A simple, cross-platform sandboxing C library powering Criterion.
Warning: This library is experimental. APIs may change without notice until Beta is hit. Use at your own risk.
BoxFort provides a simple API to run user code in isolated processes.
Although BoxFort provides some kind of security of the parent process from spawned sandboxes, a sandbox has by default the same system permissions and access than its parent, and is hence, without care, ill-fitted for security purposes.
The main goal of this project is not security, but portable code isolation -- if you want complete system isolation, consider using properly configured containers.