Are Deno Workers still too insecure for code isolation?
Does anybody know if Deno Workers are still too insecure as an architecture to run untrusted user code?
The Val Town team has written som great articles over the years about the different iterations of their architecture. I'm wondering if Deno's sandboxing is still too weak, as mentioned in https://blog.val.town/blog/val-town-newsletter-5/
Val Town Newsletter 5
Shipping our Deno runtime
1 Reply
I'm doing some preliminary research on a game dev platform, and the biggest technical challenge is running untrusted user code securely.
The Idea is to have game devs simply implement state machines that describe game state transitions, as well as a React render function of that state.
This could lead to many function calls per second though, so having it run as close as possible to my game server, which it is communicating with, is paramount.