Top 7 Shell Sandbox Projects
Run GUI applications and desktops in docker and podman containers. Focus on security.Project mention: Tumbleweed: Connecting X11 desktop through systemd-nspawn or other non-desktop container? | reddit.com/r/openSUSE | 2022-01-14
It's straighforward to have your container talk to Xorg directly but for a better experience take a look at https://github.com/mviereck/x11docker as it does the heavy lifting regarding GPU, sounds, devices, etc.
The lightweight Arch Linux based distro that runs, without root privileges, upon any Linux distroProject mention: toolbox: force myself to login as a specific user | reddit.com/r/Fedora | 2021-12-13
OPS - Build and Run Open Source Unikernels. Quickly and easily build and deploy open source unikernels in tens of seconds. Deploy in any language to any cloud.
An open-source, next-generation "runc" that empowers rootless containers to run workloads such as Systemd, Docker, Kubernetes, just like VMs.Project mention: Real-world stories of how we’ve compromised CI/CD pipelines | news.ycombinator.com | 2022-01-17
We’ve been using Sysbox (https://github.com/nestybox/sysbox) for our Buildkite based CI/CD setup, allows docker-in-docker without privileged containers. Paired with careful IAM/STS design we’ve ended up with isolated job containers with their own IAM roles limited to least-privilege.
Combination of different utilities, have fun! (by doomedraven)Project mention: QEMU 5.0 (Ubuntu) Win10 LTSC runnning LDPlayer (VMWare or VirtualBox based): KERNEL_SECURITY_CHECK_FAILURE / IRQL_NOT_LESS_OR_EQUAL ?? | reddit.com/r/VFIO | 2021-02-08
https://github.com/doomedraven/Tools/tree/master/Virtualization - this guy has a super script that compiles the latest version of qemu , while also patching clues that are usually searched when probing if vm or not . It works best if you have a brand new ubuntu desktop install
Tor Browser (or Firefox) in a Qubes DisposableVM, with persistent bookmarks and login credentialsProject mention: Whats your personal compartmentalization strategy? | reddit.com/r/Qubes | 2021-07-02
I personally try to do 1 app = 1 AppVM but it needs a lot of RAM if you want to use a lot at the same time. My vault is network isolated and I have everything that should not be linked together (identity and other internet stuff) on different VMs (personal, hardened firefox for general browsing..). I'm now on 4.1 and I'm looking to do a Disp Firefox with bookmark implementation and do a lot more Disp setup in the future for any kind of activity.
Install and run Firefox on Debian unattended in a virtual machine or on a computer.Project mention: How might I... create a virtual browser for contained usage of Instagram (and others) | reddit.com/r/selfhosted | 2021-12-29
You might have a look at a project of mine: BrowserBox
Project mention: Automating Yocto Builds w/ Self-Hosted Runners | dev.to | 2021-12-15
Links to follow along: yocto-runner image repo yocto-runner DockerHub link gl-yocto-sandbox-software repo
Deliver Cleaner and Safer Code - Right in Your IDE of Choice!. SonarLint is a free and open source IDE extension that identifies and catches bugs and vulnerabilities as you code, directly in the IDE. Install from your favorite IDE marketplace today.
Shell Sandbox related posts
How might I... create a virtual browser for contained usage of Instagram (and others)
2 projects | reddit.com/r/selfhosted | 29 Dec 2021
toolbox: force myself to login as a specific user
2 projects | reddit.com/r/Fedora | 13 Dec 2021
Individual Docker Desktops vs hosting on a server?
1 project | reddit.com/r/docker | 3 Dec 2021
Sysbox now works on K8s v1.21
1 project | news.ycombinator.com | 5 Nov 2021
Does running a container with privileged mode turn on allow code to escape into the Host ?
1 project | reddit.com/r/docker | 26 Oct 2021
Run Portainer from Portainer stack (chicken or egg)
2 projects | reddit.com/r/docker | 21 Oct 2021
How to containerize an app that is not native to Docker ecosystem?
1 project | reddit.com/r/docker | 23 Sep 2021
What are some of the best open-source Sandbox projects in Shell? This list will help you:
Are you hiring? Post a new remote job listing for free.