| ▲ | tyingq 2 days ago | |
An option to run the potentially harmful script in a rootless container, then dump filesystem diffs, audit events, etc...might be helpful. I get containers aren't perfect isolation, but... | ||
| ▲ | ilyagr 2 days ago | parent | next [-] | |
One option is https://github.com/binpash/try It is Linux-only, though. | ||
| ▲ | eptcyka 2 days ago | parent | prev [-] | |
Could do it in a VM too. | ||