| HN Mirror

Y	Hacker News new \| ask \| show \| jobs


	by rmkrmk 1246 days ago
	Are there any somewhat easy-to-use solutions to isolate a development environment? Preventing or at least decreasing the damage malicious packages could do? Like deleting files or uploading a private ssh key/keychain to a 3rd party server? I was looking into things like GitHub Codespaces, I believe they're isolated per repository and integrated into VS Code, but I'd like something I could run on my machine or a server of mine.

3 comments

kccqzy 1245 days ago

Seriously, but make multiple user accounts on your computer. That's the traditional UNIX way of enforcing isolation, and it goes back to the days of hundreds of people sharing one single UNIX machine.

And don't give any software root access.

link

jart 1246 days ago

Faraday cage? It's a turnkey solution.

link

jacooper 1246 days ago

Docker containers?

link

rmkrmk 1246 days ago

Just found out that there's an extension to use Docker/Podman within VSCode which works on a local or remote machine.

https://code.visualstudio.com/docs/devcontainers/containers

link