Skip to content
/ safe-python-executor Public

Flask API that safely runs user provided Python scripts in a sandbox and returns the result of main() and captured stdout as JSON.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

parahatreis/safe-python-executor

BranchesTags

Repository files navigation

Safe Python Executor

This API lets clients send a Python script that defines main(). The script is executed inside a locked down nsjail environment with:

  • Limited CPU and memory
  • A restricted filesystem
  • No network access

After execution, the service returns:

  • result: the JSON serializable return value of main()
  • stdout: anything printed by the script

Requirements

  • Docker
  • Poetry (for local development)

Running Locally

Run the container:

docker-compose up --build

The app will be available at http://localhost:8080

Test with curl

Local (docker-compose port 8080):

curl -X POST http://localhost:8080/execute \
  -H 'Content-Type: application/json' \
  -d '{"script": "def main():\n    return 42"}'

Production:

curl -X POST https://safe-python-executor-538469180276.us-central1.run.app/execute \
  -H 'Content-Type: application/json' \
  -d '{"script": "def main():\n    return 42"}'

Reference TEST_CASES.md file to test with different request bodies.

Production

The production API is available at:

https://safe-python-executor-538469180276.us-central1.run.app/execute

Endpoints

  • GET / - Returns a hello message
  • GET /health - Health check endpoint
  • POST /execute - Execute a Python script

About

Flask API that safely runs user provided Python scripts in a sandbox and returns the result of main() and captured stdout as JSON.

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages