Release of micropython-wasm 0.1a2, a Python library for running MicroPython sandboxes using WebAssembly with a new CLI.
Release of micropython-wasm 0.1a2, a Python library for running a MicroPython sandbox using WebAssembly, with a new CLI.
Announcing datasette-agent-micropython 0.1a0, a MicroPython WASM sandbox for safe code execution in Datasette Agent.
Announcement of micropython-wasm 0.1a1, a Python library for running a MicroPython sandbox using WebAssembly.
Announcement of micropython-wasm 0.1a1, a Python library for running MicroPython sandboxes using WebAssembly.
Simon Willison announces micropython-wasm 0.1a0, a Python library to run MicroPython in a WebAssembly sandbox via wasmtime.
Announcing micropython-wasm 0.1a0, a Python library for running MicroPython in a WebAssembly sandbox via wasmtime.
An overview of how Anthropic contains Claude across products using sandbox techniques like gVisor, Seatbelt, Bubblewrap, and VMs.
Overview of Anthropic's sandbox techniques for Claude across products like Claude.ai, Claude Code, and Cowork.
A comprehensive guide exploring different sandboxing techniques for safely running untrusted AI code, including containers, microVMs, and WebAssembly.
A comprehensive guide to different sandboxing technologies for safely running untrusted AI code, covering containers, microVMs, gVisor, and WebAssembly.
Explores MicroQuickJS, a tiny JavaScript engine for embedded systems, as a potential sandbox for running untrusted code with strict resource limits.
Introducing ClientIsolationHost, a new component for the Isolator framework that enables executing sandboxed code plugins on remote machines over TCP/IP.
Explores the unique security risks of Agentic AI systems, focusing on the 'Lethal Trifecta' of vulnerabilities and proposed mitigation strategies.
A developer's status update covering their university dissertation on unprivileged FUSE mounting, pimsync bug fixes, and ongoing work on JMAP client support for calendars and contacts.
Introduces App Buddy, a macOS utility for managing settings, backups, and permissions for the developer's other applications.
Explores how memory safety affects sandboxing in complex systems like browsers, challenging the view that they are purely complementary security approaches.
A developer explores the challenges of sandboxing untrusted Python code in a side-project, using process isolation and seccomp.
Explores JavaScript sandboxing for secure code execution, inspired by Val Town and discussing solutions like vm2, Deno, and V8 Isolates.
Overview of new WKWebView features in iOS 14, including JavaScript sandboxing, async JS calls, text find, PDF creation, and zoom.
