Y
Hacker News
new
|
ask
|
show
|
jobs
by
kevingadd
810 days ago
As a developer or someone shipping products, if you want robust sandboxing, WASM is probably the best option available to you right now. And there are ways to deploy it or cross-compile it for most targets.
1 comments
ngcc_hk
809 days ago
Any good pointer to this direction?
link
kevingadd
809 days ago
https://github.com/WebAssembly/wabt/blob/main/wasm2c/README....
is a straightforward way to take an untrusted application (compiled already to wasm) and turn it into C that you can embed into your application or compile to a linkable DLL. I believe this approach has been used to sandbox untrusted libraries in production by Mozilla:
https://hacks.mozilla.org/2021/12/webassembly-and-back-again...
link