How Notion Workers run untrusted code at scale with Vercel Sandbox

Notion Workers allows developers to write and deploy code that extends the functionality of Notion by integrating external data, automating tasks, and calling APIs. These Workers operate on the Vercel Sandbox, which provides strong isolation through ephemeral Firecracker microVMs that ensure security by preventing unauthorized data access and credential exposure. This setup supports various use cases, such as syncing CRM data, triggering automations, and enhancing AI agent capabilities, while maintaining safety and performance. By leveraging Vercel Sandbox, Notion can focus on enhancing developer experiences without the burden of building complex infrastructure, as it aims to transform itself into a robust developer platform. Vercel Sandbox offers essential features like credential injection, dynamic network policies, and filesystem-based snapshots, making it an ideal choice for handling untrusted code execution at scale.