As we're preparing for a new Windmill sandbox SDK, we took the opportunity to open-source NSJAIL sandboxing and make it available in CE and easier to set.
In 1.634.0, just set nsjail to benefit from the tightest security and isolation per job. It's constraining so no need to use it unless you need but now you won't be restricted in security for CE if you need to.
In 1.634.0, just set nsjail to benefit from the tightest security and isolation per job. It's constraining so no need to use it unless you need but now you won't be restricted in security for CE if you need to.
