@teleclimber

> The idea is that web apps could be built and distributed more like the smartphone ecosystem

have you ever heard about sandstorm?
sandstorm.io/

it's moving slowly at this point due to originally having had plans to make money that didn't work out, but...

"a platform for individuals to install sandboxed web applications" sure sounds a lot like it

@Valenoern I think it sounds like this project and Sandbox are not the same thing, but would have a lot to benefit from learning each other's techniques.

It sounds like @teleclimber has gone deeper into the process isolation bit than the Sandstorm team has, and Sandstorm has been more trusting with the deployed code, while going deeper on app integration and protection against third-party shenanigans.
Follow

@clacke @Valenoern I wrote more on Sandstorm since:

olivierforget.net/blog/2020/th

And yes I am learning as much as I can from that project.

I don't think Sandstorm is very trusting of deployed code at all! That's their strong point IMO.

@teleclimber @Valenoern Great post, thanks!

I remembered wrong exactly what Sandstorm did. As you explain in the post they did indeed use containers to isolate networks and more.

Still, adding a JS sandbox on top of that would seem to make it a lot less risky to dare run untrusted code.
Sign in to participate in the conversation
Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!