Anyone using it with nodejs to make a sandbox for code agents?

I've done some experiments along those lines with Pyodide in Deno: https://til.simonwillison.net/deno/pyodide-sandbox

b89kim 7 hours ago | parent | prev | next [-]

ChatGPT's Canvas uses Pyodide for sandboxing, but it's not designed for coding agents. Node.js environment is usually better for agents. Pyodide restricts server-side functionality, and fetching external URLs often needs proxying due to sandbox. By the way, pyodide is still good option for interactive visualizer or deploying small webapps require data processing.

▲

jcheng 8 hours ago | parent | prev [-]

For that purpose I think most people are using bubblewrap or seatbelt/sandbox-exec with CPython.

	▲	westurner 3 hours ago \| parent [-]
		From https://news.ycombinator.com/item?id=47171887 re: [agent] sandboxing : pydantic/monty, vercel-labs/just-bash, amla sandbox, csl-core, microsandbox, workerd, wasmtime-mte containers/bubblewrap: https://github.com/containers/bubblewrap#sandboxing The bubblewrap readme mentions containers as binaries with binctr; I guess without overlayfs or other file-level re-deduplication due to the container fs in the binary. Perhaps similarly, also TIL UKI are easier for UEFI Secure Boot to check signatures on than (kernel, initrd) pairs