Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sandbox Python Execution #2

Open
okennedy opened this issue Mar 12, 2018 · 2 comments
Open

Sandbox Python Execution #2

okennedy opened this issue Mar 12, 2018 · 2 comments
Labels
bug Something isn't working enhancement New feature or request

Comments

@okennedy
Copy link
Contributor

If we're going to rely on Python as heavily as we do, it needs to be executed in a sandboxed context.

Here's some discussion about how to possibly pull this off.

https://stackoverflow.com/questions/3688708/python-safe-sandbox#3688718

Jupyter does this on their hosted services, as, presumably does GitHub. Other services like CodePad also need to play similar games. http://codepad.org/about describes the trick as using chroot and blocking most system calls with ptrace. Sandstorm.io does something similar.
@okennedy okennedy added bug Something isn't working enhancement New feature or request labels Mar 12, 2018
@gourab5139014
Copy link

One of the options we could consider is swapping out the current Python interpreter with https://wiki.python.org/moin/SandboxedPython

@okennedy
Copy link
Contributor Author

PyPy seems like it might be a fairly lightweight solution to the sandboxed execution problem. The drawback is that it's built around only Python 2.7.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@gourab5139014 @okennedy