resuming sandbox after checkpoint: %s", err)
 	}
+	// ResumeSandbox seeds apiMetadata from the (immutable) APIStoredConfig
+	// snapshot — override with the live value so any PATCH carries over.
+	resumedSbx.SetAPIMetadata(sbx.GetAPIMetadata())
 
 	// Collect prefetch data immediately after resume while it's most accurate
 	prefetchData, prefetchErr := resumedSbx.MemoryPrefetchData(ctx)
 	if prefetchErr != nil {
 		sbxlogger.I(resumedSbx).Warn(ctx, "failed to get prefetch data for checkpoint", zap.Error(prefetchErr))
 	}
@@ -692,13 +706,13 @@
 	}
 
 	buildId := ""
-	eventData := make(map[string]any)
 	if sbx.APIStoredConfig != nil {
 		buildId = sbx.APIStoredConfig.GetBuildId()
-		if sbx.APIStoredConfig.Metadata != nil {
-			// Copy the map to avoid race conditions
-			eventData["sandbox_metadata"] = utils.ShallowCopyMap(sbx.APIStoredConfig.GetMetadata())
-		}
+	}
+
+	eventData := make(map[string]any)
+	if md := sbx.GetAPIMetadata(); len(md) > 0 {
+		eventData["sandbox_metadata"] = md
 	}
 
 	return teamID, buildId, eventData