Libpng fork for cheribuild, configuring an easy-to-sandbox minimal version and bundling zlib

A code execution sandbox to run or test untrusted code and return the output

Landlock tutorial to patch lighttpd

Mirror of https://codeberg.org/Douile/bwrap-scripts

CLOCI stands for CodeLearning Online Compiler-Interpreter which is a microservice aimed to remotely compile-interpret students' code at the Codelearning.online learning platform. This is the main module.

CLOCI stands for CodeLearning Online Compiler-Interpreter which is a microservice aimed to remotely compile-interpret students' code at the Codelearning.online learning platform. This is the module that is responsible for dealing with server configurations.

Grader for solutions to algorithmic problems

Set of dockerfiles meant for throw-away instances that achieve a singular purpose: to "safely" interact (run, play, unzip, etc) with programs or files without the need of a full VM to avoid compromise of the host machine. Think of it as a bomb disposal device for files you don't trust that much but still need to run, unzip or play.

Continuos Delivery with GitOps

Not all Atlassian apps, but main...

sand box

🧙‍♂️ ImageMagick 7 fork for CheriBSD using sandboxed libpng

A sandbox framework for building demos, prototypes, or web applications for use with GitHub Pages.

AdHocSecurebox is an opinionated collection of scripts/docs to deal with sensitive data with average hardware and open source software. Work in progress.

Execute untrusted code with custom permissions (fork of asvd/jailed)

PHP and Composer sandbox for macOS

Examples using lot -- https://github.com/Exact-Realty/lot

Failed attempt to demo code sandboxing

CheriBSD with library sandboxing in the run-time linker for dissertation project

Dots