I’m currently embedding Python in a C / C++ application that evaluates user-provided scripts.
Obviously, this is terribly unsafe: user-provided scripts can execute arbitrary malicious actions, and there’s no good way to sandbox Python in a desktop context. If I were to replace Python with Guile, is there a way to sandbox it so that arbitrary (perhaps malicious) user-provided scripts can be run safely? Regards, Matt