> if I am going to run some code from somewhere and I haven't read it, it goes in a containe...

netdevphoenix • yesterday at 4:45 PM • 2 replies • view on HN

> if I am going to run some code from somewhere and I haven't read it, it goes in a container

How does this work? Every single npm package has tons of dependency tree nodes

Lutger • yesterday at 5:00 PM

Everything runs in the container and cannot escape it. Its like a sandbox.

You have to make sure you're not putting any secrets in the container environment.

➕ show 4 replies

swsieber • yesterday at 5:00 PM

I didn't read this as separate containers.

alt Hacker News