forge-sandbox 0.1.0

V8 sandbox for executing LLM-generated JavaScript via deno_core

Coverage
100%
147 out of 147 items documented0 out of 58 items with examples
Size
Source code size: 190.97 kB This is the summed size of all the files inside the crates.io package for this release.
Documentation size: 18.19 MB This is the summed size of all files generated by rustdoc for all configured targets
Ø build duration
this release: 1m 31s Average build duration of successful builds.
all releases: 1m 47s Average build duration of successful builds in releases after 2024-10-23.
Links
postrv/forgemax
140 9 0
crates.io
Dependencies
Versions
Owners

forge-sandbox

V8 sandbox for the Forge Code Mode Gateway.

Executes LLM-generated JavaScript in a deno_core isolate with no filesystem, network, or environment access. The only bridge to the host is through explicitly registered ops that dispatch to a [ToolDispatcher].

Security model

V8 isolate: Same process-level isolation as Chrome tabs
No ambient capabilities: No fs, net, env, or child_process access
Fresh runtime per call: No state leakage between executions
Pre-execution validation: Banned patterns caught before reaching V8
Timeout enforcement: Execution killed after configurable deadline
Output size limits: Prevents exfiltration of large data sets
Opaque bindings: Credentials never exposed to sandbox code