Comment by nautilus12 4 days ago If you always run npm inside of docker does that pretty much prevent attacks like this? 6 comments nautilus12 Reply mfro 4 days ago Docker is not a sandbox. There is some work that can be done to harden it, but you're better off looking at genuinely sandboxing your dev environment ashishb 4 days ago What is genuine sandboxing? Everyone waives there hands by saying this mfro 4 days ago Good question with a lot of possible answers. You can take sandboxing as far as you want, really. I typically just use bubblewrap (linux) 3 replies →
mfro 4 days ago Docker is not a sandbox. There is some work that can be done to harden it, but you're better off looking at genuinely sandboxing your dev environment ashishb 4 days ago What is genuine sandboxing? Everyone waives there hands by saying this mfro 4 days ago Good question with a lot of possible answers. You can take sandboxing as far as you want, really. I typically just use bubblewrap (linux) 3 replies →
ashishb 4 days ago What is genuine sandboxing? Everyone waives there hands by saying this mfro 4 days ago Good question with a lot of possible answers. You can take sandboxing as far as you want, really. I typically just use bubblewrap (linux) 3 replies →
mfro 4 days ago Good question with a lot of possible answers. You can take sandboxing as far as you want, really. I typically just use bubblewrap (linux) 3 replies →
Docker is not a sandbox. There is some work that can be done to harden it, but you're better off looking at genuinely sandboxing your dev environment
What is genuine sandboxing? Everyone waives there hands by saying this
Good question with a lot of possible answers. You can take sandboxing as far as you want, really. I typically just use bubblewrap (linux)
3 replies →