In anticipation of the Conj and my talk about sandboxing + clojail there, I've just cut a new major release of the library. Here are some of the changes:
- Code has been cleaned up significantly. - Old broken attempts at supporting both blacklisting and whitelisting are gone, and only blacklisting is supported now. Whitelisting never worked properly anyways. - The sandbox keeps an eye on the number of things defined in the sandbox namespace, and it unmaps them if the number of them exceed a certain configurable number. - Each sandbox has its own namespace, this way you're mostly okay if you allow users to def things in your sandbox as long as each user has his own sandbox. - clojail.jvm has been spruced up and made more usable as a library in itself. It is the JVM sandboxing part of clojail is fairly standalone, though clojail.core's stuff integrates it. - You can pass code that the sandbox will evaluate in the sandbox namespace when you create it. This code will be ran outside of the actual sandbox and thus can contain things that the sandbox doesn't allow. It is good for preparing a sandbox namespace. You pass this code to the sandbox creation functions as the keyword argument :init. - You can pass :refer-clojure false to prevent the sandbox from referring Clojure in the sandbox namespace. It is expected that if you do this, you'll refer stuff with code passed to the :init key. - The argument order of the sandbox function returned from calling sandbox* has its argument order reversed. The code comes before the tester now. - A number of holes have been fixed. All of this is the result of writing a talk about the library. You'd be surprised how insane your library looks when you're writing a talk about it. The new release is on clojars and we're now at v0.5.0. Clojail is also on Github at https://github.com/flatland/clojail Enjoy. -- You received this message because you are subscribed to the Google Groups "Clojure" group. To post to this group, send email to clojure@googlegroups.com Note that posts from new members are moderated - please be patient with your first post. To unsubscribe from this group, send email to clojure+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/clojure?hl=en
