[irrational]

Why do this on the client? Why not pass it to the server and run it on Python there?

[simonw]

That's what I'm talking about: I want to run Python code on my server, but since it's from an untrusted source I want to make sure that it's in a sandbox with strict limits on what it can do, how much CPU it can use and how much RAM it has available to it - so malicious code can't be used to crash my server or steal data it shouldn't have access to.

[bobkazamakis]

How do you think WASM will solve this where everything else has failed?

[mikewarot]

Because WASM supports capability based security and thus never trusts code to do the right thing. Unlike every single one of it's predecessors.

[zerodensity]

WASM does not support capability based security that is something of an extension to the WASI proposal.

And even then the security stuff is based on previously existing work in the cloud space. Which has existed for some time but is not widespread.

[int_19h]

Java? .NET?