You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi @healeycodes , firstly I'd like to say thanks for the great idea and making it work. But it there seems to be an issue what we can't import several standard libraries. For example:
└─> curl -X POST https://untrusted-python.fly.dev/api/exec \
-H "Content-Type: application/json" \
-d '{"code":"import datetime"}'
Traceback (most recent call last):
File "/app/./sandbox.py", line 41, in <module>
File "<string>", line 1, in <module>
ModuleNotFoundError: No module named 'datetime'
After checking around I can see the issue is because some permissions are missing. After disabled the drop_perms() function, it works well. Like this:
@briandoesdev is right! The sandbox is very strict on purpose. Allowing more functionality without regressing on security is non-trivial (as I understand it).
@briandoesdev is right! The sandbox is very strict on purpose. Allowing more functionality without regressing on security is non-trivial (as I understand it).
@briandoesdev is right! The sandbox is very strict on purpose. Allowing more functionality without regressing on security is non-trivial (as I understand it).
Hi @healeycodes , firstly I'd like to say thanks for the great idea and making it work. But it there seems to be an issue what we can't import several standard libraries. For example:
After checking around I can see the issue is because some permissions are missing. After disabled the drop_perms() function, it works well. Like this:
Then it works:
So ideally we should improve this function to let all default Python's functionality work well.
The text was updated successfully, but these errors were encountered: