yazz.com
Reputation: 58796
How can I sandbox Clojure?
I am writing an application which allow users of my application to extend it using Clojure. The Clojure is entered via a web page in the application and "evaled" to run. My question is how can I sandbox this code entered by the users so that it does not corrupt anything or call System.exit or anything like that?
Upvotes: 7
Views: 1941
Answers (2)
Marten Veldthuis
Reputation: 1910
There's a library for that. lazybot in the Clojure IRC chanel uses it. You can find it here: https://github.com/flatland/clojail
Upvotes: 17
skuro
Reputation: 13514
You should be able to constrain access to code by configuring JDK level permissions. Have a look at the RuntimePermission settings, there's for example a direct setting to inhibit halting the JVM (e.g. System.exit).
Upvotes: 3
Related Questions
- Setting up an environment where I use Clojure to unit-test a pure Java library
- Adding unit-tests to Clojure CLI tools and deps.edn
- How to run Clojure tests from clj (not from lein neither boot)?
- Clojure deployment?
- Clojure test coverage tool?
- How can I develop and test a clojure library
- What autotest tools exist for Clojure
- Make a 'slow' test suite with clojure.test
- Running a Clojure program
- Clj-Sandbox bug?