4 repositorios
Secure execution environments that restrict access to host system classes and methods via whitelists.
Distinct from Security and Access Control: Existing candidates focus on URL access, user permissions, or token whitelists, not the sandboxing of a script engine.
Explore 4 awesome GitHub repositories matching security & cryptography · Scripting Sandboxes. Refine with filters or upvote what's useful.
QLExpress es un motor de scripting dinámico y lenguaje de expresión para la plataforma Java. Funciona como un evaluador de expresiones en tiempo real y motor de reglas de negocio, permitiendo que las aplicaciones ejecuten scripts y evalúen lógica de negocio sin requerir la recompilación del sistema. El motor se distingue por un sandbox de scripting seguro que impone políticas de seguridad mediante listas blancas de clases y tiempos de espera de ejecución. Admite matemáticas de alta precisión para evitar errores de redondeo y proporciona soporte de alias de lenguaje para crear lenguajes específicos de dominio que se asemejan al lenguaje natural. Las capacidades adicionales incluyen un mecanismo de reproducción de fragmentos basado en macros y la capacidad de extender clases Java existentes inyectando nuevos métodos de miembro accesibles solo dentro del entorno de script. El sistema cubre una amplia gama de capacidades, incluyendo compilación basada en bytecode con almacenamiento en caché de scripts, evaluación de árboles de sintaxis abstracta e interpolación dinámica de cadenas. También proporciona observabilidad a través del seguimiento de ejecución a nivel de nodo para el análisis de causa raíz, así como validación de sintaxis de script y soporte de estructuras de datos complejas utilizando sintaxis JSON.
Restricts access to class fields and methods using configurable security policies like whitelists or isolation.
KoboldAI-Client is a web-based interface and toolkit for interacting with large language models. It functions as a local AI text generator for storytelling and conversational AI, providing a front end for models hosted either on local hardware or within cloud-provisioned environments. The system includes a persona manager that uses external modules and soft-prompting to guide AI responses toward specific characters and writing styles. It also provides an API wrapper that exposes a standardized, OpenAI-compatible REST API, allowing external applications to communicate with the hosted models.
Features a scripting sandbox to safely filter text and modify model behavior without risking host system access.
Scriban is a .NET text templating engine and embedded scripting language used for dynamic text generation. It functions as an abstract syntax tree manipulation tool and a template parser, allowing for the conversion of scripts into visitable trees for analysis, modification, and rendering. The engine is specifically designed for Native AOT compatibility, utilizing a reflection-free API to execute templates in trimmed environments. It also provides a dedicated parser and conversion system for Liquid templates, enabling the migration and execution of Liquid scripts within .NET. The project cov
Provides a secure execution environment that restricts access to host system classes and methods.
Scriban is a text templating library and .NET scripting engine used for dynamic text generation. It functions as a template processor and a safe scripting sandbox, providing a secure execution environment that restricts object exposure to prevent unauthorized code execution. The project also includes an abstract syntax tree template parser that allows for programmatic template analysis and modification. The engine features a dedicated Liquid template engine and compatibility mode, allowing it to parse, execute, and convert templates written in Liquid syntax. It distinguishes itself through a
Provides a secure execution environment that restricts host system access via whitelists to prevent unauthorized code execution.