Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
LunaSea
on March 2, 2023
|
parent
|
context
|
favorite
| on:
You don't need a build step
But it's the wrong approach.
The correct approach would have been through syscall blocking which is a much lower level.
vanjajaja1
on March 6, 2023
[–]
I'm assuming you mean SELinux style sys call blocking. I think you need both - syscall blocking for the system/deno layer, which enables app layer security in deno itself. That would be the composition-over-inheritance / functional approach.
Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
The correct approach would have been through syscall blocking which is a much lower level.