/sandbox toggles sandbox mode, which restricts file and network access during the session — block reads of sensitive paths, pre-approve or block network domains, or route traffic through your own proxy for inspection.

You’re testing a sketchy npm package’s install script before trusting it in your real project. You flip on /sandbox so it can’t reach the network or touch files outside the project, then watch what it actually tries to do.