Marius (windsheep)22h ago

https://github.com/always-further/nono

This is a good #sandbox for macOS and Linux #agentic workflows.

Sadly I need this for Windows more, because both #gemini and #claude have the habit of producing rm -rf / equivalents with find in #PowerShell.

However, Windows doesn't have the developer community. So it's probably time to drop it. in the enterprise as well.

GitHub - always-further/nono: Kernel-enforced agent sandbox and agent security CLI and SDKs. Capability-based isolation with secure key management, atomic rollback, cryptographic immutable audit chain of provenance. Run your agents in a zero-trust environment.

Kernel-enforced agent sandbox and agent security CLI and SDKs. Capability-based isolation with secure key management, atomic rollback, cryptographic immutable audit chain of provenance. Run your ag...

GitHub
Show threadQuinn Comendant
@windsheep I like it too, it's the best macOS Seatbelt wrapper I've found. However, it's worth keeping in mind that it's a new project and the API is rapidly changing. It has a ways to go before it's full-featured and stable.
Mar 25 at 7:26pmMona for iPhone