snekbox

snekbox copied to clipboard

Bump coverallsapp/github-action from 2.2.3 to 2.3.0 in the ci-dependencies group

1

Bumps the ci-dependencies group with 1 update: [coverallsapp/github-action](https://github.com/coverallsapp/github-action). Updates `coverallsapp/github-action` from 2.2.3 to 2.3.0 Release notes Sourced from coverallsapp/github-action's releases. v2.3.0 What's Changed Set default values as strings per GH...

dependabot[bot]

Multiple binary support api

3

This allows setting a `binary_path` key in the request body to `/eval` to specify which binary to run under. If not supplied, it defaults to `"/lang/python/default/bin/python"` if supplied, snekbox ensures...

ChrisLovering

Allow Evaluation Using Multiple Python Versions

11

## Description Install multiple python versions within the container, and add an option in the API to select between them. ## Rationale Currently, the bot supports evaluation of both 3.10...

HassanAbouelela

Add inode limits to tmpfs

1

Adding an inode limit would limit the number of files/directories that can exist in the tmpfs we use for file IO. Given we already have file size limits, a maximum...

wookie184

sandboxing prevents access to `/proc/` directory

7

The directory `/proc/[pid]/` isn't available, which I think is a bit too harsh of a sandboxing measure in this case. I don't know of any use case where accessing `/proc/[pid]/*`...

ghost

Currently need an override workaround to exclude files starting with `.`, and the underscore `_` exclusion does not apply to files within subdirectories.

ionite34

Currently, the only Python implementation supported is the default CPython. Additional support should be added for executing Python code in other Python implementations like PyPy, RustPython, IronPython, etc. To support...

bindsdev

API Documentation

6

I'm not happy with the current state of documentation for the API, as it requires looking through docstrings in the source code. I've been considering using an OpenAPI specification and...

MarkKoz

Feature request: Add informational endpoint about snekbox

2

For those of us running our own snekbox instances, an informational endpoint would be useful. This could list the api version, the current version of snekbox, and perhaps the installed...

onerandomusername

Investigate Ways to Security-Harden the Docker Container

2

While Docker's defaults are supposedly pretty good, maybe we could do better. Specific areas of focus are likely seccomp and capabilities. @Akarys42 borugh up a [whitepaper](https://www.nccgroup.com/globalassets/our-research/us/whitepapers/2016/june/container_whitepaper.pdf), which, while relatively old,...

MarkKoz