Skip to content

[R6/E1] Sandbox/whitelist #25

Open
Open
[R6/E1] Sandbox/whitelist#25
Assignees
BrunoL28
Labels
DXCLI/REPL/Dev ExperienceINTInterpreterQATests/CISECSecurity/SandboxroadmapFeature planned for implementation in the project.
Milestone
R6
@BrunoL28

Description

@BrunoL28
BrunoL28
opened on Dec 28, 2025

Objetivo

Criar modo sandbox para rodar código não confiável com interop controlado.

Tarefas

  • Flag --sandbox na CLI
  • Em sandbox:
    • bloquear acesso direto a globalThis
    • oferecer whitelist configurável (ex.: Math, Date, console)
    • bloquear Function, eval, process (Node), require (se aplicável)
  • Testes:
    • tentativa de acessar process falha
    • js/Math funciona se permitido

DoD

  • Sandbox documentado e testado
  • Default seguro quando sandbox ativo

Metadata

Metadata

Assignees

Labels

DXCLI/REPL/Dev ExperienceINTInterpreterQATests/CISECSecurity/SandboxroadmapFeature planned for implementation in the project.

Projects

Mini-Clojure-TS Roadmap

Status

Milestone 6

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions