Comment by stavros

I wrote something small the other day to make commands that will run in Docker, maybe this will help you:

https://github.com/skorokithakis/dox

You could have a command like "python3.14" that will run that version of Python in a Docker container, mounting the current directory, and exposing whatever ports you want.

This way you can specify the version of the OS you want, which should let you run things a bit more easily. I think these attacks rely largely on how much friction it is to sandbox something (even remembering the cli flags for Docker, for example) over just running one command that will sandbox by default.