2 Replies
Unknown User•10mo ago
Message Not Public
Sign In & Join Server To View
Unfortunately, I don't know. It's a limitation of nsjail more than windmill.
But also do note than in most cases you do not need nsjail sandboxing
workers run in their own containers and every job in its own ephemeral folder
so one sandboxing strategy is to limit serverly the permissions of the containers itself