|
|
|
|
|
|
by zupo
141 days ago
|
|
|
"The capability based approach is interesting, but trusting developers to declare all their needed capabilities seems brittle. Modern OS level sandboxing or containerisation provides strong isolation without relying on each library to opt in, which may be a more robust alternative." |
|
|