Was very happy when I found sandbox-venv: https://github.com/sandbox-utils/sandbox-venv
I'm not yet sure it's a good idea or that I trust the implementation, but something secure and non-manual has to be done about running other people’s softwares!
Didn't know about bubblewrap. Although I don't think I will use it for venv, it seems very interesting to isolate AI coding agents
Was very happy when I found sandbox-venv: https://github.com/sandbox-utils/sandbox-venv
I'm not yet sure it's a good idea or that I trust the implementation, but something secure and non-manual has to be done about running other people’s softwares!
Didn't know about bubblewrap. Although I don't think I will use it for venv, it seems very interesting to isolate AI coding agents