Windows is MalwareSep 6, 2023

Proc macro sandboxing

https://lemmy.ml/post/4472428

Proc macro sandboxing - Lemmy

Show threadexpertmadman

we’re working on a third party solution for this. Should have some updates that sandbox cargo builds shortly.

github.com/phylum-dev/birdcage

It’s a cross-platform sandbox that works on Linux via Landlock and macOS via Seatbelt. We’ve rolled this into our CLI (github.com/phylum-dev/cli) so you can do thinks like:

phylum

For example for npm, which currently uses the sandbox:

phylum npm install

We’re adding this to cargo to similarly sandbox crate installations. Would love feedback and thoughts on our sandbox!

GitHub - phylum-dev/birdcage: Cross-platform embeddable sandboxing

Cross-platform embeddable sandboxing. Contribute to phylum-dev/birdcage development by creating an account on GitHub.

GitHub
Sep 6, 2023 at 3:02amWeb