**Summary:** #12
Description
Summary:
Enhance the security of the containerized execution environment by implementing strict sandboxing, resource limits, and isolation controls. This ensures user code runs safely without affecting the host system or other users, mitigating risks such as resource exhaustion, privilege escalation, and data leakage.
Tasks:
- Review current execution environment and identify security weaknesses and potential attack vectors.
- Configure container runtime options (seccomp, AppArmor, SELinux) to restrict system calls and permissions.
- Implement resource constraints (CPU, memory, disk, network) and time limits to prevent denial-of-service attacks.
- Enable network isolation for user containers and restrict outbound connections except for allowed endpoints.
- Provide sandboxed file systems with read-only base images and persistent user volumes separated per user.
- Implement detection and reporting of suspicious or malicious behavior during code execution.
- Conduct penetration testing and vulnerability scanning on the execution environment.
- Update documentation to describe security measures and how to request additional permissions if needed.
- Write tests to ensure sandbox restrictions are enforced and insecure configurations are not possible.
Acceptance Criteria:
- User code runs within isolated containers with restricted system calls and no root privileges.
- Resource limits prevent any single session from exhausting system resources.
- Containers cannot access the host network or filesystem beyond their sandboxed volumes.
- Malicious behavior is detected and execution is terminated safely.
- Penetration testing reports show no critical vulnerabilities in the sandbox configuration.
- Tests confirm sandbox policies are applied and cannot be bypassed.
- Documentation describes sandbox restrictions and guidelines for requesting exceptions.
Originally posted by @blackboxprogramming in https://github.com/blackboxprogramming/blackboxprogramming/issues/40