|
|
|
|
|
|
by louislang
1024 days ago
|
|
|
We're actively working on this with our sandbox (https://github.com/phylum-dev/birdcage). We've wrapped the likes of pip, yarn, and npm already and are making moves to similarly provide support for cargo. Currently comes as part of the Phylum CLI (https://github.com/phylum-dev/cli), so that doing something like: phylum npm install <somePkg>
Will reach out to the Phylum API to ask what we know about it (e.g., does the source have characteristics congruent with malware?), if that passes it'll then install the package from within the confines of the sandbox with limited disk, network and env access (as defined by allowed resources in the TOML file). |
|
|