zlacker

[return to "Deno Sandbox"]
1. emschw+Hb[view] [source] 2026-02-03 18:16:54
>>johnsp+(OP)
> In Deno Sandbox, secrets never enter the environment. Code sees only a placeholder

> The real key materializes only when the sandbox makes an outbound request to an approved host. If prompt-injected code tries to exfiltrate that placeholder to evil.com? Useless.

That seems clever.

◧◩
2. rfoo+yi[view] [source] 2026-02-03 18:41:09
>>emschw+Hb
I like this, but the project mentioned in the launch post

> via an outbound proxy similar to coder/httpjail

looks like AI slop ware :( I hope they didn't actually run it.

◧◩◪
3. lucaca+TG[view] [source] 2026-02-03 20:23:51
>>rfoo+yi
We run or own infrastructure for this (and everything else). The link was just an illustrative example
[go to top]