Comment by nautilus12 2 months ago If you always run npm inside of docker does that pretty much prevent attacks like this? 6 comments nautilus12 Reply mfro 2 months ago Docker is not a sandbox. There is some work that can be done to harden it, but you're better off looking at genuinely sandboxing your dev environment ashishb 2 months ago What is genuine sandboxing? Everyone waives there hands by saying this mfro 2 months ago Good question with a lot of possible answers. You can take sandboxing as far as you want, really. I typically just use bubblewrap (linux) 3 replies →
mfro 2 months ago Docker is not a sandbox. There is some work that can be done to harden it, but you're better off looking at genuinely sandboxing your dev environment ashishb 2 months ago What is genuine sandboxing? Everyone waives there hands by saying this mfro 2 months ago Good question with a lot of possible answers. You can take sandboxing as far as you want, really. I typically just use bubblewrap (linux) 3 replies →
ashishb 2 months ago What is genuine sandboxing? Everyone waives there hands by saying this mfro 2 months ago Good question with a lot of possible answers. You can take sandboxing as far as you want, really. I typically just use bubblewrap (linux) 3 replies →
mfro 2 months ago Good question with a lot of possible answers. You can take sandboxing as far as you want, really. I typically just use bubblewrap (linux) 3 replies →
Docker is not a sandbox. There is some work that can be done to harden it, but you're better off looking at genuinely sandboxing your dev environment
What is genuine sandboxing? Everyone waives there hands by saying this
Good question with a lot of possible answers. You can take sandboxing as far as you want, really. I typically just use bubblewrap (linux)
3 replies →