undefined | Better HN

0 pointsinlined4d ago0 comments

What are you withholding from the sandbox without making it useless?

0 comments

Internet access. An editor extension does not need it.

Most sandbox systems today, take seatbelt from Apple for instance, only strip permissions. If your extensions without internet access calls a tool that needs it, boom access denied or worse, weird network issues.

One would need some kind of ring system where less privileged processes can call higher privileged processes with their own sandbox permissions.

therealdrag04d ago

Let the user grant permissions at install time. An error is a success in this scenario.

sedatk4d ago

All AI agent extensions disagree in unison.

californical4d ago

It could request access to a specific domain which you can approve or deny

j / k navigate · click thread line to collapse