Crate sandbox_runtime 

Sandbox Runtime - OS-level sandboxing for enforcing filesystem and network restrictions.

This library provides sandboxing capabilities for arbitrary processes without containerization:

• macOS: Uses Seatbelt/sandbox-exec
• Linux: Uses bubblewrap + seccomp

Re-exports

pub use config::FilesystemConfig;

pub use config::MitmProxyConfig;

pub use config::NetworkConfig;

pub use config::RipgrepConfig;

pub use config::SandboxRuntimeConfig;

pub use config::SeccompConfig;

pub use error::ConfigError;

pub use error::Result;

pub use error::SandboxError;

pub use manager::SandboxManager;

pub use violation::SandboxViolationEvent;

pub use violation::SandboxViolationStore;

Modules

cli

CLI parsing and execution.

config

Configuration module.

error

Error types for the sandbox runtime.

manager

Sandbox manager - main orchestration module.

prelude

Re-export commonly used items.

proxy

Proxy server implementations.

sandbox

Platform-specific sandbox implementations.

utils

Utility modules.

violation

Violation tracking module.

Macros

debug_log

Log a debug message (only if debug is enabled).

trace_log

Log a verbose debug message.