mass icon indicating copy to clipboard operation
mass copied to clipboard
verified publisher icon grassator

Sandboxed Mode

Open grassator opened this issue 4 years ago • 0 comments

Mass compiler uses JIT and theoretically allows access to any system api.

This is great for certain use cases but can limit some usages, for example as an embedded language or a config language.

Luckily since the majority of functionality is defined in ist land it should be possible to achieve sandboxing by:

  • [ ] limiting exports from the compiler (no intrinsic)
  • [ ] Adding a new "OS" variant
  • [ ] Disallowing external library imports

grassator avatar Nov 15 '21 18:11 grassator