[solardev]

Can't you just run the program inside a VM of some sort and encrypt the whole image that way? I guess during runtime the contents in RAM won't be encrypted, but when the image gets saved back to disk, it should be.

e.g. in Parallels, they have built-in AES-based password VM encryption: https://kb.parallels.com/8832

Or in VirtualBox: https://docs.oracle.com/en/virtualization/virtualbox/6.0/adm...

[cpach]

I think a sandbox should be sufficient.

[solardev]

Is there readily available software for that?

[cpach]

The building blocks are there AFAICT, but I’m not sure I would say they’re neatly productized.

See also this comment I wrote: https://news.ycombinator.com/item?id=40130844