Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today. Learn more →
Bubblewrap Alternatives
Similar projects and alternatives to bubblewrap
-
-
-
SonarLint
Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.
-
-
-
pkg2appimage
Tool and recipes to convert existing deb packages to AppImage
-
-
-
InfluxDB
Build time-series-based applications quickly and at scale.. InfluxDB is the Time Series Platform where developers build real-time applications for analytics, IoT and cloud-native services. Easy to start, it is available in the cloud or on-premises.
-
-
nsjail
A light-weight process isolation tool, making use of Linux namespaces and seccomp-bpf syscall filters (with help of the kafel bpf language)
-
-
cli-guidelines
A guide to help you write better command-line programs, taking traditional UNIX principles and updating them for the modern day.
-
-
-
-
-
-
runc
CLI tool for spawning and running containers according to the OCI specification
-
-
privacytools.io
🛡🛠 You are being watched. Protect your privacy against global mass surveillance.
-
crun
A fast and lightweight fully featured OCI runtime and C library for running containers
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
bubblewrap reviews and mentions
-
Show HN: Val.town – A Cloud Scripting Site
I don't want to say too much, because I know our security isn't perfect, and some about of obfuscation adds some security. Once we move to a more secure model, I will happily tell you all what use used to use to sandbox code.
Soon we'll do real sandboxing, either ourselves through Docker, wasm, bubblewrap[1], etc, or an existing FaaS (Lambda, Deno Deploy, Cloudflare Workers) or FaaSaaS (Deno Subhosting)
-
Should I remove SNAP from my system?
Bubblewrap was the foundation of Flatpak and of Valve's Linux namespaces project as well Steam pressure vessel. So then you go to Bubblewrap's Github and low and behold the meta project of it is called "containers" and in the readme they talk about namespaces and OCI images directly. https://github.com/containers/bubblewrap
-
The future of apps on Linux
No, it uses bubblewrap, which uses Linux cgroups and a few other linux-specific features that are unrelated to SELinux. From their docs:
-
Adressing Misconceptions
Actually I am 100% correct and can provide links to all the documentation. Flatpak uses bubblewap to execute an application from within a namespace. Namespaces are a kernel feature that allows the app to run in a completely separate environment, including under a fake user that only exists in that namespace. You can then grant access to whatever you want within the host system, like a single directory, or the whole filesystem. You can also do the same with networking, accessing processes etc.
-
Painless Desktop containers for everyday development
You could get something like this using a Bubblewrap script. I have one which marks everything but the current directory read only and drops me into a shell in that container.
So a similar idea would be to overlay mount your system for that container so you can edit, and then on exit the changes vanish. Might try this actually :)
-
Where do I learn about: subuser, bubblewrap, and/or firecracker security?
I currently use firejail and apparmor. I generally get the ideas- but subuser seems to do something else like chroot containers? Is this outdated? Effective? I also saw bubblewrap, which I do not get the difference between subuser and bubblewrap... is the hierarchy that bubblewrap can run inside/under subuser? Like how any user can run firejail?
-
One-Click sandbox for every program
or bubblewrap
-
Bubblewrap CLI: Create Android application that launches PWAs
not very good name considering there is sandboxing tool for linux with the same name https://github.com/containers/bubblewrap
-
Bubblewrap: Unprivileged Sandboxing Tool for Linux
"How does it compare to firejail?" you were going to ask: https://github.com/containers/bubblewrap#related-project-com....
You're welcome.
My reading of https://github.com/containers/bubblewrap#related-project-com... is that it is literally what flatpak uses:
> Firejail is similar to Flatpak before bubblewrap was split out
-
A note from our sponsor - SonarLint
www.sonarlint.org | 9 Feb 2023
Stats
containers/bubblewrap is an open source project licensed under GNU General Public License v3.0 or later which is an OSI approved license.